• Registrarse
  • Iniciar sesión


  • Página 1 de 3 123 ÚltimoÚltimo
    Resultados 1 al 10 de 22

    Se descargó automáticamente hbpix

    Me encontraba navegando y de la nada me se me descargó hbpix por chrome, el cual me molestó anteriormente y eliminé, aquí dejo los reportes según lo recomendado en este tema http://www.forospyware.com/t532203.html Malwarebytes www.malwarebytes.com -Detalles ...

    1. #1
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Se descargó automáticamente hbpix

      Me encontraba navegando y de la nada me se me descargó hbpix por chrome, el cual me molestó anteriormente y eliminé, aquí dejo los reportes según lo recomendado en este tema http://www.forospyware.com/t532203.html

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 26/9/17
      Hora del análisis: 21:56
      Archivo de registro: 14760a08-a327-11e7-9abc-08edb9d54ec4.json
      Administrador: Sí

      -Información del software-
      Versión: 3.2.2.2029
      Versión de los componentes: 1.0.188
      Versión del paquete de actualización: 1.0.2894
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: VAIO-VAIO\VAIO_

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 356384
      Amenazas detectadas: 0
      (No hay elementos maliciosos detectados)
      Amenazas en cuarentena: 0
      (No hay elementos maliciosos detectados)
      Tiempo transcurrido: 10 min, 11 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 0
      (No hay elementos maliciosos detectados)

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)


      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 7 Home Premium x64
      Ran by VAIO_ (Administrator) on 27/09/2017 at 15:52:08,33
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 8

      Successfully deleted: C:\Users\VAIO_\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I5DLDVMW (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\VAIO_\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFZDIHH8 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\VAIO_\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TBDYIR4U (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\VAIO_\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WU196SCD (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I5DLDVMW (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFZDIHH8 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TBDYIR4U (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WU196SCD (Temporary Internet Files Folder)



      Registry: 0





      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 27/09/2017 at 15:58:48,86
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

      # AdwCleaner 7.0.2.1 - Logfile created on Wed Sep 27 20:37:25 2017
      # Updated on 2017/29/08 by Malwarebytes
      # Running on Windows 7 Home Premium (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      No malicious folders deleted.

      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      No malicious registry entries deleted.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[C0] (postreinicio).txt - [1793 B] - [2017/8/21 1642]
      C:/AdwCleaner/AdwCleaner[C0].txt - [1793 B] - [2017/8/21 161]
      C:/AdwCleaner/AdwCleaner[S0].txt - [1677 B] - [2017/8/21 1612]
      C:/AdwCleaner/AdwCleaner[S1].txt - [1168 B] - [2017/9/27 20:35:18]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

      ¿Recomendaciones?

    2. #2
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      23.977

      Re: Se descargó automáticamente hbpix

      Hola UserconCriterio

      Este problema ya lo estábamos llevando en este tema >> Tengo un problema con hbpix (Terminado) en el cual ya parecía que estaba resuelto, volvió de nuevo?

      Se solucionaron los problemas de ese tema?

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Pues creí haber resuelto lo relacionado con hbpix, pero fue recientemente que se me descargó este archivo hace tan solo 3 días. Perdón por no haber contestado en el tema anterior, eso se debió a que el último problema que reporté era más un tema aparte, pero en efecto, el archivo hbpix se descargó mientras navegaba en chrome

    4. #4
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      23.977

      Re: Se descargó automáticamente hbpix

      Hola

      Comenta en el otro tema que ya está resuelto para poder cerrarlo y seguir en este.

      Descarga Farbar Recovery Scan Tool segun la arquitectura de tu sistema (32 o 64 bits)

      • La guardas en el escritorio >> Esto es muy importante..
      • Doble clic para ejecutar Frst.exe. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • En la ventana del Disclaimer, presiona Yes.

      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.


      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-09-2017
      Ran by VAIO_ (administrator) on VAIO-VAIO (30-09-2017 10:32:09)
      Running from C:\Users\VAIO_\Desktop
      Loaded Profiles: VAIO_ (Available Profiles: VAIO_)
      Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
      (AMD) C:\Windows\System32\atiesrxx.exe
      (AMD) C:\Windows\System32\atieclxx.exe
      (Microsoft Corporation) C:\Windows\System32\wlanext.exe
      (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
      (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
      (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
      () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
      (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
      (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
      (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
      (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
      (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
      (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
      (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
      (Discord Inc.) C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
      (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
      (Discord Inc.) C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
      (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
      (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      () C:\Program Files (x86)\No-IP\ducservice.exe
      (ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
      (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
      (Discord Inc.) C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe
      (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
      (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
      (iolo technologies, LLC) C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2012-03-13] (Realtek Semiconductor)
      HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885904 2012-03-13] (Synaptics Incorporated)
      HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1022592 2012-04-28] (Atheros Communications)
      HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-04-28] (Atheros Commnucations)
      HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
      HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-05-09] (Apple Inc.)
      HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
      HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-08] (Intel Corporation)
      HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [60552 2011-09-20] (Sony Corporation)
      HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [693608 2012-02-21] (Sony Corporation)
      HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-05-09] (Apple Inc.)
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3074336 2017-09-27] (Valve Corporation)
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\...\Run: [Discord] => C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 200.44.32.12 200.109.78.12
      Tcpip\..\Interfaces\{805334D8-A2B3-4D15-A271-51DD1F711B0E}: [DhcpNameServer] 200.44.32.12 200.109.78.12

      Internet Explorer:
      ==================
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-ve/?ocid=iehp
      SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
      SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
      SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
      SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
      SearchScopes: HKU\S-1-5-21-1685293888-2723032173-1560773260-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2016-07-23] (Oracle Corporation)
      BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-04-28] (Atheros Commnucations)
      BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2016-07-23] (Oracle Corporation)

      FireFox:
      ========
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-13] ()
      FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [2016-07-23] (Oracle Corporation)
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] ()
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-03-13] (Intel Corporation)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-03-13] (Intel Corporation)
      FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll [2016-07-23] (Oracle Corporation)
      FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
      FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.)
      FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2011-08-02] (Sony Network Entertainment International LLC)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-29] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-29] (Google Inc.)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR Profile: C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default [2017-09-30]
      CHR Extension: (Presentaciones de Google) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-29]
      CHR Extension: (Google Docs) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-29]
      CHR Extension: (Google Drive) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-29]
      CHR Extension: (YouTube) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-29]
      CHR Extension: (Hojas de cálculo de Google) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-09-29]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-29]
      CHR Extension: (Gmail) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-29]
      CHR Extension: (Chrome Media Router) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
      R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.)
      R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-04-28] (Atheros Commnucations) [File not signed]
      S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [112256 2012-03-21] (Atheros Communication Inc.) [File not signed]
      R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-13] ()
      R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-03-13] (Intel Corporation)
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
      R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
      R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
      R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
      R2 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-20] () [File not signed]
      R2 PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [473960 2012-02-21] (Sony Corporation)
      R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
      S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-29] (Sony Corporation)
      R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1656600 2016-03-31] (Sony Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
      R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [163456 2012-04-28] (Atheros) [File not signed]

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
      R3 BTATH_VDP; C:\Windows\System32\drivers\btath_vdp.sys [422144 2012-04-28] (Atheros)
      R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-08-24] ()
      R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [192960 2017-09-26] (Malwarebytes)
      R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [101824 2017-09-30] (Malwarebytes)
      R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [45472 2017-09-30] (Malwarebytes)
      R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253888 2017-09-30] (Malwarebytes)
      R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-09-30] (Malwarebytes)
      R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
      R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
      U3 aswbdisk; no ImagePath

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-09-30 10:32 - 2017-09-30 10:33 - 000017782 _____ C:\Users\VAIO_\Desktop\FRST.txt
      2017-09-30 10:26 - 2017-09-30 10:26 - 000000000 ____D C:\Users\VAIO_\Desktop\FRST-OlderVersion
      2017-09-30 10:20 - 2017-09-30 10:20 - 000101824 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
      2017-09-30 10:20 - 2017-09-30 10:20 - 000000000 ___RD C:\Users\VAIO_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
      2017-09-29 18:05 - 2017-09-29 18:05 - 000002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-09-29 18:05 - 2017-09-29 18:05 - 000002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-09-29 17:57 - 2017-09-29 17:57 - 000003532 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-09-29 17:57 - 2017-09-29 17:57 - 000003404 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-09-27 17:44 - 2017-09-27 17:44 - 000000556 _____ C:\Users\VAIO_\Desktop\cc_20170927_174434.reg
      2017-09-27 17:34 - 2017-09-27 17:34 - 000002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
      2017-09-27 17:34 - 2017-09-27 17:34 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-09-27 17:34 - 2017-09-27 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      2017-09-27 17:27 - 2017-09-27 17:28 - 009809688 _____ (Piriform Ltd) C:\Users\VAIO_\Downloads\ccsetup535 (2).exe
      2017-09-27 17:14 - 2017-09-27 17:15 - 009826968 _____ (Piriform Ltd) C:\Users\VAIO_\Downloads\ccsetup534.exe
      2017-09-27 17:12 - 2017-09-27 17:13 - 009809688 _____ (Piriform Ltd) C:\Users\VAIO_\Downloads\ccsetup535 (1).exe
      2017-09-27 17:11 - 2017-09-27 17:12 - 009809856 _____ (Piriform Ltd) C:\Users\VAIO_\Downloads\ccsetup535pro.exe
      2017-09-27 17:09 - 2017-09-27 17:10 - 009809688 _____ (Piriform Ltd) C:\Users\VAIO_\Downloads\ccsetup535.exe
      2017-09-27 16:54 - 2017-09-27 16:54 - 000001355 _____ C:\Users\VAIO_\Desktop\AdwCleaner[C2] (despues del reinicio).txt
      2017-09-27 16:36 - 2017-09-27 16:36 - 000001168 _____ C:\Users\VAIO_\Desktop\AdwCleaner[S1].txt
      2017-09-27 16:30 - 2017-09-27 16:31 - 008182736 _____ (Malwarebytes) C:\Users\VAIO_\Downloads\adwcleaner_7.0.2.1.exe
      2017-09-27 15:58 - 2017-09-27 16:00 - 000001866 _____ C:\Users\VAIO_\Desktop\JRT.txt
      2017-09-26 22:26 - 2017-09-26 22:26 - 000001558 _____ C:\Users\VAIO_\Desktop\malwarebytes texto 26 de septiembre.txt
      2017-09-26 21:55 - 2017-09-30 10:23 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
      2017-09-26 21:55 - 2017-09-30 10:19 - 000253888 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
      2017-09-26 21:55 - 2017-09-30 10:19 - 000045472 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
      2017-09-26 21:55 - 2017-09-26 21:55 - 000192960 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
      2017-09-26 21:55 - 2017-09-26 21:55 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-09-26 21:55 - 2017-09-26 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-09-26 21:55 - 2017-09-26 21:55 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-09-26 21:55 - 2017-08-24 11:27 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
      2017-09-26 21:51 - 2017-09-26 21:51 - 000001557 _____ C:\Users\VAIO_\Desktop\malwarebytes premium.txt
      2017-09-26 13:54 - 2017-09-26 13:54 - 000000000 ____D C:\Users\VAIO_\AppData\Roaming\Macromedia
      2017-09-20 11:09 - 2017-09-20 11:14 - 068408664 _____ (Malwarebytes ) C:\Users\VAIO_\Downloads\mb3-setup-35891.35891-3.2.2.2029.exe
      2017-09-13 23:41 - 2017-09-13 23:41 - 000055808 _____ C:\Users\VAIO_\Downloads\Calendario Secretaria 2017-2018(1).xls
      2017-09-13 23:31 - 2017-08-19 11:28 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
      2017-09-13 23:31 - 2017-08-19 11:10 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
      2017-09-13 23:31 - 2017-08-16 11:29 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
      2017-09-13 23:31 - 2017-08-16 11:10 - 000629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
      2017-09-13 23:31 - 2017-08-16 10:57 - 003224576 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
      2017-09-13 23:31 - 2017-08-15 11:29 - 014182400 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
      2017-09-13 23:31 - 2017-08-15 11:29 - 001867264 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
      2017-09-13 23:31 - 2017-08-15 11:10 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
      2017-09-13 23:31 - 2017-08-15 11:10 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 003203584 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 002150912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 000303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
      2017-09-13 23:31 - 2017-08-14 13:35 - 000128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
      2017-09-13 23:31 - 2017-08-14 13:34 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
      2017-09-13 23:31 - 2017-08-13 17:37 - 002144256 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
      2017-09-13 23:31 - 2017-08-13 17:30 - 001401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
      2017-09-13 23:31 - 2017-08-11 02:42 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
      2017-09-13 23:31 - 2017-08-11 02:38 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
      2017-09-13 23:31 - 2017-08-11 02:38 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
      2017-09-13 23:31 - 2017-08-11 02:38 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
      2017-09-13 23:31 - 2017-08-11 02:38 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
      2017-09-13 23:31 - 2017-08-11 02:36 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 002065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000757248 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
      2017-09-13 23:31 - 2017-08-11 02:35 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000971776 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:24 - 004001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
      2017-09-13 23:31 - 2017-08-11 02:24 - 003945704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
      2017-09-13 23:31 - 2017-08-11 02:21 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
      2017-09-13 23:31 - 2017-08-11 02:20 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
      2017-09-13 23:31 - 2017-08-11 02:20 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
      2017-09-13 23:31 - 2017-08-11 02:19 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 02:12 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
      2017-09-13 23:31 - 2017-08-11 02:09 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
      2017-09-13 23:31 - 2017-08-11 02:07 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
      2017-09-13 23:31 - 2017-08-11 02:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
      2017-09-13 23:31 - 2017-08-11 02:07 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
      2017-09-13 23:31 - 2017-08-11 02:06 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
      2017-09-13 23:31 - 2017-08-11 02:03 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
      2017-09-13 23:31 - 2017-08-11 02:03 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
      2017-09-13 23:31 - 2017-08-11 02:02 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
      2017-09-13 23:31 - 2017-08-11 02:01 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
      2017-09-13 23:31 - 2017-08-11 02:00 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
      2017-09-13 23:31 - 2017-08-11 02:00 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
      2017-09-13 23:31 - 2017-08-11 02:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
      2017-09-13 23:31 - 2017-08-11 01:59 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
      2017-09-13 23:31 - 2017-08-11 01:59 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
      2017-09-13 23:31 - 2017-08-11 01:59 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
      2017-09-13 23:31 - 2017-08-11 01:59 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
      2017-09-13 23:31 - 2017-08-11 01:59 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
      2017-09-13 23:31 - 2017-08-11 01:58 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
      2017-09-13 23:31 - 2017-08-11 01:58 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
      2017-09-13 23:31 - 2017-08-11 01:58 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
      2017-09-13 23:31 - 2017-08-11 01:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
      2017-09-13 23:31 - 2017-08-11 01:56 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
      2017-09-13 23:31 - 2017-08-11 01:56 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
      2017-09-13 23:31 - 2017-08-11 01:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
      2017-09-13 23:31 - 2017-08-11 01:55 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
      2017-09-13 23:31 - 2017-08-11 01:55 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 01:55 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 01:55 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
      2017-09-13 23:31 - 2017-08-11 01:55 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
      2017-09-10 18:45 - 2017-09-10 18:45 - 000000014 _____ C:\Users\VAIO_\Documents\numero para Luist.txt

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-09-30 10:32 - 2017-08-23 11:36 - 000000000 ____D C:\FRST
      2017-09-30 10:31 - 2009-07-14 00:45 - 000021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2017-09-30 10:31 - 2009-07-14 00:45 - 000021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2017-09-30 10:26 - 2017-08-23 11:28 - 002399744 _____ (Farbar) C:\Users\VAIO_\Desktop\FRST64.exe
      2017-09-30 10:20 - 2016-12-16 15:59 - 000000000 ____D C:\Program Files (x86)\Steam
      2017-09-30 10:19 - 2009-07-14 01:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2017-09-29 18:05 - 2016-11-25 09:18 - 000000000 ____D C:\Users\VAIO_\AppData\Local\Google
      2017-09-29 18:04 - 2016-07-28 20:02 - 000000000 ____D C:\Program Files (x86)\Google
      2017-09-29 17:56 - 2017-03-16 19:48 - 000000000 ____D C:\Users\VAIO_\AppData\Local\Deployment
      2017-09-28 15:14 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\inf
      2017-09-27 17:34 - 2017-08-21 12:20 - 000000000 ____D C:\Program Files\CCleaner
      2017-09-27 16:37 - 2017-08-20 17:24 - 000000000 ____D C:\AdwCleaner
      2017-09-26 21:55 - 2017-05-02 17:36 - 000000000 ____D C:\Program Files\Malwarebytes
      2017-09-26 13:52 - 2016-11-25 09:18 - 000001401 _____ C:\Users\VAIO_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
      2017-09-26 12:47 - 2017-01-18 17:08 - 000000000 ____D C:\Users\VAIO_\AppData\Roaming\discord
      2017-09-24 17:43 - 2016-12-26 12:53 - 000000000 ____D C:\Users\VAIO_\Documents\Reseñas
      2017-09-20 02:07 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\rescache
      2017-09-17 18:21 - 2016-07-23 12:57 - 000747970 _____ C:\Windows\system32\perfh00A.dat
      2017-09-17 18:21 - 2016-07-23 12:57 - 000159410 _____ C:\Windows\system32\perfc00A.dat
      2017-09-17 18:21 - 2009-07-14 01:13 - 001678218 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-09-14 03:45 - 2009-07-14 00:45 - 000446280 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-09-14 03:26 - 2016-08-03 19:58 - 000000000 ____D C:\Windows\system32\MRT
      2017-09-14 03:19 - 2016-08-03 19:58 - 138202976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2017-09-14 03:05 - 2011-02-10 19:03 - 001652804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
      2017-09-14 03:01 - 2009-07-13 22:34 - 000000478 _____ C:\Windows\win.ini
      2017-09-13 11:58 - 2016-07-23 13:52 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
      2017-09-13 11:58 - 2016-07-23 13:52 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
      2017-09-13 11:58 - 2016-07-23 13:52 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
      2017-09-13 11:57 - 2016-07-23 13:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
      2017-09-13 11:57 - 2016-07-23 13:52 - 000000000 ____D C:\Windows\system32\Macromed

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\SysWOW64\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-09-20 01:59

      ==================== End of FRST.txt ============================

    6. #6
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2017
      Ran by VAIO_ (30-09-2017 10:36:16)
      Running from C:\Users\VAIO_\Desktop
      Windows 7 Home Premium Service Pack 1 (X64) (2016-07-23 19:41:27)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1685293888-2723032173-1560773260-500 - Administrator - Disabled)
      HomeGroupUser$ (S-1-5-21-1685293888-2723032173-1560773260-1003 - Limited - Enabled)
      Invitado (S-1-5-21-1685293888-2723032173-1560773260-501 - Limited - Disabled)
      VAIO_ (S-1-5-21-1685293888-2723032173-1560773260-1004 - Administrator - Enabled) => C:\Users\VAIO_

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
      AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
      ACID Music Studio 8.0 (HKLM-x32\...\{7B70781E-6D04-11E0-A566-005056C00008}) (Version: 8.0.178 - Sony)
      Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
      Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
      Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
      AMD Catalyst Install Manager (HKLM\...\{EBF1529E-D2D5-47CF-97EC-7D90CEF0FE04}) (Version: 3.0.859.0 - Advanced Micro Devices, Inc.)
      Apple Application Support (32 bits) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
      Apple Application Support (64 bits) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
      Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
      Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
      ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.161 - ArcSoft)
      ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.457 - ArcSoft)
      Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.135 - Atheros)
      Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
      BPCx64 (HKLM\...\{C25C68CF-E4A1-4B6F-9F28-5559264F23FD}) (Version: 1.0.0 - Sony Corporation) Hidden
      BPCx86 (HKLM-x32\...\{F5802A74-7CAF-42E7-AC98-BB8D99B90C7D}) (Version: 1.0.0 - Sony Corporation) Hidden
      CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
      Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
      CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6426.52 - CyberLink Corp.)
      D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
      Diagnóstico de ventilador de CPU VAIO (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
      Discord (HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\...\Discord) (Version: 0.0.298 - Discord Inc.)
      Drop Alive (HKLM\...\Steam App 513450) (Version: - Invi Games)
      DVD Architect Studio 5.0 (HKLM-x32\...\{7AFBA1EE-24FE-11E1-A28A-F04DA23A5C58}) (Version: 5.0.157 - Sony)
      Evernote v. 4.5.2 (HKLM-x32\...\{8CE152BA-1D16-11E1-867D-984BE15F174E}) (Version: 4.5.2.5904 - Evernote Corp.)
      FDUx86 (HKLM-x32\...\{3490653F-2789-46A1-B1BF-6BD4CF4131AB}) (Version: 1.0.0 - Sony Corporation) Hidden
      Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
      Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
      Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
      Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
      Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
      Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
      iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.)
      iVSS (HKLM-x32\...\{24DE6F2D-6215-498C-81A7-13C0AEB32BC6}) (Version: 1.0.0 - iVSS)
      Java(TM) 7 Update 1 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417001FF}) (Version: 7.0.10 - Oracle)
      Java(TM) 7 Update 1 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217001FF}) (Version: 7.0.10 - Oracle)
      Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
      KUx86 (HKLM-x32\...\{6FD21053-829D-40E7-B04C-CAFB7D5CD025}) (Version: 1.0.0 - Sony Corporation ) Hidden
      Malwarebytes versión 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
      Manual de VAIO (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.3.0.12300 - Sony Corporation)
      Media Gallery (HKLM\...\{0EB7792D-EFA2-42AB-9A22-F33D9458E974}) (Version: 2.2.3.04170 - Sony Corporation)
      Media Go (HKLM-x32\...\{167A1F6A-9BF2-4B24-83DB-C6D659F680EA}) (Version: 2.0.317 - Sony)
      Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
      Microsoft .NET Framework 4.7 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02053 - Microsoft Corporation)
      Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
      Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
      Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
      Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
      Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version: - Microsoft)
      Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
      Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version: - Microsoft)
      Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version: - Microsoft)
      Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version: - Microsoft)
      Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
      Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
      Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
      MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
      No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
      PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.1.01.14210 - Sony Corporation)
      PlayStation(R)Network Downloader (HKLM-x32\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.07.00849 - Sony Computer Entertainment Inc.)
      PlayStation(R)Store (HKLM-x32\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.5.15.13232 - Sony Computer Entertainment Inc.)
      Qualcomm Atheros Direct Connect (HKLM-x32\...\{21DD6041-7251-40FA-9D06-C5EB30268E0F}) (Version: 3.1 - Qualcomm Atheros) Hidden
      Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{E727B31A-8B24-4C1C-934A-69634E0D2C0B}) (Version: 3.0 - Qualcomm Atheros)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6564 - Realtek Semiconductor Corp.)
      Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.91 - Realtek Semiconductor Corp.)
      Remote Keyboard (HKLM-x32\...\{6466EF6E-700E-470F-94CB-D0050302C84E}) (Version: 1.2.0.09270 - Sony Corporation) Hidden
      Remote Play with PlayStation(R)3 (HKLM-x32\...\{D56DA747-5FDB-4AD5-9A6A-3481C0ED44BD}) (Version: 1.1.0.21090 - Sony Corporation) Hidden
      Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
      Sound Forge Audio Studio 10.0 (HKLM-x32\...\{0B5CD700-A1D3-11E0-AD24-005056C00008}) (Version: 10.0.176 - Sony)
      SSLx64 (HKLM\...\{312395BC-7CC2-434C-A660-30250276A926}) (Version: 1.0.0 - Sony Corporation ) Hidden
      SSLx86 (HKLM-x32\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
      StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      Super Blue Boy Planet (HKLM\...\Steam App 560260) (Version: - Tuwi Michael Nannings)
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.1.0 - Synaptics Incorporated)
      Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
      TrackID(TM) with BRAVIA (HKLM-x32\...\{858B32BD-121C-4AC8-BD87-CE37C51C03E2}) (Version: 1.2.0.09270 - Sony Corportaion) Hidden
      TriDef 3D (Sony) 2.0.5 (HKLM-x32\...\experience-sony-bundle) (Version: 2.0.5 - Dynamic Digital Depth Australia Pty Ltd)
      Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
      V3DPx86 (HKLM-x32\...\{D4E7BB46-310E-4A21-B261-052A5997EA2F}) (Version: 1.0.0 - Sony Corporation ) Hidden
      VAIO - Media Gallery - VAIO Personalization Manager Update (HKLM\...\{50A7190B-5DA6-4A51-B275-3D413E617BA6}) (Version: 4.2.5.07160 - Sony Corporation)
      VAIO - Microsoft Visual C++ 2010 SP1 Runtime 10.0.40219.325 (HKLM\...\{34EB42BE-F4D3-44C1-B28E-9740115DB72C}) (Version: 1.0.00.01300 - Sony Corporation)
      VAIO - PlayMemories Home Plug-in (HKLM\...\{886C0C18-F905-49B2-90BA-EFC0FEDF27C6}) (Version: 2.0.01.03310 - Sony Corporation)
      VAIO - Teclado a distancia (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
      VAIO - Teclado a distancia con PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.0.09210 - Sony Corporation)
      VAIO - TrackID™ con BRAVIA (HKLM-x32\...\{2F41EF61-A066-4EBF-84F8-21C1B317A780}) (Version: 1.2.0.09270 - Sony Corporation)
      VAIO - Uso a distancia con PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.21090 - Sony Corporation)
      VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.4.0.15030 - Sony Corporation)
      VAIO 3D Portal (HKLM-x32\...\{C14EAE86-C526-4E00-B245-CFF86233C3D2}) (Version: 1.2.0.10131 - Sony Corporation)
      VAIO Care (HKLM\...\{CFF47016-B212-4D89-8DC2-15D5508A73BA}) (Version: 8.4.6.05111 - Sony Corporation)
      VAIO Care Recovery (HKLM\...\{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}) (Version: 1.1.1.13230 - Sony Corporation)
      VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 5.2.1.15070 - Sony Corporation)
      VAIO Data Restore Tool (HKLM-x32\...\{5156C9BF-1C27-430B-96D8-7129F11699A8}) (Version: 1.9.0.13190 - Sony Corporation) Hidden
      VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.9.0.13190 - Sony Corporation)
      VAIO Easy Connect (HKLM-x32\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation) Hidden
      VAIO Easy Connect (HKLM-x32\...\InstallShield_{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation)
      VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.2.02200 - Sony Corporation)
      VAIO Gate (HKLM-x32\...\{AE5F3379-8B81-457E-8E09-7E61D941AFA4}) (Version: 2.4.1.09230 - Sony Corporation) Hidden
      VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.5.2.02090 - Sony Corporation)
      VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 1.0.0.12300 - Sony Corporation)
      VAIO Gesture Control (HKLM-x32\...\{C8544A9A-76BE-4F82-811E-979799AE493B}) (Version: 1.0.0.12300 - Sony Corporation) Hidden
      VAIO Help and Support (HKLM-x32\...\{C9EFF66F-B0CF-4B1A-9371-2FC647658CDF}) (Version: 17.00.0109 - Sony Corporation)
      VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.3.0.12280 - Sony Corporation)
      VAIO OOBE (HKLM-x32\...\{D9777637-33B7-47A9-800C-F6A2CD4EB0FE}) (Version: 12.2.1.2483 - Sony Corporation)
      VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.0.09010 - Sony Corporation)
      VAIO Satisfaction Survey. (HKLM-x32\...\VAIO Satisfaction Survey.3.0) (Version: 3.0 - Sony Electronics Inc.)
      VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.14.1.07010 - Sony Corporation)
      VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.7.1.06040 - Sony Corporation)
      VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
      VCCx64 (HKLM\...\{549AD5FB-F52D-4307-864A-C0008FB35D96}) (Version: 1.0.0 - Sony Corporation) Hidden
      VCCx86 (HKLM-x32\...\{DF184496-1CA2-4D07-92E7-0BD251D7DEF0}) (Version: 1.0.0 - Sony Corporation) Hidden
      Vegas Pro 13.0 (64-bit) (HKLM\...\{CFB5504F-BFBC-11E3-8794-F04DA23A5C58}) (Version: 13.0.290 - Sony)
      VGClientX64 (HKLM\...\{99E6C2F3-59B2-4308-B1CD-4928B55B7E30}) (Version: 1.0.0 - Sony Corporation) Hidden
      VGClientX86 (HKLM-x32\...\{8B583EF5-FA7B-4AE2-9008-51B7FD505886}) (Version: 1.0.0 - Sony Corporation) Hidden
      VHD (HKLM-x32\...\{DB1A3EA7-0C25-4BEC-A108-176195190369}) (Version: 1.0.0 - Microsoft) Hidden
      VIx64 (HKLM\...\{D55EAC07-7207-44BD-B524-0F063F327743}) (Version: 1.0.0 - Sony Corporation) Hidden
      VIx86 (HKLM-x32\...\{D17C2A58-E0EA-4DD7-A2D6-C448FD25B6F6}) (Version: 1.0.0 - Sony Corporation) Hidden
      VMLx86 (HKLM-x32\...\{7E5A5CA6-B7D0-406E-A75E-157CAB47EB94}) (Version: 1.0.0 - Sony Corporation) Hidden
      VPMx64 (HKLM\...\{DBEAA361-F8A4-4298-B41C-9E9DCB9AAB84}) (Version: 1.0.0 - Sony Corporation ) Hidden
      VSNx64 (HKLM\...\{F2611404-06BF-4E67-A5B7-8DB2FFC1CBF6}) (Version: 1.0.0 - Sony Corporation) Hidden
      VSNx86 (HKLM-x32\...\{A49A517F-5332-4665-922C-6D9AD31ADD4F}) (Version: 1.0.0 - Sony Corporation) Hidden
      VSSTx64 (HKLM\...\{4F31AC31-0A28-4F5A-8416-513972DA1F79}) (Version: 1.0.0 - Sony Corporation ) Hidden
      VSSTx86 (HKLM-x32\...\{B24BB74E-8359-43AA-985A-8E80C9219C70}) (Version: 1.0.0 - Sony Corporation) Hidden
      VU5x86 (HKLM-x32\...\{D2D23D08-D10E-43D6-883C-78E0B2AC9CC6}) (Version: 1.0.0 - Sony Corporation ) Hidden
      VUx64 (HKLM\...\{A0A2BE14-D3FF-41C8-9545-4B130E3FE9A4}) (Version: 1.2.0 - Sony Corporation) Hidden
      VUx86 (HKLM-x32\...\{D04F1D22-4A47-42C6-A2B9-094A7B844D9B}) (Version: 1.2.0 - Sony Corporation) Hidden
      VWSTx86 (HKLM-x32\...\{B8991D99-88FD-41F2-8C32-DB70278D5C30}) (Version: 1.0.0 - Sony Corporation) Hidden
      Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
      XperiaLinkx86 (HKLM-x32\...\{EE402ACB-8269-4E44-9CA1-D81FDC4B4545}) (Version: 1.0.0 - Sony Corporation) Hidden

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2012-04-28] (Atheros Commnucations)
      ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
      ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-02-20] (Sony Corporation)
      ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
      ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-02-20] (Sony Corporation)
      ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2012-04-28] (Atheros Commnucations)
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
      ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
      ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-02-10] (Advanced Micro Devices, Inc.)
      ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-02-20] (Sony Corporation)
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {005FEA03-643F-4856-89CC-DF94D0790916} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation)
      Task: {0522B267-C070-4A6B-A98D-9D79BC4B56D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-29] (Google Inc.)
      Task: {0F2D3E7B-B4FD-4EAB-9AAA-A52A2AD95188} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {0F3296D5-E9C8-4E8D-8406-EB90DECDCEA7} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation)
      Task: {1DB24957-BD0F-498D-ADF9-BE90D6299A1A} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
      Task: {1F660297-0144-4906-AF43-195E9CA67542} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2017-05-11] (Sony Corporation)
      Task: {2AE926EE-D794-4467-A8D2-09B1BA21AAC2} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation)
      Task: {2DF743E4-9EEA-482D-8EB7-E0C62B8DFA01} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2016-03-31] (Sony Corporation)
      Task: {36B850BB-6FE5-4466-ABC9-7609A7BE3E7A} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {39260925-FB88-4DF5-A19B-6FEE927337D8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
      Task: {3BBFEAA5-3860-4ABA-9E37-3DA8D49691BB} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {40DBFF15-9055-4778-A121-163E770A4DBF} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {53ED2F9A-41BD-4E44-9ED1-3D506C0DAD35} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1685293888-2723032173-1560773260-1004
      Task: {63AD127D-CE3F-4692-8C3D-477958852626} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {68A56335-5788-419E-AB8C-BEB856C74E91} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {6A82E434-822D-493F-BBF1-6B6FB3E20AB8} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-02-24] (Sony Corporation)
      Task: {6C78C652-9898-4895-BF91-47B26D759F7F} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
      Task: {6CF59574-21E9-4276-82F0-63D049B69768} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2017-04-19] (Sony Corporation)
      Task: {7249A153-AFBE-4CFD-A432-0A386C1A9022} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {73FC675A-C5C8-46BC-B969-EA3D5CBEC528} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2011-12-27] (Sony Corporation)
      Task: {83DA58F4-B01C-434C-A67E-9F596218DF64} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation)
      Task: {880AE36C-49A1-458B-BC01-A83221BD8E21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-29] (Google Inc.)
      Task: {8AB93580-52EB-4A1D-9A7A-865ACB9F48CA} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2017-04-19] (Sony Corporation)
      Task: {8EF583CE-4BD6-4BC3-8E48-2C4FF09D1610} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
      Task: {8FC2927D-3251-41BD-943C-11FA360292E2} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusCreate => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation)
      Task: {92B3950D-B4D0-4BDE-AB48-004DF46F081C} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2017-04-19] (Sony Corporation)
      Task: {93233701-9A2B-4A78-AD13-95168FE658E3} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation)
      Task: {99886881-EBE1-4EE0-ADE2-3BFA0F2E3257} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-13] (Adobe Systems Incorporated)
      Task: {A7271742-2154-4159-A3A5-C79BFB3624EC} - System32\Tasks\Sony\ATI Catalyst => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-02-10] (Advanced Micro Devices, Inc.)
      Task: {AF0734C0-D3EB-4C4C-AB5F-C5B3FDF3E692} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2017-04-19] (Sony Corporation)
      Task: {B7258A0F-ACEF-4022-B03A-575E4BE942C7} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2016-03-04] (Sony Corporation)
      Task: {BB448A0E-ACF9-4D4A-809D-5C3CA9D3CBD4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd)
      Task: {C39DCE92-78E5-4A8F-9E16-85A4C4CA8082} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {C8415DAD-26BC-47E2-B60C-8F1BCA57B574} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
      Task: {E55ABA7B-BCE7-4CAC-98E2-7BC1102E3851} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-12-27] (Sony Corporation)
      Task: {E7F3C623-87B9-4CF4-A137-B9991E50EFCB} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2017-05-11] (Sony Corporation)
      Task: {E9E97CA3-A31C-4CFE-8223-69DED6FA3389} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => net [Argument = start VSNService]
      Task: {E9FEF683-B8E1-43D8-9987-F60CB4B60F91} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2012-02-20] (Sony Corporation)
      Task: {EEF2DBA3-62D6-47DA-9FA8-880F0952EC0C} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation)
      Task: {F7073C99-59E9-4B0C-8ACA-700B176DE410} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2017-05-11] (Sony Corporation)
      Task: {FB76026B-2FFE-4007-A50A-D8CC27152EBA} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusLogon => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2012-12-24 06:53 - 2012-12-24 06:53 - 000129024 _____ () C:\Windows\System32\HPCP1020LM.DLL
      2017-05-09 00:44 - 2017-05-09 00:44 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
      2017-03-16 16:08 - 2017-03-16 16:08 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
      2016-07-23 12:39 - 2012-03-13 12:01 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
      2017-09-26 21:55 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
      2017-05-09 03:05 - 2017-05-09 03:05 - 001354040 _____ () C:\Program Files\iTunes\libxml2.dll
      2017-05-09 03:05 - 2017-05-09 03:05 - 000092472 _____ () C:\Program Files\iTunes\zlib1.dll
      2017-09-07 12:12 - 2017-09-07 12:12 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
      2015-07-20 11:34 - 2015-07-20 11:34 - 000012288 _____ () C:\Program Files (x86)\No-IP\ducservice.exe
      2011-11-09 10:55 - 2011-11-09 10:55 - 000016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
      2012-02-10 00:19 - 2012-02-10 00:19 - 000369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
      2016-07-23 13:40 - 2012-03-07 19:57 - 000021128 _____ () C:\Program Files (x86)\Sony\VAIO Control Center\VESBasePS.dll
      2017-08-08 19:29 - 2017-08-08 15:13 - 001893880 _____ () C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
      2017-08-08 19:29 - 2017-08-08 15:13 - 001938424 _____ () C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\libglesv2.dll
      2017-08-08 19:29 - 2017-08-08 15:13 - 000095736 _____ () C:\Users\VAIO_\AppData\Local\Discord\app-0.0.298\libegl.dll
      2017-09-14 07:55 - 2017-09-14 07:55 - 000172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\f203ecbdc8e8f4f836e1627efb89f9ae\IsdiInterop.ni.dll
      2016-07-23 12:45 - 2011-11-29 21:00 - 000059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
      2015-07-20 11:34 - 2015-07-20 11:34 - 000073728 _____ () C:\Program Files (x86)\No-IP\ducapi.dll
      2017-08-08 21:57 - 2017-08-30 23:54 - 009622008 _____ () \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
      2017-08-08 21:57 - 2017-08-08 21:57 - 001440248 _____ () \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
      2017-09-30 10:23 - 2017-09-30 10:23 - 000148992 _____ () \\?\C:\Users\VAIO_\AppData\Local\Temp\6650.tmp.node
      2017-08-08 21:57 - 2017-08-08 21:57 - 002658296 _____ () \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
      2017-08-08 21:58 - 2017-08-08 21:58 - 002673656 _____ () \\?\C:\Users\VAIO_\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node
      2016-07-23 12:38 - 2012-03-13 12:02 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2009-07-13 22:34 - 2017-08-24 22:35 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\VAIO_\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
      DNS Servers: 200.44.32.12 - 200.109.78.12
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{2EDCA3C1-6CC7-424B-8C4D-129BDCB48A56}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
      FirewallRules: [{93B7843C-DD55-46C6-890C-B0EB9BF2450F}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
      FirewallRules: [{286D7F1F-58A4-4F72-AD5E-989567B6ED9F}] => (Block) C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe
      FirewallRules: [{9E3D2EC5-2900-41B5-ADBC-2A800EC9651F}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe
      FirewallRules: [{EE2F3BB7-796E-40DD-B787-227724B1A719}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
      FirewallRules: [{5C884C7F-BB47-424C-BE8A-32405713C9C0}] => (Allow) LPort=2869
      FirewallRules: [{B23FDE67-462D-46EC-869C-A9FB3C0FA73B}] => (Allow) LPort=1900
      FirewallRules: [{3CA51027-19AC-45F2-A82A-D53C59066896}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
      FirewallRules: [{0C074E3B-2CDD-4806-A15C-C9465887211F}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
      FirewallRules: [{E65FEB89-1F86-4117-BF6C-916F89FAB5E3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
      FirewallRules: [{FD577A0B-60FC-4D57-A20C-F9F67492573C}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe
      FirewallRules: [{7BC9EA3C-84D7-4221-9FA3-0E3F027908A2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
      FirewallRules: [{5241D8CE-29A8-4E32-B8E9-82351F80391F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{62C6461A-AB67-480C-9AEF-C2431D9EE67D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{4FC7C45F-15B2-4679-988D-4294DB818E75}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{0C6826A1-0EC9-4B22-B988-CB1BDF8D4610}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{59326CCD-D7F7-427C-973B-CFFFE15AAB3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
      FirewallRules: [{D7394F2D-27C6-47F5-B64A-63DE128CC369}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
      FirewallRules: [{4FAA10E0-A840-43A1-B5DE-C2305731FF61}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{8506B9F1-BF81-4920-8996-43F3CA2D7E7F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{998A5917-20CD-4A72-89C0-98CF72961FC1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{764DA51E-C3BF-4C7A-96AE-00E3D28604C0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{84CB04EE-A765-4387-9853-346EC4085814}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Blue Boy Planet\Super Blue Boy Planet.exe
      FirewallRules: [{8AFCB94C-1AC1-40AB-8243-81A5E1C3272C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Blue Boy Planet\Super Blue Boy Planet.exe
      FirewallRules: [TCP Query User{E1A95ADC-A044-4EC9-8773-FAF7EA627E52}C:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe] => (Block) C:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe
      FirewallRules: [UDP Query User{CD56354F-6473-40C4-AA94-87D55437F672}C:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe] => (Block) C:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe
      FirewallRules: [{85892C96-8E34-4470-A5A0-3BB63775490A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
      FirewallRules: [{45788F77-7ABF-434D-8CE9-2B0D1E499BC1}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
      FirewallRules: [{AB51B7E1-FCDD-4643-8EC8-81A8B4D2398F}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
      FirewallRules: [{DA746DB4-8128-47C3-A9E4-C90E00C9711C}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
      FirewallRules: [{E1503EED-7AA3-4E47-B867-33BE78F85204}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
      FirewallRules: [{4DFC2FB2-0EAF-4471-B0F8-B77D991C6BA8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef 3D\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player

      ==================== Restore Points =========================


      ==================== Faulty Device Manager Devices =============

      Name: Teredo Tunneling Pseudo-Interface
      Description: Adaptador de tunelización Teredo de Microsoft
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: Microsoft
      Service: tunnel
      Problem: : This device cannot start. (Code10)
      Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
      On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (09/30/2017 10:33:53 AM) (Source: System Restore) (EventID: 8193) (User: )
      Description: No se pudo crear el punto de restauración (proceso = C:\Windows\system32\svchost.exe -k netsvcs; descripción = Windows Update; error = 0x80070422).

      Error: (09/30/2017 10:20:46 AM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (09/29/2017 06:37:04 PM) (Source: System Restore) (EventID: 8193) (User: )
      Description: No se pudo crear el punto de restauración (proceso = C:\Windows\system32\svchost.exe -k netsvcs; descripción = Windows Update; error = 0x80070422).

      Error: (09/29/2017 06:36:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: m->NextScheduledSPRetry 1390546

      Error: (09/29/2017 06:36:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: m->NextScheduledEvent 1390546

      Error: (09/29/2017 06:36:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: Continuously busy for more than a second

      Error: (09/29/2017 05:50:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (09/28/2017 03:12:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (09/27/2017 05:32:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (09/27/2017 04:40:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


      System errors:
      =============
      Error: (09/30/2017 10:18:48 AM) (Source: Ntfs) (EventID: 137) (User: )
      Description: El administrador de recursos de transacción en el volumen \\?\Volume{379b5c26-b310-11e6-a262-806e6f6e6963} detectó un error irreproducible y no se pudo iniciar. Los datos contienen el código de error.

      Error: (09/29/2017 05:48:55 PM) (Source: Ntfs) (EventID: 137) (User: )
      Description: El administrador de recursos de transacción en el volumen \\?\Volume{379b5c26-b310-11e6-a262-806e6f6e6963} detectó un error irreproducible y no se pudo iniciar. Los datos contienen el código de error.

      Error: (09/28/2017 03:32:49 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
      Description: Antimalware de Microsoft ha encontrado un error al intentar actualizar las firmas.

      Nueva versión de firma:

      Versión de firma anterior: 117.12.0.0

      Origen de actualización: Centro de protección contra malware de Microsoft

      Etapa de actualización: Buscar

      Ruta de origen: http://go.microsoft.com/fwlink/?Link...D-99752CCA7094

      Tipo de firma: Sistema de inspección de la red

      Tipo de actualización: Completa

      Usuario: NT AUTHORITY\Servicio de red

      Versión de motor actual:

      Versión de motor anterior: 2.1.13804.0

      Código del error: 0x80072ee7

      Descripción del error: No se pudo resolver el nombre de servidor o su dirección

      Error: (09/28/2017 03:32:48 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
      Description: Antimalware de Microsoft ha encontrado un error al intentar actualizar las firmas.

      Nueva versión de firma:

      Versión de firma anterior: 1.251.1500.0

      Origen de actualización: Centro de protección contra malware de Microsoft

      Etapa de actualización: Buscar

      Ruta de origen: http://go.microsoft.com/fwlink/?Link...D-99752CCA7094

      Tipo de firma: Antispyware

      Tipo de actualización: Completa

      Usuario: NT AUTHORITY\Servicio de red

      Versión de motor actual:

      Versión de motor anterior: 1.1.14104.0

      Código del error: 0x80072ee7

      Descripción del error: No se pudo resolver el nombre de servidor o su dirección

      Error: (09/28/2017 03:32:48 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
      Description: Antimalware de Microsoft ha encontrado un error al intentar actualizar las firmas.

      Nueva versión de firma:

      Versión de firma anterior: 1.251.1500.0

      Origen de actualización: Centro de protección contra malware de Microsoft

      Etapa de actualización: Buscar

      Ruta de origen: http://go.microsoft.com/fwlink/?Link...D-99752CCA7094

      Tipo de firma: Antivirus

      Tipo de actualización: Completa

      Usuario: NT AUTHORITY\Servicio de red

      Versión de motor actual:

      Versión de motor anterior: 1.1.14104.0

      Código del error: 0x80072ee7

      Descripción del error: No se pudo resolver el nombre de servidor o su dirección

      Error: (09/28/2017 03:32:48 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
      Description: Antimalware de Microsoft ha encontrado un error al intentar actualizar las firmas.

      Nueva versión de firma:

      Versión de firma anterior: 1.251.1500.0

      Origen de actualización: Servidor de Microsoft Update

      Etapa de actualización: Buscar

      Ruta de origen: http://www.microsoft.com

      Tipo de firma: Antivirus

      Tipo de actualización: Completa

      Usuario: NT AUTHORITY\SYSTEM

      Versión de motor actual:

      Versión de motor anterior: 1.1.14104.0

      Código del error: 0x8024402c

      Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.

      Error: (09/28/2017 03:12:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio Intel(R) ME Service no pudo iniciarse debido al siguiente error:
      El servicio no respondió a tiempo a la solicitud de inicio o de control.

      Error: (09/28/2017 03:12:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Intel(R) ME Service.

      Error: (09/28/2017 03:11:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio Apple Mobile Device Service no pudo iniciarse debido al siguiente error:
      El servicio no respondió a tiempo a la solicitud de inicio o de control.

      Error: (09/28/2017 03:11:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Apple Mobile Device Service.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
      Percentage of memory in use: 59%
      Total physical RAM: 4066.36 MB
      Available physical RAM: 1646.17 MB
      Total Virtual: 8130.9 MB
      Available Virtual: 4944.74 MB

      ==================== Drives ================================

      Drive c: () (Fixed) (Total:448.34 GB) (Free:333.17 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 875F1845)
      Partition 1: (Not Active) - (Size=17.2 GB) - (Type=27)
      Partition 2: (Active) - (Size=227 MB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=448.3 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================

    7. #7
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      23.977

      Re: Se descargó automáticamente hbpix

      Hola

      Sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

      • Para hacerlo descarga >> DelFix en tu escritorio.
        • Doble clic para ejecutarlo.(Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
        • Marca unicamente la casilla "Create registry backup".
      • Pulsar en Run.

        Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


      A continuación inicia tu equipo desde el >> Modo Seguro de Windows con función de red.

      Si tu SO es Windows 8/8.1/10 usa el 2º MÉTODO: de esta Faq de Windows 8 (aplicable a Windows 10) >> ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.


      Con los demás programas cerrados ve a >> Inicio >> Ejecutar >> y escribe notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)

      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      CHR Extension: (Presentaciones de Google) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-29]
      CHR Extension: (Google Docs) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-29]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
      CHR Extension: (Chrome Media Router) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]
      U3 aswbdisk; no ImagePath 
      
      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

      Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo

      • Ejecutas Frst.exe.
      • Presionas el botón Fix y aguardas a que termine.
      • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      • Lo pegas en tu próxima respuesta.


      Pon el reporte y comenta como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Fix result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017 01
      Ran by VAIO_ (02-10-2017 18:46:04) Run:2
      Running from C:\Users\VAIO_\Desktop
      Loaded Profiles: VAIO_ (Available Profiles: VAIO_)
      Boot Mode: Safe Mode (with Networking)
      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses:

      CHR Extension: (Presentaciones de Google) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-29]
      CHR Extension: (Google Docs) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-29]
      CHR Extension: (Documentos de Google sin conexi�n) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
      CHR Extension: (Chrome Media Router) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]
      U3 aswbdisk; no ImagePath

      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      *****************

      Error: Restore point can only be created in normal mode.
      Processes closed successfully.
      CHR Extension: (Presentaciones de Google) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-29] => Error: No automatic fix found for this entry.
      CHR Extension: (Google Docs) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-29] => Error: No automatic fix found for this entry.
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30] => Error: No automatic fix found for this entry.
      CHR Extension: (Chrome Media Router) - C:\Users\VAIO_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29] => Error: No automatic fix found for this entry.
      HKLM\System\CurrentControlSet\Services\aswbdisk => key removed successfully
      aswbdisk => service removed successfully

      ========= ipconfig /flushdns =========


      Configuraci¢n IP de Windows

      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

      ========= End of CMD: =========


      ========= ipconfig /renew =========


      Configuraci¢n IP de Windows

      No se puede realizar ninguna operaci¢n en Conexi¢n de red inal*mbrica 2 mientras los medios
      est‚n desconectados.
      No se puede realizar ninguna operaci¢n en Conexi¢n de *rea local mientras los medios
      est‚n desconectados.

      Adaptador de LAN inal*mbrica Conexi¢n de red inal*mbrica 2:

      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :

      Adaptador de LAN inal*mbrica Conexi¢n de red inal*mbrica:

      Sufijo DNS espec¡fico para la conexi¢n. . : cantv.net
      V¡nculo: direcci¢n IPv6 local. . . : fe80::5c74:fa83:e6bb:bea2%12
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.105
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.1.1

      Adaptador de Ethernet Conexi¢n de *rea local:

      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :

      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========


      BITSADMIN version 3.0 [ 7.5.7601 ]
      BITS administration utility.
      (C) Copyright 2000-2006 Microsoft Corp.

      BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
      Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

      Unable to connect to BITS - 0x8007042c

      ========= End of CMD: =========


      ========= RemoveProxy: =========

      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
      HKU\S-1-5-21-1685293888-2723032173-1560773260-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


      ========= End of RemoveProxy: =========

      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      =========== EmptyTemp: ==========

      BITS transfer queue => 0 B
      DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14060358 B
      Java, Flash, Steam htmlcache => 15186353 B
      Windows/system/drivers => 1332234 B
      Edge => 0 B
      Chrome => 14018483 B
      Firefox => 0 B
      Opera => 0 B

      Temp, IE cache, history, cookies, recent:
      Users => 0 B
      Default => 0 B
      Public => 0 B
      ProgramData => 0 B
      systemprofile => 128 B
      systemprofile32 => 128 B
      LocalService => 0 B
      NetworkService => 14437158 B
      VAIO_ => 32405291 B

      RecycleBin => 0 B
      EmptyTemp: => 87.2 MB temporary data Removed.

      ================================


      The system needed a reboot.

      ==== End of Fixlog 18:46:19 ====

      Acabo de hacerlo

    9. #9
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      23.977

      Re: Se descargó automáticamente hbpix

      Hola

      Como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de UserconCriterio
      Registrado
      ago 2017
      Ubicación
      Venezuela
      Mensajes
      20

      Re: Se descargó automáticamente hbpix

      Hola, primero que nada, mis disculpas :/ , realmente no se me da moviendome en esta comunidad.

      Volviendo al tema, luego de haber hecho el procedimiento con hbpix la semana pasada, mientras navegaba por tv tropes, repentinamente se me descargó de forma automática el archivo hbpix, eliminé el hbpix inmediatamente y seguí de nuevo todos los procedimientos que se me mencionaron

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 3/10/17
      Hora del análisis: 11:10
      Archivo de registro: f387a45c-a84c-11e7-866e-08edb9d54ec4.json
      Administrador: Sí

      -Información del software-
      Versión: 3.2.2.2029
      Versión de los componentes: 1.0.207
      Versión del paquete de actualización: 1.0.2940
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: VAIO-VAIO\VAIO_

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 362753
      Amenazas detectadas: 0
      (No hay elementos maliciosos detectados)
      Amenazas en cuarentena: 0
      (No hay elementos maliciosos detectados)
      Tiempo transcurrido: 9 min, 0 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 0
      (No hay elementos maliciosos detectados)

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

      Nota: Para JRT cometí el error de ejecutar el programa haciendo doble click en lugar de usar ejecutar como administrador, aún así el programa eliminó algunos archivos y datos de internet. Intenté ejecutarlo de nuevo pero el nuevo reporte eliminó el anterior

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 7 Home Premium x64
      Ran by VAIO_ (Administrator) on 05/10/2017 at 11:01:31,10
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 0




      Registry: 0





      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 05/10/2017 at 11:03:06,32
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


      # AdwCleaner 7.0.3.1 - Logfile created on Thu Oct 05 15:14:43 2017
      # Updated on 2017/29/09 by Malwarebytes
      # Running on Windows 7 Home Premium (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      No malicious folders deleted.

      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      No malicious registry entries deleted.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[C0] (postreinicio).txt - [1793 B] - [2017/8/21 1642]
      C:/AdwCleaner/AdwCleaner[C0].txt - [1793 B] - [2017/8/21 161]
      C:/AdwCleaner/AdwCleaner[C2].txt - [1355 B] - [2017/9/27 20:37:25]
      C:/AdwCleaner/AdwCleaner[S0].txt - [1677 B] - [2017/8/21 1612]
      C:/AdwCleaner/AdwCleaner[S1].txt - [1168 B] - [2017/9/27 20:35:18]
      C:/AdwCleaner/AdwCleaner[S2].txt - [1304 B] - [2017/10/5 15:13:0]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt ##########

      Nota (por si acaso): ejecuté más de una vez el limpiador ccleaner debido a que todos los archivos fueron eliminados el primer intento los cookies del otro navegador que tengo (internet explorer) fueron omitidos, pero en la segunda limpieza se terminó eliminando cosas como datos de navegación y de sitios web

    Página 1 de 3 123 ÚltimoÚltimo