• Registrarse
  • Iniciar sesión


  • Resultados 1 al 3 de 3

    Tengo un problema con hbpix

    amiga me puedes ayudar asta ahora e hecho lo que aconsejaste esto me salio: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-09-2017 Ran by Familia (administrator) on PC (30-09-2017 21:40:34) Running from ...

    1. #1
      Usuario Avatar de alex awper
      Registrado
      sep 2017
      Ubicación
      mexico
      Mensajes
      2

      Tengo un problema con hbpix

      amiga me puedes ayudar asta ahora e hecho lo que aconsejaste esto me salio:
      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-09-2017
      Ran by Familia (administrator) on PC (30-09-2017 21:40:34)
      Running from C:\Users\Familia\Downloads
      Loaded Profiles: Familia (Available Profiles: Familia)
      Platform: Windows 8.1 Pro (X64) Language: Inglés (Estados Unidos)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
      (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
      (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
      (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
      (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
      (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Intel Corporation) C:\Windows\System32\igfxtray.exe
      (Intel Corporation) C:\Windows\System32\igfxsrvc.exe
      (Intel Corporation) C:\Windows\System32\hkcmd.exe
      (Intel Corporation) C:\Windows\System32\igfxpers.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Akamai Technologies, Inc.) C:\Users\Familia\AppData\Local\Akamai\netsession_win.exe
      (Akamai Technologies, Inc.) C:\Users\Familia\AppData\Local\Akamai\netsession_win.exe
      (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
      (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
      (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
      () C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-13] (Realtek Semiconductor)
      HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
      HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
      HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-16] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-05-14] (Brother Industries, Ltd.)
      HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.)
      HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.)
      HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [345000 2016-08-10] (QIHU 360 SOFTWARE CO. LIMITED)
      Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Familia\AppData\Local\Akamai\netsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.)
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\...\MountPoints2: {e4738196-2e4b-11e5-8261-543530d47d14} - "D:\LG_PC_Programs.exe"
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2013-08-22] (Microsoft Corporation)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
      Tcpip\..\Interfaces\{0E1DA800-CA33-4CD1-9C03-810C0F09E534}: [DhcpNameServer] 192.168.1.254 192.168.1.254

      Internet Explorer:
      ==================
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.kaybo1.com/
      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://prodigy.msn.com/es-mx/?ocid=iehp
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
      BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
      BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2016-08-10] (Qihu 360 Software Co., Ltd.)
      BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
      BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-16] (Adobe Systems Incorporated)
      BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
      BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
      BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2016-08-10] (Qihu 360 Software Co., Ltd.)
      BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
      Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)

      FireFox:
      ========
      FF DefaultProfile: 19zbli67.default-1493147587979-1506820177302
      FF ProfilePath: C:\Users\Familia\AppData\Roaming\Mozilla\Firefox\Profiles\19zbli67.default-1493147587979-1506820177302 [2017-09-30]
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox
      FF Extension: (360 Internet Protection) - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2016-05-26]
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
      FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-30] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-09-30] (Google Inc.)
      FF Plugin HKU\S-1-5-21-981215435-3284081384-2050055911-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Familia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-18] (Unity Technologies ApS)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> inline.go.mail.ru
      CHR StartupUrls: Default -> "hxxps://www.google.com/"
      CHR NewTab: Default -> Not-active:"chrome-extension://ieelnlbaliilpchhmmmkplpkbdlmbkff/html/new_tab.html", Not-active:"chrome-extension://fdgihiclpfljkdpgndmomkejnnoigfhe/stubby.html"
      CHR DefaultSearchURL: Default -> hxxps://inline.go.mail.ru/search?inline_comp=dse&q={searchTerms}&fr=chxtn11.0.3
      CHR DefaultSearchKeyword: Default -> mail.ru
      CHR DefaultSuggestURL: Default -> hxxp://suggests.go.mail.ru/chrome?q={searchTerms}
      CHR Profile: C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default [2017-09-30]
      CHR Extension: (Presentaciones de Google) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-30]
      CHR Extension: (Google Docs) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-30]
      CHR Extension: (Turn Off the Lights) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2017-09-30]
      CHR Extension: (Hojas de cálculo de Google) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-09-30]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-30]
      CHR Extension: (Protección de Internet 360) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2017-09-30]
      CHR Extension: (Custom Google™ Background Image) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\jepibmfmhopgkplegmkjgifmhabbjadg [2017-09-30]
      CHR Extension: (Chrome Media Router) - C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-30]
      CHR Extension: (AdBlock) - C:\Users\Familia\AppData\Roaming\Mozila [2016-07-17]
      CHR Profile: C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-09-30]
      CHR Profile: C:\Users\Familia\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-30]
      CHR HKLM-x32\...\Chrome\Extension: [indjgiebmakhmnaplnlnanodkfiejfjd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [odijcgafkhpobjlnfdgiacpdenpmbgme] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [phkdcinmmljblpnkohlipaiodlonpinf] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [pmpoaahleccaibbhfjfimigepmfmmbbk] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
      S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8024184 2017-01-24] (INCA Internet Co., Ltd.)
      R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [914344 2016-08-10] (QIHU 360 SOFTWARE CO. LIMITED)
      R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
      S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [File not signed]
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
      S2 KMSEmulator; temp.exe [X]

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [151784 2016-08-10] (360.cn)
      R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2016-08-10] (360.cn)
      R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2016-08-10] (360.cn)
      R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [330472 2016-08-10] (360.cn)
      S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40520 2015-12-16] (360.cn)
      R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [391392 2016-08-10] (360.cn)
      R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [190696 2016-08-10] (360.cn)
      S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
      S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
      S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
      S3 xspirit; C:\Windows\xspirit.sys [22912 2017-05-28] ()
      S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]
      S3 X6va063; \??\C:\Windows\SysWOW64\Drivers\X6va063 [X]
      S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-09-30 21:40 - 2017-09-30 21:41 - 000014492 _____ C:\Users\Familia\Downloads\FRST.txt
      2017-09-30 21:40 - 2017-09-30 21:40 - 000000000 ____D C:\FRST
      2017-09-30 21:38 - 2017-09-30 21:38 - 002399744 _____ (Farbar) C:\Users\Familia\Downloads\FRST64.exe
      2017-09-30 21:28 - 2017-09-30 21:28 - 000002287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-09-30 21:28 - 2017-09-30 21:28 - 000002275 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-09-30 21:27 - 2017-09-30 21:27 - 000003532 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-09-30 21:27 - 2017-09-30 21:27 - 000003404 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-09-30 21:17 - 2017-09-30 21:17 - 000000000 ____D C:\Users\Familia\Downloads\Nueva carpeta
      2017-09-30 20:06 - 2017-09-30 21:21 - 000000000 ____D C:\Users\Familia\AppData\LocalLow\Mozilla
      2017-09-29 13:18 - 2017-09-29 13:46 - 000001742 _____ C:\Users\Public\Desktop\Counter-Strike Source.lnk
      2017-09-29 13:18 - 2017-09-29 13:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
      2017-09-29 12:42 - 2017-09-29 13:11 - 000000000 ____D C:\cs source
      2017-09-29 12:38 - 2017-09-29 12:38 - 000000000 ____D C:\Users\Familia\Documents\MegaDownloader_v1.7.1 parchado
      2017-09-29 12:37 - 2017-09-29 12:37 - 000000000 ____D C:\Users\Familia\Documents\vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
      2017-09-29 11:40 - 2017-09-29 11:40 - 000000000 ____D C:\Users\Familia\AppData\Local\Mail.Ru
      2017-09-29 11:39 - 2017-09-29 11:39 - 000000000 ____D C:\ProgramData\Mail.Ru
      2017-09-28 16:10 - 2017-09-28 16:10 - 000001769 _____ C:\Users\Familia\Desktop\Counter Strike 1.6 No Steam.lnk
      2017-09-28 16:10 - 2017-09-28 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
      2017-09-28 12:41 - 2017-01-17 21:16 - 002165541 _____ C:\Users\Familia\Desktop\MegaDownloader.exe
      2017-09-27 20:13 - 2017-09-27 20:13 - 000000000 ____D C:\Users\Familia\AppData\Roaming\Thinstall
      2017-09-27 17:16 - 2017-03-04 22:11 - 000000000 ____D C:\Users\Familia\Downloads\CS 1.6 CS GO Flipside Glove Skin Pack by AndroPack TR
      2017-09-25 19:52 - 2017-09-29 12:33 - 000000000 ____D C:\Users\Familia\Desktop\Nueva carpeta
      2017-09-25 19:48 - 2017-09-28 16:09 - 000000000 ____D C:\Users\Familia\Downloads\ct_arms
      2017-09-25 14:25 - 2017-09-28 15:16 - 000000132 _____ C:\Users\Familia\AppData\Roaming\Prefs. de formato BMP de Adobe CS6
      2017-09-25 14:17 - 2017-09-25 14:17 - 000000040 ____H C:\8F26C74DFE93
      2017-09-25 14:16 - 2017-09-25 14:16 - 000001037 _____ C:\Users\Public\Desktop\Photoshop Cs6.lnk
      2017-09-25 14:16 - 2017-09-25 14:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photoshop Cs6
      2017-09-25 14:15 - 2017-09-25 14:15 - 000000000 ____D C:\Program Files (x86)\Photoshop Cs6
      2017-09-23 23:14 - 2017-09-23 23:16 - 000392704 _____ C:\Windows\SysWOW64\steamclient.dll
      2017-09-23 23:14 - 2017-09-23 23:16 - 000296448 __RSH C:\Windows\SysWOW64\client_save.dll
      2017-09-23 23:14 - 2017-09-23 23:16 - 000148992 __RSH C:\Windows\SysWOW64\revSrvBrowser.dll
      2017-09-23 23:14 - 2017-09-23 23:16 - 000009647 __RSH C:\Windows\SysWOW64\client_setting.ini
      2017-09-23 23:14 - 2017-09-23 23:16 - 000008704 __RSH C:\Windows\SysWOW64\client_save.asi
      2017-09-23 23:14 - 2017-09-23 23:16 - 000000282 __RSH C:\Windows\SysWOW64\rev.ini
      2017-09-21 20:03 - 2017-09-25 18:59 - 000000000 ____D C:\Users\Familia\Downloads\Jed's Half-Life Model Viewer 1.3
      2017-09-10 13:07 - 2017-09-28 16:10 - 000000000 ____D C:\cs 1.6
      2017-09-08 19:14 - 2017-09-30 21:16 - 000000000 ____D C:\Users\Familia\Downloads\Counter Strike 1.6 No Steam
      2017-09-05 23:36 - 2017-09-05 23:36 - 000041472 ___SH C:\Users\Familia\Downloads\KT3i9RAV.dat

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-09-30 21:38 - 2016-01-28 19:28 - 000000000 ____D C:\Users\Familia\AppData\LocalLow\360WD
      2017-09-30 21:37 - 2017-05-13 21:08 - 000005014 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for pc-Familia pc
      2017-09-30 21:31 - 2014-11-05 15:14 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-981215435-3284081384-2050055911-1001
      2017-09-30 21:27 - 2014-11-05 15:10 - 000000000 ____D C:\Program Files (x86)\Google
      2017-09-30 20:34 - 2015-06-16 18:26 - 000000000 ____D C:\Users\Familia\Desktop\aplicaciones
      2017-09-30 20:25 - 2016-01-28 19:27 - 000000000 ____D C:\ProgramData\360safe
      2017-09-29 22:04 - 2014-11-05 16:09 - 000771682 _____ C:\Windows\system32\perfh00A.dat
      2017-09-29 22:04 - 2014-11-05 16:09 - 000158360 _____ C:\Windows\system32\perfc00A.dat
      2017-09-29 22:04 - 2014-11-05 15:13 - 001740616 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-09-29 22:04 - 2013-08-22 08:36 - 000000000 ____D C:\Windows\Inf
      2017-09-29 13:18 - 2017-04-26 14:45 - 000000000 ____D C:\Users\Familia\Desktop\basura
      2017-09-28 16:46 - 2013-08-22 09:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2017-09-28 16:45 - 2013-08-22 08:25 - 002359296 ___SH C:\Windows\system32\config\BBI
      2017-09-28 12:39 - 2017-05-02 21:09 - 000000000 ____D C:\Program Files\MegaDownloader
      2017-09-28 11:54 - 2017-08-25 10:51 - 000000000 ____D C:\Program Files\Counter-Strike Xtreme V7
      2017-09-27 13:34 - 2014-11-05 15:58 - 000000000 ____D C:\Users\Familia\AppData\Local\Microsoft Help
      2017-09-25 13:52 - 2016-01-21 15:36 - 000000000 ____D C:\Users\Familia\AppData\Local\Akamai
      2017-09-20 17:01 - 2015-07-07 13:18 - 000000000 ____D C:\ProgramData\360Quarant
      2017-09-19 18:38 - 2014-11-06 21:27 - 000000000 ____D C:\Users\Familia\AppData\Local\ElevatedDiagnostics
      2017-09-17 21:04 - 2017-05-05 12:54 - 000000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
      2017-09-14 13:53 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\AppReadiness
      2017-09-13 13:33 - 2014-11-05 15:07 - 000000000 ____D C:\Users\Familia\AppData\Local\Packages
      2017-09-13 11:03 - 2015-09-03 17:38 - 000000000 __SHD C:\$360Section

      ==================== Files in the root of some directories =======

      2017-09-25 14:25 - 2017-09-28 15:16 - 000000132 _____ () C:\Users\Familia\AppData\Roaming\Prefs. de formato BMP de Adobe CS6
      2014-11-05 15:51 - 2014-11-05 15:51 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
      2017-05-08 18:17 - 2017-05-08 18:17 - 000000016 _____ () C:\ProgramData\mntemp

      Some files in TEMP:
      ====================
      2015-08-29 13:29 - 2006-05-24 12:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Familia\AppData\Local\Temp\_is1186.exe
      2015-08-29 13:30 - 2006-05-24 12:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Familia\AppData\Local\Temp\_is15F6.exe
      2015-08-29 13:56 - 2006-05-24 12:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Familia\AppData\Local\Temp\_is6AF.exe
      2015-08-29 13:31 - 2006-05-24 12:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Familia\AppData\Local\Temp\_isCB6B.exe
      2015-08-29 13:07 - 2006-05-24 12:10 - 000455600 ____R (Macrovision Corporation) C:\Users\Familia\AppData\Local\Temp\_isF331.exe

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-09-30 10:10

      ==================== End of FRST.txt ============================

    2. #2
      Usuario Avatar de alex awper
      Registrado
      sep 2017
      Ubicación
      mexico
      Mensajes
      2

      Re: Ayuda, tengo un problema con hbpix

      y en el otro Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2017
      Ran by Familia (30-09-2017 21:41:20)
      Running from C:\Users\Familia\Downloads
      Windows 8.1 Pro (X64) (2014-11-05 20:07:02)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrator (S-1-5-21-981215435-3284081384-2050055911-500 - Administrator - Disabled)
      Familia (S-1-5-21-981215435-3284081384-2050055911-1001 - Administrator - Enabled) => C:\Users\Familia
      Guest (S-1-5-21-981215435-3284081384-2050055911-501 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AV: 360 Total Security (Enabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
      AS: 360 Total Security (Enabled - Up to date) {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 8.8.0.1020 - 360 Security Center)
      Adobe Reader X - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
      Akamai NetSession Interface (HKU\S-1-5-21-981215435-3284081384-2050055911-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
      Brother MFL-Pro Suite DCP-J100 (HKLM-x32\...\{B742757A-7658-4E09-A51A-085CF0F7F4D3}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
      Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)
      Counter-Strike Source DZ (HKLM-x32\...\{6D0042A0-9064-4C7F-B906-3EAC4427EE07}_is1) (Version: 20 - DiGiTALZONE)
      Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
      Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
      Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
      Half-Life 2 (Addon) DZ (HKLM-x32\...\{BCAF3D46-3BDA-441F-97B9-3878ACD0CD4F}_is1) (Version: - )
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
      K-Lite Mega Codec Pack 10.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - )
      KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
      Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.4053 False (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.57103 False (HKLM-x32\...\{d8fea624-4f2c-432d-9a54-6eee9cd1a77e}) (Version: 8.0.57103 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.58299 False (HKLM-x32\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False (HKLM-x32\...\{DCB46B42-723F-350E-B18A-449BC6C21636}) (Version: 9.0.21022 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.0 False (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 False (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148.0 False (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
      Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 False Eng (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
      MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
      Nero 2014 (HKLM-x32\...\{F384C1E1-3A16-4073-95C3-7271FE0ED4C2}) (Version: 15.0.02200 - Nero AG)
      Nero 2014 Content Pack (HKLM-x32\...\{204A26F0-01B8-4656-8607-5CCEDE820BC2}) (Version: 15.0.00200 - Nero AG)
      Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 2.0.0 - Nexon)
      Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
      Photoshop Cs6 versión Final (HKLM-x32\...\{5CF1F901-ED27-4C34-A9CE-A10E8C1DDDB2}_is1) (Version: Final - Braian Urzagaste)
      Prerequisite installer (HKLM-x32\...\{5909A89E-C97F-407C-AE2B-47BDED86BF5D}) (Version: 15.0.0005 - Nero AG) Hidden
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7016 - Realtek Semiconductor Corp.)
      Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      Unity Web Player (HKU\S-1-5-21-981215435-3284081384-2050055911-1001\...\UnityWebPlayer) (Version: 4.6.3f1 - Unity Technologies ApS)
      WinRAR 4.2 (HKLM-x32\...\WinRAR 4.2) (Version: 4.2 - Team-ScKorP)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2016-08-10] ()
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2016-08-10] ()
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-22] (Intel Corporation)
      ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2016-08-10] ()
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {089DC6A1-911F-4CD6-B108-6FAACE20EF25} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe
      Task: {1541D831-B897-4F04-A229-385D9B0E5D4E} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-10-06] ()
      Task: {2A0B218E-9C03-4B72-A3C8-F152452BEAA6} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2013-12-11] ()
      Task: {44949B52-AF0C-47D2-8EFB-2430E5DB9F90} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
      Task: {511F6DEA-1E9C-42BD-BE0B-77892280700D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-30] (Google Inc.)
      Task: {76AA05BE-F9CB-464B-AF65-374BE650E1A4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
      Task: {791AD89D-DD10-48BA-A557-0B0F62B9A8FB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
      Task: {95664AB5-7051-4A47-95F1-543AABD1E15F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-08-20] (Nero AG)
      Task: {B2090CD2-DB19-4AAC-878D-58A7829459B9} - System32\Tasks\Microsoft Office 15 Sync Maintenance for pc-Familia pc => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
      Task: {F447EFF8-9759-4E02-86B6-C2507D2EBF72} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-30] (Google Inc.)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ShortcutWithArgument: C:\Users\Familia\AppData\Local\Google\Chrome\User Data\Menú de aplicaciones de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list

      ==================== Loaded Modules (Whitelisted) ==============

      2016-01-28 19:27 - 2016-08-10 05:54 - 001153448 _____ () C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
      2017-09-30 21:28 - 2017-09-21 02:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
      2017-09-30 21:28 - 2017-09-21 02:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
      2015-07-07 13:15 - 2016-08-10 05:54 - 000099240 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll
      2015-08-29 13:09 - 2009-02-27 16:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
      2016-01-28 19:27 - 2016-08-10 05:54 - 000582056 _____ () C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\Users\Familia:Heroes & Generals [38]

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2013-08-22 08:25 - 2013-08-22 08:25 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-981215435-3284081384-2050055911-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Familia\Pictures\1e6c336d28e46c209670dc1ab0540ba2.jpg
      DNS Servers: 192.168.1.254
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{5837F59E-E2F2-4BAC-8EFB-C3086E70C258}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
      FirewallRules: [{0C263B2A-1FA3-4D37-9029-43CD0D25B838}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
      FirewallRules: [{E11805D7-B42D-42CD-B341-12BD67D77189}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
      FirewallRules: [{E7E67804-F901-4F49-90E3-3B66FE68D687}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
      FirewallRules: [{6EEEE71B-0EA1-4177-B6C2-D95BF752FBE2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
      FirewallRules: [{AA258041-7299-4774-B5A9-292C6AC6E799}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
      FirewallRules: [{4368ED9F-18B0-447D-A77E-360732115459}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{0607F1AB-0D49-452F-8013-9D5F1259F640}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{78EEEE1F-6525-49CC-A022-FD8094E5174F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{115A77E8-99F6-4AA4-9600-37FAF47AC7A6}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{1C1444D1-8107-45A6-A548-C86B71335920}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
      FirewallRules: [{E57F1780-AF05-444E-8040-D80621DA6A40}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
      FirewallRules: [{03541655-6BDA-49F9-8141-9174081670A6}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
      FirewallRules: [{8C3C0B03-E4BF-485C-A2C5-2564AAB22185}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
      FirewallRules: [{CB8DE506-187E-413A-BF68-00F316FC6DEF}] => (Allow) C:\Program Files\360\360 Internet Security\safemon\360Tray.exe
      FirewallRules: [{9D452C9B-0DFF-4FC1-807B-F5A2BB9735C8}] => (Allow) C:\Program Files\360\360 Internet Security\safemon\360Tray.exe
      FirewallRules: [{A01C5668-05EF-4511-8DD0-9CECC84853CB}] => (Allow) LPort=1688
      FirewallRules: [TCP Query User{DB39974A-F94F-4EFD-BD52-B0B6D692237A}C:\program files\360\360 internet security\360sdupd.exe] => (Block) C:\program files\360\360 internet security\360sdupd.exe
      FirewallRules: [UDP Query User{6FCEF755-06C0-4022-A58B-B6AF86C3A73E}C:\program files\360\360 internet security\360sdupd.exe] => (Block) C:\program files\360\360 internet security\360sdupd.exe
      FirewallRules: [{EC0E83FF-0F7E-4219-B0F9-E8E43F0F9F94}] => (Allow) C:\Program Files\360\360 Internet Security\UpTip.exe
      FirewallRules: [{97B47849-D313-420B-A26E-4EE49520671A}] => (Allow) C:\Program Files\360\360 Internet Security\UpTip.exe
      FirewallRules: [{47F80950-EF25-47DC-8E36-98E11D9C8D91}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{BE93A0B6-443C-473B-A2B6-44A9D10BF09C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{E68ED28D-E6FF-4CBC-9E6B-385E04B7E9DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [TCP Query User{AF97BA1E-6029-4F46-8C2F-28BD775559A3}C:\users\familia\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\familia\appdata\local\akamai\netsession_win.exe
      FirewallRules: [UDP Query User{4584FD20-D5E9-49EA-ADCF-AD0DB5185ED9}C:\users\familia\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\familia\appdata\local\akamai\netsession_win.exe
      FirewallRules: [{44528E69-43B0-4A59-8EFC-0AF1BA796B51}] => (Allow) C:\Users\Familia\Desktop\alex\PointBlank\PointBlank.exe
      FirewallRules: [{556490E5-5AEF-45F2-98EC-F346151A3CE1}] => (Allow) C:\Users\Familia\Desktop\alex\PointBlank\PointBlank.exe
      FirewallRules: [{5BAFDA57-6511-4B30-8990-E0AAA1A896C4}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
      FirewallRules: [{C724D808-D37B-4ABE-B649-144980BAD1A0}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
      FirewallRules: [{340CC81F-C0BB-4900-BAC2-9BCD86E408D5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{6B1A5EF2-E433-4B67-9734-065B4BB9A20A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{2EE449DF-9A6F-426E-9F6E-04D827BC7F30}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{2A3C3F29-14CD-4B67-9EE1-B262813DE690}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [TCP Query User{D504430A-C398-4F9A-8459-8858C576B030}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
      FirewallRules: [UDP Query User{7DA4E227-0E80-4942-BCDF-53B201CA2B63}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
      FirewallRules: [{EE544E26-BF95-4BB5-8D5F-09F255C26E3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe
      FirewallRules: [{815F08BE-3F1E-446E-A0FF-07283D646123}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CSNZ\Bin\cstrike-online.exe
      FirewallRules: [TCP Query User{062C8796-BAC7-4640-9396-E3E12C0ABC7C}C:\program files (x86)\counter strike source\pc\hl2.exe] => (Allow) C:\program files (x86)\counter strike source\pc\hl2.exe
      FirewallRules: [UDP Query User{D0F7A711-0B34-4384-A244-51A38099340D}C:\program files (x86)\counter strike source\pc\hl2.exe] => (Allow) C:\program files (x86)\counter strike source\pc\hl2.exe
      FirewallRules: [TCP Query User{3E7011CD-EF0D-4C26-A15D-809A8869C46D}C:\game\softnyxgame\wolfteamls\wolfteam.bin] => (Allow) C:\game\softnyxgame\wolfteamls\wolfteam.bin
      FirewallRules: [UDP Query User{4C121FDA-21D3-4938-B3D8-341A18883F60}C:\game\softnyxgame\wolfteamls\wolfteam.bin] => (Allow) C:\game\softnyxgame\wolfteamls\wolfteam.bin
      FirewallRules: [{9A361C79-C8A1-49C8-95DE-72C1C44347D3}] => (Allow) C:\Users\Familia\Desktop\basura\BlackShot_SEA\BlackShot\system\BlackShot.exe
      FirewallRules: [{5F4AF2B7-A411-4F5F-90C0-A82C75133436}] => (Allow) C:\Users\Familia\Desktop\basura\BlackShot_SEA\BlackShot\system\BlackShot.exe
      FirewallRules: [TCP Query User{2C220AE5-06F6-47C8-905A-1465D713D409}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe
      FirewallRules: [UDP Query User{14737655-AA7D-4417-AF00-CDB15CFFFC2A}C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\mycomgames\mycomgames.exe
      FirewallRules: [TCP Query User{8FC81280-7991-45CE-92F0-321871283F0C}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
      FirewallRules: [UDP Query User{8537D292-5F3F-46AB-B62F-505537BBBA6C}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
      FirewallRules: [{C60B9C32-484E-438E-8453-AA9B3F7E89A4}] => (Allow) C:\Program Files (x86)\Phantomers\Launcher.exe
      FirewallRules: [{BAD0E86A-51BB-4700-BDB1-B6522DE23073}] => (Allow) C:\Program Files (x86)\Phantomers\Launcher.exe
      FirewallRules: [{5F4D9947-07A0-4480-AA5A-4B2D698A4EDD}] => (Allow) C:\Program Files (x86)\Phantomers\Updater.exe
      FirewallRules: [{399765E2-F366-4D3B-B2E3-A571AB855AC1}] => (Allow) C:\Program Files (x86)\Phantomers\Updater.exe
      FirewallRules: [TCP Query User{4EA1E412-DC53-4D41-83F2-81D2AF4BDD06}C:\program files (x86)\phantomers\bin32\mazer.exe] => (Allow) C:\program files (x86)\phantomers\bin32\mazer.exe
      FirewallRules: [UDP Query User{68FA366B-5409-4DDC-8ACA-6CA08E7C47E1}C:\program files (x86)\phantomers\bin32\mazer.exe] => (Allow) C:\program files (x86)\phantomers\bin32\mazer.exe
      FirewallRules: [TCP Query User{A5F391A1-A170-4035-B738-1C1948B5C8AD}C:\nueva carpeta\counter-strike 1.6\hl.exe] => (Allow) C:\nueva carpeta\counter-strike 1.6\hl.exe
      FirewallRules: [UDP Query User{AFB5362B-6D16-4C68-8757-C294EA5B5019}C:\nueva carpeta\counter-strike 1.6\hl.exe] => (Allow) C:\nueva carpeta\counter-strike 1.6\hl.exe
      FirewallRules: [{3AAA8785-C1F9-44B0-9DF1-9EC110A45CBE}] => (Allow) C:\Nexon\Library\combatarms\appdata\NMService.exe
      FirewallRules: [{F8856B23-AF84-4A51-AEE1-342A0930E0BB}] => (Allow) C:\Nexon\Library\combatarms\appdata\NMService.exe
      FirewallRules: [TCP Query User{3076C687-0CC4-4457-862C-6516D27D4F35}C:\nexon\library\combatarms\appdata\engine.exe] => (Allow) C:\nexon\library\combatarms\appdata\engine.exe
      FirewallRules: [UDP Query User{0D81A0BA-0C20-4152-949D-CD8EE63DC3D2}C:\nexon\library\combatarms\appdata\engine.exe] => (Allow) C:\nexon\library\combatarms\appdata\engine.exe
      FirewallRules: [TCP Query User{A82C553E-4725-4187-929F-0B7962C93173}C:\users\familia\downloads\nazopo\nazi zombies portable.exe] => (Allow) C:\users\familia\downloads\nazopo\nazi zombies portable.exe
      FirewallRules: [UDP Query User{6C7AD13F-0A4D-4E41-BA9F-916E82732744}C:\users\familia\downloads\nazopo\nazi zombies portable.exe] => (Allow) C:\users\familia\downloads\nazopo\nazi zombies portable.exe
      FirewallRules: [TCP Query User{6D7F5056-1833-407F-B1E5-32F9036BD332}C:\program files\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\counter-strike global offensive\csgo.exe
      FirewallRules: [UDP Query User{E3D09617-CFCB-4D20-876E-2665D52F8B27}C:\program files\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\counter-strike global offensive\csgo.exe
      FirewallRules: [TCP Query User{318F5580-75B2-47E9-A124-E9BE04112450}C:\program files\counter-strike xtreme v7\czero.exe] => (Allow) C:\program files\counter-strike xtreme v7\czero.exe
      FirewallRules: [UDP Query User{54095616-C4DC-4AF1-95A9-EB9B3B683BA7}C:\program files\counter-strike xtreme v7\czero.exe] => (Allow) C:\program files\counter-strike xtreme v7\czero.exe
      FirewallRules: [{5EAE6A9F-FA49-438A-86F7-43C639E9B798}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
      FirewallRules: [{969A665B-6134-49F6-A61E-95146B9BC27F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
      FirewallRules: [TCP Query User{796D70DB-ECC5-4953-AD26-77E26CE483E0}C:\cs\counter-strike 1.6\hl.exe] => (Allow) C:\cs\counter-strike 1.6\hl.exe
      FirewallRules: [UDP Query User{00C1FD1A-3A57-4252-8EF2-D37A66F1DB7D}C:\cs\counter-strike 1.6\hl.exe] => (Allow) C:\cs\counter-strike 1.6\hl.exe
      FirewallRules: [TCP Query User{9FE8BDEF-97BA-4D86-B482-7214F8B3A0E8}C:\program files\counter-strike source\hl2.exe] => (Allow) C:\program files\counter-strike source\hl2.exe
      FirewallRules: [UDP Query User{1EE45379-AB31-4574-8359-7FE301396334}C:\program files\counter-strike source\hl2.exe] => (Allow) C:\program files\counter-strike source\hl2.exe
      FirewallRules: [TCP Query User{DFAFB07D-438E-4603-AE6C-848CDFD4CD8F}C:\cs 1.6\counter-strike 1.6\hl.exe] => (Allow) C:\cs 1.6\counter-strike 1.6\hl.exe
      FirewallRules: [UDP Query User{BA182D8B-7056-4F95-855D-7B63F91F5831}C:\cs 1.6\counter-strike 1.6\hl.exe] => (Allow) C:\cs 1.6\counter-strike 1.6\hl.exe
      FirewallRules: [TCP Query User{5041099C-82E0-4B8F-B120-07B6EAE170DB}C:\users\familia\desktop\nueva carpeta\hl.exe] => (Allow) C:\users\familia\desktop\nueva carpeta\hl.exe
      FirewallRules: [UDP Query User{D041D517-6D9D-4446-840A-DB8A415B4D59}C:\users\familia\desktop\nueva carpeta\hl.exe] => (Allow) C:\users\familia\desktop\nueva carpeta\hl.exe
      FirewallRules: [TCP Query User{EE1DB50F-93B0-49A1-83A3-44A8418610B2}C:\program files (x86)\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\counter-strike source\hl2.exe
      FirewallRules: [UDP Query User{146717FA-FDC7-41D0-9F4D-4FA0B0F4E8B1}C:\program files (x86)\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\counter-strike source\hl2.exe
      FirewallRules: [TCP Query User{1D74B4CF-0AE6-496B-BF5F-4EFC5C9DBDA5}C:\cs rusooo\counter-strike 1.6\runcs.exe] => (Allow) C:\cs rusooo\counter-strike 1.6\runcs.exe
      FirewallRules: [UDP Query User{1576CBF6-078D-4893-A731-3906F79790FD}C:\cs rusooo\counter-strike 1.6\runcs.exe] => (Allow) C:\cs rusooo\counter-strike 1.6\runcs.exe
      FirewallRules: [TCP Query User{05588A33-55C0-4702-8546-6CD97AFF8D28}C:\cs source\counter-strike source\hl2.exe] => (Allow) C:\cs source\counter-strike source\hl2.exe
      FirewallRules: [UDP Query User{3533FC10-48DC-453C-80A6-8499F199C9EF}C:\cs source\counter-strike source\hl2.exe] => (Allow) C:\cs source\counter-strike source\hl2.exe
      FirewallRules: [{7013FF57-3497-4F3C-9745-023AB3D55D76}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{E86846C5-210D-4F56-8E08-66AF4D76FB4C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{2D5D6C36-0108-4714-A0B7-A9B0417666C7}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
      FirewallRules: [{BA90768B-E0E4-4F66-98A4-4C15CD9C48B3}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe

      ==================== Restore Points =========================

      10-09-2017 11:15:38 Scheduled Checkpoint
      17-09-2017 14:00:17 Scheduled Checkpoint
      25-09-2017 18:16:47 Scheduled Checkpoint

      ==================== Faulty Device Manager Devices =============

      Name: Controladora simple de comunicaciones PCI
      Description: Controladora simple de comunicaciones PCI
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

      Name:
      Description:
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

      Name: Controladora de bus SM
      Description: Controladora de bus SM
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

      Name: Controladora de red
      Description: Controladora de red
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (09/30/2017 08:04:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: El programa wwahost.exe, versión 6.3.9600.16384, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

      Identificador de proceso: 1490

      Hora de inicio: 01d33a5091604f15

      Hora de finalización: 4294967295

      Ruta de acceso de la aplicación: C:\Windows\system32\wwahost.exe

      Identificador de informe: 8587b044-a644-11e7-829c-543530d47d14

      Nombre completo de paquete con errores: Microsoft.BingHealthAndFitness_3.0.1.176_x64__8wekyb3d8bbwe

      Identificador de aplicación relativa del paquete con errores: AppexHealthAndFitness

      Error: (09/30/2017 07:38:45 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: studiorender.dll, versión: 0.0.0.0, marca de tiempo: 0x47140813
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x0003198a
      Identificador del proceso con errores: 0x9d4
      Hora de inicio de la aplicación con errores: 0x01d33a4c99ea0aed
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\studiorender.dll
      Identificador del informe: e11f5157-a640-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/30/2017 07:31:16 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0xb6c
      Hora de inicio de la aplicación con errores: 0x01d33a4c970d4d07
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: d555d32a-a63f-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 02:19:10 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0x17a8
      Hora de inicio de la aplicación con errores: 0x01d33957d328c6e3
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: 11591cee-a54b-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 01:48:57 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0x1158
      Hora de inicio de la aplicación con errores: 0x01d339539b25e488
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: d940b4a7-a546-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 01:48:52 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0x1648
      Hora de inicio de la aplicación con errores: 0x01d33953979366ae
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: d5baa6ca-a546-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 01:46:10 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0x15e8
      Hora de inicio de la aplicación con errores: 0x01d3395336e03359
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: 754d9991-a546-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 01:08:45 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0x12b4
      Hora de inicio de la aplicación con errores: 0x01d3394dfd77caa9
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: 3b5eee07-a541-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 01:08:42 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hl2.exe, versión: 0.0.0.0, marca de tiempo: 0x4445c334
      Nombre del módulo con errores: steamclient.dll, versión: 0.0.0.0, marca de tiempo: 0x4b264b6c
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0002705c
      Identificador del proceso con errores: 0xcf4
      Hora de inicio de la aplicación con errores: 0x01d3394dfb4decce
      Ruta de acceso de la aplicación con errores: C:\cs source\Counter-Strike Source\hl2.exe
      Ruta de acceso del módulo con errores: c:\cs source\counter-strike source\bin\steamclient.dll
      Identificador del informe: 397bc5c5-a541-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (09/29/2017 12:35:24 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: hlmv.exe, versión: 1.3.0.0, marca de tiempo: 0x41448e78
      Nombre del módulo con errores: ntdll.dll, versión: 6.3.9600.16384, marca de tiempo: 0x52159015
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x0003fc04
      Identificador del proceso con errores: 0x17c4
      Hora de inicio de la aplicación con errores: 0x01d339494e054e95
      Ruta de acceso de la aplicación con errores: C:\Users\Familia\Downloads\Jed's Half-Life Model Viewer 1.3\hlmv.exe
      Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
      Identificador del informe: 92c3ad8d-a53c-11e7-829c-543530d47d14
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:


      System errors:
      =============
      Error: (09/30/2017 08:21:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (09/30/2017 11:30:50 AM) (Source: BTHUSB) (EventID: 17) (User: )
      Description: A causa de un error no determinado en el adaptador Bluetooth local, éste no se usará. Se descargó el controlador.

      Error: (09/30/2017 10:42:34 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (09/30/2017 10:11:16 AM) (Source: DCOM) (EventID: 10010) (User: pc)
      Description: El servidor {1B1F472E-3221-4826-97DB-2C2324D389AE} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (09/30/2017 1045 AM) (Source: DCOM) (EventID: 10010) (User: pc)
      Description: El servidor {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (09/29/2017 10:53:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (09/29/2017 07:16:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (09/29/2017 01:20:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (09/29/2017 12:30:17 PM) (Source: DCOM) (EventID: 10010) (User: pc)
      Description: El servidor {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (09/29/2017 12:29:42 PM) (Source: DCOM) (EventID: 10010) (User: pc)
      Description: El servidor {1B1F472E-3221-4826-97DB-2C2324D389AE} no se registró con DCOM dentro del tiempo de espera requerido.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz
      Percentage of memory in use: 47%
      Total physical RAM: 3502.94 MB
      Available physical RAM: 1849.04 MB
      Total Virtual: 4718.94 MB
      Available Virtual: 2935.32 MB

      ==================== Drives ================================

      Drive c: (OS) (Fixed) (Total:922.68 GB) (Free:874.94 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 931.5 GB) (Disk ID: FCB98F0B)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    3. #3
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.912

      Re: Tengo un problema con hbpix

      Hola alex awper


      Por supuesto que te ayudo pero antes de utilizar Frst realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

      1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

      • Realiza un Análisis Completo, actualizando si te lo pide.
      • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
      • En el apartado del manual "Historial" >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.



      2) Descargar Junkware Removal Tool

      • Desactiva temporalmente el Antivirus
      • Ejecuta JRT.exe, (en Windows 7 u 8 ejecutar como "Administrador")
      • Presiona cualquier tecla para continuar y espera pacientemente a que termine su proceso.
      • Al finalizar, un registro (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
      • Copia y pega el contenido de JRT.txt en tu próximo mensaje de respuesta



      3) Descarga >> AdwCleaner | InfoSpyware en el escritorio.

      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Cierra también todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botónLimpiar.
      • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistemaAceptas.
      • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
      • El informe también se puede encontrar en "C:\AdwCleaner\AdwCleaner[C1].txt"



      4) Descarga CCleaner

      • Instala Ccleaner
      • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador
      • clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad
      • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.


      Pega los reportes de Malwarebytes, AdwCleaner y JRT y comentas como va el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.