• Registrarse
  • Iniciar sesión


  • Resultados 1 al 8 de 8

    Ventana activa de amazon assistant

    Hola, hace un par de días atrás mi computador solicito la actualización de windows, yo lo acepte pero al momento de reiniciarse una ventana en blanco dio paso, esta cada 5 o 3 segundos aparece ...

    1. #1
      Usuario Avatar de Sweetun
      Registrado
      nov 2017
      Ubicación
      Chile
      Mensajes
      5

      Ventana activa de amazon assistant

      Hola, hace un par de días atrás mi computador solicito la actualización de windows, yo lo acepte pero al momento de reiniciarse una ventana en blanco dio paso, esta cada 5 o 3 segundos aparece por mas que la cierre, el nombre de ella es
      C:Program files (x86) Amazon\Amazon assistant\aa.hta. Por favor necesito ayuda urgente! e visto otros mensajes que están teniendo el mismo problema y e analizado como tal mi computador pero no me registra ningún virus.

    2. #2
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.352

      Re: Ventana activa de amazon assistant

      Hola Sweetun



      Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

      1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

      • Realiza un Análisis Completo, actualizando si te lo pide.
      • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
      • En el apartado del manual "Historial" >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.



      2) Descargar Junkware Removal Tool

      • Desactiva temporalmente el Antivirus
      • Ejecuta JRT.exe, (en Windows 7 u 8 ejecutar como "Administrador")
      • Presiona cualquier tecla para continuar y espera pacientemente a que termine su proceso.
      • Al finalizar, un registro (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
      • Copia y pega el contenido de JRT.txt en tu próximo mensaje de respuesta



      3) Descarga >> AdwCleaner | InfoSpyware en el escritorio.

      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Cierra también todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botónLimpiar.
      • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistemaAceptas.
      • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
      • El informe también se puede encontrar en "C:\AdwCleaner\AdwCleaner[C0].txt"



      4) Descarga CCleaner

      • Instala Ccleaner
      • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador
      • clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad
      • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.


      Pega los reportes de Malwarebytes, AdwCleaner y JRT y comentas como va el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Sweetun
      Registrado
      nov 2017
      Ubicación
      Chile
      Mensajes
      5

      Re: Ventana activa de amazon assistant

      Hola, aqui están los registros

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 26/11/17
      Hora del análisis: 17:14
      Archivo de registro: 59ec4339-d2e6-11e7-b6bc-54ab3a67fa07.json
      Administrador: Sí

      -Información del software-
      Versión: 3.3.1.2183
      Versión de los componentes: 1.0.236
      Versión del paquete de actualización: 1.0.3350
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 10 (Build 15063.726)
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: LAPTOP-O5LT6918\Unmot

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 420552
      Amenazas detectadas: 8
      Amenazas en cuarentena: 8
      Tiempo transcurrido: 11 min, 14 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 8
      PUP.Optional.SpyHunter, C:\PROGRAM FILES\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPYHUNTER4.EXE, En cuarentena, [945], [433122],1.0.3350
      PUP.Optional.Iminent, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [3116], [455248],1.0.3350
      PUP.Optional.iVidi, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [16403], [455231],1.0.3350
      PUP.Optional.iVidi, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [16403], [455231],1.0.3350
      PUP.Optional.Iminent, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [3116], [455248],1.0.3350
      PUP.Optional.iVidi, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [16403], [455231],1.0.3350
      PUP.Optional.Iminent, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [3116], [455248],1.0.3350
      PUP.Optional.ASK, C:\USERS\UNMOT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [527], [454827],1.0.3350

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

      ------------------------------------------------------------------------------------------------------------------------------------

      # AdwCleaner 7.0.4.0 - Logfile created on Sun Nov 26 21:23:27 2017
      # Updated on 2017/27/10 by Malwarebytes
      # Running on Windows 10 Home Single Language (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      Deleted: C:\Program Files\Enigma Software Group


      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      No malicious registry entries deleted.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      Plugin deleted: Lone Tree -
      SearchProvider deleted: Ask - ask.com
      SearchProvider deleted: Iminent - search.iminent.com
      SearchProvider deleted: Search - unitech llc
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com
      Startpage deleted: ividi.org
      Startpage deleted: ividi.org
      Startpage deleted: Google
      Startpage deleted: https://www.google.com/
      Startpage deleted: https://encrypted.google.com


      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[C0].txt - [7633 B] - [2017/11/23 17:57:43]
      C:/AdwCleaner/AdwCleaner[C1].txt - [8912 B] - [2017/11/25 17:21:54]
      C:/AdwCleaner/AdwCleaner[S0].txt - [4111 B] - [2017/11/23 17:56:58]
      C:/AdwCleaner/AdwCleaner[S1].txt - [3594 B] - [2017/11/25 3:14:29]
      C:/AdwCleaner/AdwCleaner[S2].txt - [3497 B] - [2017/11/25 1632]
      C:/AdwCleaner/AdwCleaner[S3].txt - [3303 B] - [2017/11/25 17:13:6]
      C:/AdwCleaner/AdwCleaner[S4].txt - [2619 B] - [2017/11/26 21:21:41]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

      ------------------------------------------------------------------------------------------------------------------------------------

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 10 Home Single Language x64
      Ran by Unmot (Administrator) on 26-11-2017 at 17:50:37,35
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 0




      Registry: 0





      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 26-11-2017 at 18:04:27,14
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    4. #4
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.352

      Re: Ventana activa de amazon assistant

      Hola

      Descarga Farbar Recovery Scan Tool segun la arquitectura de tu sistema (32 o 64 bits)

      • La guardas en el escritorio >> Esto es muy importante..
      • Doble clic para ejecutar Frst.exe. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • En la ventana del Disclaimer, presiona Yes.

      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.


      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Sweetun
      Registrado
      nov 2017
      Ubicación
      Chile
      Mensajes
      5

      Re: Ventana activa de amazon assistant

      Hola, muchas gracias por responder

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2017 01
      Ran by Unmot (administrator) on LAPTOP-O5LT6918 (26-11-2017 22:11:41)
      Running from C:\Users\Unmot\Desktop
      Loaded Profiles: Unmot (Available Profiles: Unmot)
      Platform: Windows 10 Home Single Language Version 1703 15063.726 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
      (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
      (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
      (Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
      () C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
      (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
      () C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
      (Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
      (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Intel Corporation) C:\Windows\System32\igfxEM.exe
      (Intel Corporation) C:\Windows\System32\igfxHK.exe
      () C:\Windows\System32\igfxTray.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
      (Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
      (Intel Corporation) C:\Windows\System32\igfxext.exe
      (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
      (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
      () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
      (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
      (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
      () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      (acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
      (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
      (Microsoft Corporation) C:\Windows\splwow64.exe
      (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      (Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\f875fbb4cab0384277a81aa667874b95\WindowsUpdateBox.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-08-24] (Realtek Semiconductor)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-10] (AVAST Software)
      HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] ()
      HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
      HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-13] (Dropbox, Inc.)
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2418392 2016-09-09] (Acer)
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-04-24] (Disc Soft Ltd)
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\MountPoints2: {c43a2c65-4d7b-11e7-9bd8-54ab3a67fa07} - "F:\HiSuiteDownLoader.exe"
      Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
      GroupPolicy: Restriction <==== ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 190.54.110.23 190.54.120.23
      Tcpip\..\Interfaces\{37e79b37-6147-4805-a44b-0ec874f4d1b4}: [DhcpNameServer] 190.54.110.23 190.54.120.23

      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
      SearchScopes: HKLM -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL =
      SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://cl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
      SearchScopes: HKLM-x32 -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL =
      SearchScopes: HKU\S-1-5-21-2063637959-3338619981-453652926-1001 -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL =
      BHO: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\Windows\System32\mscoree.dll [2017-03-18] (Microsoft Corporation)
      BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-08-20] (Microsoft Corporation)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-29] (Oracle Corporation)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-08-20] (Microsoft Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-29] (Oracle Corporation)
      BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
      BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-08-20] (Microsoft Corporation)
      BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-08-20] (Microsoft Corporation)
      Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
      Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
      Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-08-20] (Microsoft Corporation)
      Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-08-20] (Microsoft Corporation)
      Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-08-20] (Microsoft Corporation)
      Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-08-20] (Microsoft Corporation)

      FireFox:
      ========
      FF DefaultProfile: lpcocr74.default
      FF ProfilePath: C:\Users\Unmot\AppData\Roaming\Mozilla\Firefox\Profiles\lpcocr74.default [2017-11-26]
      FF Extension: (Español (España) Language Pack) - C:\Users\Unmot\AppData\Roaming\Mozilla\Firefox\Profiles\lpcocr74.default\Extensions\[email protected] [2017-03-25] [Lagacy]
      FF Extension: (Mozilla Partner Defaults) - C:\Users\Unmot\AppData\Roaming\Mozilla\Firefox\Profiles\lpcocr74.default\Extensions\[email protected] [2017-03-25] [Lagacy]
      FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-29] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-29] (Oracle Corporation)
      FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
      FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-20] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-08-20] (Microsoft Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR HomePage: Default -> hxxp://search.ividi.org/?src=tbhp&id=84eed9ed000000000000000000000000&affilt=3
      CHR StartupUrls: Default -> "hxxp://search.ividi.org/?src=tbhp&id=84eed9ed000000000000000000000000&affilt=3","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://encrypted.google.com"
      CHR Profile: C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default [2017-11-26]
      CHR Extension: (Traductor de Google) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-11-05]
      CHR Extension: (Presentaciones) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
      CHR Extension: (Documentos) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
      CHR Extension: (Google Drive) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-25]
      CHR Extension: (YouTube) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-25]
      CHR Extension: (Luz) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdieigeclacgkdlmnojihknoblpafo [2017-03-26]
      CHR Extension: (Hojas de cálculo) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-26]
      CHR Extension: (Lone Tree) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfmkllfplegemejikoabfpjdaoncphip [2017-11-26]
      CHR Extension: (EasyHome Homestyler) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2017-05-27]
      CHR Extension: (Movi Kanti Revo) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdkcgeghhfjiglphfppinecpcpnnbne [2017-03-25]
      CHR Extension: (Webcam Toy) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2017-03-25]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-04]
      CHR Extension: (Gmail) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-25]
      CHR Extension: (Chrome Media Router) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-22]
      CHR Profile: C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-26]
      CHR HKU\S-1-5-21-2063637959-3338619981-453652926-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 Amazon Assistant Service; C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe [105136 2017-10-04] ()
      R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-10] (AVAST Software)
      R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Windows (R) Win 7 DDK provider)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-10] (AVAST Software)
      R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [332368 2017-11-10] (AVAST Software)
      R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278616 2017-03-20] (Acer Incorporated)
      R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4424392 2017-08-12] (Microsoft Corporation)
      S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-18] (Dropbox, Inc.)
      S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-10-18] (Dropbox, Inc.)
      R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-11-13] (Dropbox, Inc.)
      R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-04-24] (Disc Soft Ltd)
      R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated)
      R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [350312 2015-08-20] (Intel Corporation)
      S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
      R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [File not signed]
      S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-02-26] () [File not signed]
      R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [174368 2015-04-21] (Intel Corporation)
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
      R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [401248 2015-09-04] (Acer Incorporated)
      R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [453984 2015-09-04] (Acer Incorporated)
      R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-04-02] ()
      R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
      R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
      S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
      R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-26] (acer)
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [183584 2017-11-10] (AVAST Software)
      R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321032 2017-11-10] (AVAST Software s.r.o.)
      R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [198968 2017-11-10] (AVAST Software s.r.o.)
      R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343288 2017-11-10] (AVAST Software s.r.o.)
      R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57728 2017-11-10] (AVAST Software s.r.o.)
      R3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [47008 2017-11-10] (AVAST Software)
      R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-01] (AVAST Software)
      R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [148288 2017-11-10] (AVAST Software)
      R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [570152 2017-11-10] (AVAST Software)
      R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110376 2017-11-10] (AVAST Software)
      R0 AswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84416 2017-11-10] (AVAST Software)
      R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026232 2017-11-10] (AVAST Software)
      R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [455376 2017-11-22] (AVAST Software)
      R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203976 2017-11-10] (AVAST Software)
      R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [364464 2017-11-10] (AVAST Software)
      R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-01] ()
      R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [175152 2015-06-09] (ELAN Microelectronic Corp.)
      R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [5741816 2015-08-20] (Intel Corporation)
      R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2015-09-04] (Acer Incorporated)
      R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193464 2017-11-26] (Malwarebytes)
      R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-11-26] (Malwarebytes)
      R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-11-26] (Malwarebytes)
      R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-26] (Malwarebytes)
      R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-26] (Malwarebytes)
      R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2015-09-04] (Acer Incorporated)
      R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-14] (Realtek )
      R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [752856 2015-05-29] (Realsil Semiconductor Corporation)
      S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
      R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146232 2015-06-26] (Intel Corporation)
      S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
      S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
      S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
      S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
      S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
      S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-26 22:11 - 2017-11-26 22:14 - 000023541 _____ C:\Users\Unmot\Desktop\FRST.txt
      2017-11-26 22:10 - 2017-11-26 22:11 - 000000000 ____D C:\FRST
      2017-11-26 22:09 - 2017-11-26 22:09 - 002391552 _____ (Farbar) C:\Users\Unmot\Desktop\FRST64.exe
      2017-11-26 21:50 - 2017-11-26 22:08 - 000000000 ____D C:\Users\Unmot\Desktop\fihas de taller
      2017-11-26 18:50 - 2017-11-26 22:16 - 000000000 ____D C:\Users\Unmot\Desktop\regisr
      2017-11-26 18:35 - 2017-11-26 18:35 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
      2017-11-26 18:35 - 2017-11-26 18:35 - 000002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
      2017-11-26 18:35 - 2017-11-26 18:35 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-11-26 18:35 - 2017-11-26 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      2017-11-26 18:34 - 2017-11-26 18:34 - 010427120 _____ (Piriform Ltd) C:\Users\Unmot\Downloads\ccsetup536 (1).exe
      2017-11-26 18:34 - 2017-11-26 18:34 - 000000000 ____D C:\ProgramData\SWCUTemp
      2017-11-26 18:27 - 2017-11-26 18:27 - 000001583 _____ C:\Users\Unmot\Desktop\abBox.lnk
      2017-11-26 18:27 - 2017-11-26 18:27 - 000000000 ___HD C:\OneDriveTemp
      2017-11-26 18:15 - 2017-11-26 18:15 - 008261584 _____ (Malwarebytes) C:\Users\Unmot\Downloads\AdwCleaner.exe
      2017-11-26 11:25 - 2017-11-26 22:08 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
      2017-11-26 11:25 - 2017-11-26 18:25 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
      2017-11-26 11:25 - 2017-11-26 18:25 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
      2017-11-26 11:25 - 2017-11-26 17:04 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
      2017-11-26 11:25 - 2017-11-26 11:25 - 000193464 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
      2017-11-26 11:24 - 2017-11-26 11:24 - 000001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-11-26 11:24 - 2017-11-26 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-11-26 11:24 - 2017-11-26 11:24 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-11-26 11:24 - 2017-11-26 11:24 - 000000000 ____D C:\Program Files\Malwarebytes
      2017-11-26 11:24 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
      2017-11-25 22:47 - 2017-11-25 22:49 - 000000000 ___HD C:\$SysReset
      2017-11-25 22:36 - 2017-11-25 22:36 - 000000000 ____D C:\Users\Unmot\AppData\Local\ElevatedDiagnostics
      2017-11-25 14:35 - 2017-11-25 14:35 - 006974584 _____ (ESET spol. s r.o.) C:\Users\Unmot\Downloads\ESETOnlineScanner_ESL.exe
      2017-11-25 14:35 - 2017-11-25 14:35 - 000000000 ____D C:\Users\Unmot\AppData\Local\ESET
      2017-11-24 23:23 - 2017-11-24 23:23 - 000000000 ____D C:\Program Files (x86)\Roblox
      2017-11-24 23:18 - 2017-11-24 23:18 - 000001341 _____ C:\Users\Unmot\Desktop\Revo Uninstaller.lnk
      2017-11-24 23:18 - 2017-11-24 23:18 - 000000000 ____D C:\Users\Unmot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      2017-11-24 23:18 - 2017-11-24 23:18 - 000000000 ____D C:\Program Files (x86)\VS Revo Group
      2017-11-24 23:17 - 2017-11-24 23:17 - 002623656 _____ (VS Revo Group Ltd.) C:\Users\Unmot\Downloads\revosetup.exe
      2017-11-24 21:22 - 2017-11-24 21:22 - 000272120 _____ C:\Users\Unmot\Downloads\Patch SH santoslaguna88.zip
      2017-11-23 22:57 - 2017-11-23 22:57 - 000000000 _____ C:\autoexec.bat
      2017-11-23 22:23 - 2017-11-26 18:35 - 000000000 ____D C:\Program Files\CCleaner
      2017-11-23 22:22 - 2017-11-23 22:22 - 010427120 _____ (Piriform Ltd) C:\Users\Unmot\Downloads\ccsetup536.exe
      2017-11-23 14:51 - 2017-11-26 18:23 - 000000000 ____D C:\AdwCleaner
      2017-11-23 14:40 - 2017-11-23 14:40 - 001790024 _____ (Malwarebytes) C:\Users\Unmot\Downloads\JRT.exe
      2017-11-23 14:21 - 2017-11-23 14:22 - 078346672 _____ (Malwarebytes ) C:\Users\Unmot\Downloads\mb3-setup-consumer-3.3.1.2183.exe
      2017-11-23 14:13 - 2017-11-23 14:20 - 000000000 ____D C:\Program Files (x86)\IObit
      2017-11-23 14:13 - 2017-11-23 14:13 - 000000000 ____D C:\Users\Unmot\AppData\LocalLow\IObit
      2017-11-23 14:12 - 2017-11-23 14:57 - 000000000 ____D C:\Users\Unmot\AppData\Roaming\IObit
      2017-11-23 14:12 - 2017-11-23 14:14 - 000000000 ____D C:\ProgramData\IObit
      2017-11-23 14:10 - 2017-11-23 14:12 - 015871160 _____ (IObit ) C:\Users\Unmot\Downloads\iobituninstaller.exe
      2017-11-21 18:34 - 2017-11-21 19:01 - 000031131 _____ C:\Users\Unmot\Downloads\italia.xlsx
      2017-11-19 09:30 - 2017-11-19 09:30 - 000000000 ___RD C:\Users\Unmot\3D Objects
      2017-11-19 06:21 - 2017-11-19 06:21 - 000251392 _____ C:\Users\Unmot\Downloads\tablas.xls
      2017-11-19 05:46 - 2017-11-19 05:46 - 000024064 _____ C:\Users\Unmot\Downloads\AMORTIZACIONES.xls
      2017-11-18 22:24 - 2017-11-18 22:24 - 000016424 _____ C:\Users\Unmot\Downloads\costo_instalacion_invernadero_tomate_por_hectarea.xlsx
      2017-11-15 22:28 - 2017-11-15 22:28 - 000182630 _____ C:\Users\Unmot\Downloads\6°-básico.-Guía.-El-cuento-y-sus-características.pdf
      2017-11-15 21:07 - 2017-11-15 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-11-15 20:59 - 2017-11-15 20:59 - 000055231 _____ C:\Users\Unmot\Downloads\Archivo de cocina Prueba.xlsx
      2017-11-14 23:47 - 2017-11-02 02:16 - 002398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
      2017-11-14 23:47 - 2017-11-02 02:13 - 000546712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
      2017-11-14 23:47 - 2017-11-02 02:13 - 000095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
      2017-11-14 23:47 - 2017-11-02 02:10 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
      2017-11-14 23:47 - 2017-11-02 02:04 - 001292360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
      2017-11-14 23:47 - 2017-11-02 02:03 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
      2017-11-14 23:47 - 2017-11-02 01:49 - 001838848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
      2017-11-14 23:47 - 2017-11-02 01:45 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
      2017-11-14 23:47 - 2017-11-02 01:45 - 000613136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
      2017-11-14 23:47 - 2017-11-02 01:45 - 000362144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
      2017-11-14 23:47 - 2017-11-02 01:45 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
      2017-11-14 23:47 - 2017-11-02 01:45 - 000283544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
      2017-11-14 23:47 - 2017-11-02 01:45 - 000172952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
      2017-11-14 23:47 - 2017-11-02 01:45 - 000133896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
      2017-11-14 23:47 - 2017-11-02 01:44 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
      2017-11-14 23:47 - 2017-11-02 01:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
      2017-11-14 23:47 - 2017-11-02 01:43 - 020372896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
      2017-11-14 23:47 - 2017-11-02 01:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
      2017-11-14 23:47 - 2017-11-02 01:35 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
      2017-11-14 23:47 - 2017-11-02 01:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
      2017-11-14 23:47 - 2017-11-02 01:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
      2017-11-14 23:47 - 2017-11-02 01:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
      2017-11-14 23:47 - 2017-11-02 01:34 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
      2017-11-14 23:47 - 2017-11-02 01:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
      2017-11-14 23:47 - 2017-11-02 01:32 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
      2017-11-14 23:47 - 2017-11-02 01:31 - 020512256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
      2017-11-14 23:47 - 2017-11-02 01:30 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
      2017-11-14 23:47 - 2017-11-02 01:30 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
      2017-11-14 23:47 - 2017-11-02 01:30 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
      2017-11-14 23:47 - 2017-11-02 01:30 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
      2017-11-14 23:47 - 2017-11-02 01:29 - 019338240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
      2017-11-14 23:47 - 2017-11-02 01:29 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
      2017-11-14 23:47 - 2017-11-02 01:29 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
      2017-11-14 23:47 - 2017-11-02 01:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
      2017-11-14 23:47 - 2017-11-02 01:27 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
      2017-11-14 23:47 - 2017-11-02 01:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
      2017-11-14 23:47 - 2017-11-02 01:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPKICmdlet.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 008197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 005963776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 001937408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
      2017-11-14 23:47 - 2017-11-02 01:26 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
      2017-11-14 23:47 - 2017-11-02 01:25 - 004727808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
      2017-11-14 23:47 - 2017-11-02 01:25 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
      2017-11-14 23:47 - 2017-11-02 01:25 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
      2017-11-14 23:47 - 2017-11-02 01:25 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
      2017-11-14 23:47 - 2017-11-02 01:24 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
      2017-11-14 23:47 - 2017-11-02 01:24 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
      2017-11-14 23:47 - 2017-11-02 01:24 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
      2017-11-14 23:47 - 2017-11-02 01:24 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
      2017-11-14 23:47 - 2017-11-02 01:24 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
      2017-11-14 23:47 - 2017-11-02 01:23 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
      2017-11-14 23:47 - 2017-11-02 01:23 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
      2017-11-14 23:47 - 2017-11-02 01:23 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
      2017-11-14 23:47 - 2017-11-02 01:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
      2017-11-14 23:47 - 2017-11-02 01:22 - 006254080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
      2017-11-14 23:47 - 2017-11-02 01:22 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
      2017-11-14 23:47 - 2017-11-02 01:22 - 001884160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
      2017-11-14 23:47 - 2017-11-02 01:22 - 001494528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
      2017-11-14 23:47 - 2017-11-02 01:21 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
      2017-11-14 23:47 - 2017-11-02 01:21 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
      2017-11-14 23:47 - 2017-11-02 01:21 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
      2017-11-14 23:47 - 2017-11-02 01:21 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
      2017-11-14 23:47 - 2017-10-25 04:40 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
      2017-11-14 23:47 - 2017-10-15 12:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
      2017-11-14 23:47 - 2017-10-15 12:03 - 006765728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
      2017-11-14 23:47 - 2017-10-15 12:01 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
      2017-11-14 23:47 - 2017-10-15 11:49 - 000094616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
      2017-11-14 23:47 - 2017-10-15 11:49 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
      2017-11-14 23:47 - 2017-10-15 11:45 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
      2017-11-14 23:47 - 2017-10-15 11:45 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
      2017-11-14 23:47 - 2017-10-15 11:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
      2017-11-14 23:47 - 2017-10-15 11:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
      2017-11-14 23:47 - 2017-10-15 11:42 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
      2017-11-14 23:47 - 2017-10-15 11:42 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
      2017-11-14 23:47 - 2017-10-15 11:41 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
      2017-11-14 23:47 - 2017-10-15 11:41 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
      2017-11-14 23:47 - 2017-10-15 11:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
      2017-11-14 23:47 - 2017-10-15 11:10 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
      2017-11-14 23:46 - 2017-11-02 02:21 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
      2017-11-14 23:46 - 2017-11-02 02:20 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
      2017-11-14 23:46 - 2017-11-02 02:20 - 000543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
      2017-11-14 23:46 - 2017-11-02 02:20 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
      2017-11-14 23:46 - 2017-11-02 02:20 - 000469568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
      2017-11-14 23:46 - 2017-11-02 02:20 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
      2017-11-14 23:46 - 2017-11-02 02:20 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
      2017-11-14 23:46 - 2017-11-02 02:16 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2017-11-14 23:46 - 2017-11-02 02:16 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2017-11-14 23:46 - 2017-11-02 02:15 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
      2017-11-14 23:46 - 2017-11-02 02:15 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
      2017-11-14 23:46 - 2017-11-02 02:14 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
      2017-11-14 23:46 - 2017-11-02 02:14 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
      2017-11-14 23:46 - 2017-11-02 02:13 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
      2017-11-14 23:46 - 2017-11-02 02:13 - 002443672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2017-11-14 23:46 - 2017-11-02 02:13 - 001345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
      2017-11-14 23:46 - 2017-11-02 02:13 - 000212888 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2017-11-14 23:46 - 2017-11-02 02:12 - 000727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
      2017-11-14 23:46 - 2017-11-02 02:12 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
      2017-11-14 23:46 - 2017-11-02 02:12 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
      2017-11-14 23:46 - 2017-11-02 02:12 - 000643192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
      2017-11-14 23:46 - 2017-11-02 02:12 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll

    6. #6
      Usuario Avatar de Sweetun
      Registrado
      nov 2017
      Ubicación
      Chile
      Mensajes
      5

      Re: Ventana activa de amazon assistant

      2017-11-14 23:46 - 2017-11-02 02:12 - 000412752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
      2017-11-14 23:46 - 2017-11-02 02:12 - 000319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
      2017-11-14 23:46 - 2017-11-02 02:12 - 000144248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
      2017-11-14 23:46 - 2017-11-02 02:12 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
      2017-11-14 23:46 - 2017-11-02 02:12 - 000026472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
      2017-11-14 23:46 - 2017-11-02 02:11 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
      2017-11-14 23:46 - 2017-11-02 02:05 - 000871408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
      2017-11-14 23:46 - 2017-11-02 02:05 - 000187800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
      2017-11-14 23:46 - 2017-11-02 01:44 - 023680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2017-11-14 23:46 - 2017-11-02 01:37 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
      2017-11-14 23:46 - 2017-11-02 01:37 - 001278976 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
      2017-11-14 23:46 - 2017-11-02 01:37 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
      2017-11-14 23:46 - 2017-11-02 01:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
      2017-11-14 23:46 - 2017-11-02 01:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
      2017-11-14 23:46 - 2017-11-02 01:36 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
      2017-11-14 23:46 - 2017-11-02 01:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
      2017-11-14 23:46 - 2017-11-02 01:35 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
      2017-11-14 23:46 - 2017-11-02 01:34 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
      2017-11-14 23:46 - 2017-11-02 01:34 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
      2017-11-14 23:46 - 2017-11-02 01:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
      2017-11-14 23:46 - 2017-11-02 01:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
      2017-11-14 23:46 - 2017-11-02 01:33 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
      2017-11-14 23:46 - 2017-11-02 01:33 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
      2017-11-14 23:46 - 2017-11-02 01:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPKICmdlet.dll
      2017-11-14 23:46 - 2017-11-02 01:32 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
      2017-11-14 23:46 - 2017-11-02 01:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
      2017-11-14 23:46 - 2017-11-02 01:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
      2017-11-14 23:46 - 2017-11-02 01:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
      2017-11-14 23:46 - 2017-11-02 01:31 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 013381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 007339008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 000719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 000635392 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
      2017-11-14 23:46 - 2017-11-02 01:30 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
      2017-11-14 23:46 - 2017-11-02 01:30 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
      2017-11-14 23:46 - 2017-11-02 01:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
      2017-11-14 23:46 - 2017-11-02 01:29 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
      2017-11-14 23:46 - 2017-11-02 01:29 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
      2017-11-14 23:46 - 2017-11-02 01:28 - 023684096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2017-11-14 23:46 - 2017-11-02 01:28 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
      2017-11-14 23:46 - 2017-11-02 01:28 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
      2017-11-14 23:46 - 2017-11-02 01:28 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
      2017-11-14 23:46 - 2017-11-02 01:28 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
      2017-11-14 23:46 - 2017-11-02 01:27 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
      2017-11-14 23:46 - 2017-11-02 01:27 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
      2017-11-14 23:46 - 2017-11-02 01:27 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
      2017-11-14 23:46 - 2017-11-02 01:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
      2017-11-14 23:46 - 2017-11-02 01:26 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
      2017-11-14 23:46 - 2017-11-02 01:26 - 003060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
      2017-11-14 23:46 - 2017-11-02 01:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
      2017-11-14 23:46 - 2017-11-02 01:26 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 012227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 011888128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 002052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
      2017-11-14 23:46 - 2017-11-02 01:25 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
      2017-11-14 23:46 - 2017-11-02 01:25 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
      2017-11-14 23:46 - 2017-11-02 01:24 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
      2017-11-14 23:46 - 2017-11-02 01:23 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
      2017-11-14 23:46 - 2017-11-02 01:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
      2017-11-14 23:46 - 2017-11-02 01:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
      2017-11-14 23:46 - 2017-11-02 01:22 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
      2017-11-14 23:46 - 2017-10-15 11:59 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
      2017-11-14 23:46 - 2017-10-15 11:57 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
      2017-11-14 23:46 - 2017-10-15 11:57 - 000409496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
      2017-11-14 23:46 - 2017-10-15 11:56 - 000872464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
      2017-11-14 23:46 - 2017-10-15 11:55 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
      2017-11-14 23:46 - 2017-10-15 11:53 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
      2017-11-14 23:46 - 2017-10-15 11:53 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
      2017-11-14 23:46 - 2017-10-15 11:51 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
      2017-11-14 23:46 - 2017-10-15 11:15 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
      2017-11-14 23:46 - 2017-10-15 11:14 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
      2017-11-14 23:46 - 2017-10-15 11:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
      2017-11-14 23:46 - 2017-10-15 11:09 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
      2017-11-14 23:46 - 2017-10-15 11:09 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
      2017-11-14 23:46 - 2017-10-15 11:08 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
      2017-11-14 23:46 - 2017-10-15 11:08 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
      2017-11-14 23:46 - 2017-10-15 11:07 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
      2017-11-14 23:46 - 2017-10-15 11:05 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
      2017-11-14 23:46 - 2017-10-15 11:05 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
      2017-11-14 23:46 - 2017-10-15 11:04 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
      2017-11-14 23:46 - 2017-10-15 11:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
      2017-11-14 23:46 - 2017-10-15 11:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
      2017-11-14 23:45 - 2017-11-02 01:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
      2017-11-14 23:45 - 2017-11-02 01:34 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
      2017-11-14 23:45 - 2017-11-02 01:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
      2017-11-14 23:45 - 2017-11-02 01:33 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
      2017-11-14 23:45 - 2017-11-02 01:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
      2017-11-14 12:42 - 2017-11-14 12:42 - 000000000 ____D C:\ProgramData\Apple
      2017-11-14 12:42 - 2017-11-14 12:42 - 000000000 ____D C:\Program Files\Bonjour
      2017-11-14 12:42 - 2017-11-14 12:42 - 000000000 ____D C:\Program Files (x86)\Bonjour
      2017-11-13 07:26 - 2017-11-13 07:26 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
      2017-11-13 07:26 - 2017-11-13 07:26 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
      2017-11-13 07:26 - 2017-11-13 07:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
      2017-11-13 07:26 - 2017-11-13 07:26 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
      2017-11-12 23:41 - 2017-11-12 23:42 - 000527049 _____ C:\Users\Unmot\Downloads\MTS_arcadialight_1715673_arcadialight_build_GeneralHospital.zip
      2017-11-12 23:39 - 2017-11-12 23:39 - 000259652 _____ C:\Users\Unmot\Downloads\MTS_RayanStar_1525606_Sacred_Heart_Hospital.zip
      2017-11-12 23:33 - 2017-11-12 23:33 - 000234774 _____ C:\Users\Unmot\Downloads\больница Айболит.rar
      2017-11-12 22:37 - 2017-11-12 22:37 - 005329523 _____ C:\Users\Unmot\Downloads\Le-salón-de-thé-Ambiance-2.pptx
      2017-11-12 15:11 - 2017-11-12 15:16 - 253334893 _____ C:\Users\Unmot\Downloads\Hospital of the Dead by Livia.rar
      2017-11-12 00:16 - 2017-11-12 00:16 - 000185423 _____ C:\Users\Unmot\Downloads\Avenicci__The black Widow.zip
      2017-11-12 00:09 - 2017-11-12 00:09 - 000244939 _____ C:\Users\Unmot\Downloads\1390305.zip
      2017-11-12 00:04 - 2017-11-12 00:04 - 000325208 _____ C:\Users\Unmot\Downloads\files.zip
      2017-11-11 23:29 - 2017-11-11 23:29 - 001377187 _____ C:\Users\Unmot\Downloads\1374010.zip
      2017-11-11 23:28 - 2017-11-11 23:28 - 000177829 _____ C:\Users\Unmot\Downloads\1392739.zip
      2017-11-10 23:59 - 2017-11-11 00:00 - 000002065 _____ C:\Users\Unmot\Downloads\MTS_scripthoge_1458832_BuildBuyModeUnlocker.zip
      2017-11-10 23:31 - 2017-11-10 23:29 - 000183584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
      2017-11-10 23:29 - 2017-11-10 23:29 - 000365168 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
      2017-11-07 22:36 - 2017-11-07 22:36 - 000247112 _____ C:\Users\Unmot\Downloads\Ristorante Italiano(2).zip
      2017-11-07 22:32 - 2017-11-07 22:33 - 000274037 _____ C:\Users\Unmot\Downloads\Newcrest Store.rar
      2017-11-06 23:24 - 2017-11-06 23:24 - 000196029 _____ C:\Users\Unmot\Downloads\House 01.viasims.zip
      2017-11-06 23:21 - 2017-11-06 23:21 - 000193171 _____ C:\Users\Unmot\Downloads\House 03 - The Sims 4.zip
      2017-11-06 23:12 - 2017-11-06 23:12 - 000203384 _____ C:\Users\Unmot\Downloads\House 21.rar
      2017-11-06 22:56 - 2017-11-06 22:56 - 000243027 _____ C:\Users\Unmot\Downloads\House 33 - Mediterranean.zip
      2017-11-06 13:43 - 2017-11-06 13:43 - 000000000 ___RD C:\Users\Unmot\OneDrive\Documentos\Scanned Documents
      2017-11-06 13:43 - 2017-11-06 13:43 - 000000000 ____D C:\Users\Unmot\OneDrive\Documentos\Fax
      2017-11-05 04:00 - 2017-11-05 04:00 - 000000000 ____D C:\Users\Unmot\OneDrive\Documentos\Electronic Arts
      2017-11-05 03:55 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
      2017-11-05 03:55 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
      2017-11-05 03:55 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
      2017-11-05 03:55 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
      2017-11-05 03:55 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
      2017-11-05 03:55 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
      2017-11-05 03:55 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
      2017-11-05 03:55 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
      2017-11-05 03:55 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
      2017-11-05 03:55 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
      2017-11-05 03:55 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
      2017-11-05 03:49 - 2017-11-05 03:52 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
      2017-11-05 03:48 - 2017-11-05 03:48 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
      2017-11-05 01:46 - 2017-11-05 01:46 - 000001571 _____ C:\Users\Public\Desktop\The Sims 4 x64.lnk
      2017-11-05 01:46 - 2017-11-05 01:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
      2017-11-05 01:46 - 2017-11-05 01:46 - 000000000 ____D C:\Games
      2017-11-04 20:49 - 2017-11-04 20:50 - 000151307 _____ C:\Users\Unmot\Downloads\Sm4-PiviGames.blog.torrent
      2017-11-02 21:46 - 2017-11-02 21:47 - 002293116 _____ C:\Users\Unmot\Downloads\TRASTORNOS DE LA TIROIDES.pptx
      2017-11-01 23:20 - 2017-11-01 23:20 - 000024656 _____ C:\Users\Unmot\Downloads\caldillo de congrio.xlsx
      2017-11-01 23:19 - 2017-11-01 23:19 - 000024141 _____ C:\Users\Unmot\Downloads\app.xlsx
      2017-11-01 23:18 - 2017-11-01 23:18 - 000025381 _____ C:\Users\Unmot\Downloads\postre ja.xlsx
      2017-11-01 23:16 - 2017-11-01 23:16 - 000025295 _____ C:\Users\Unmot\Downloads\Principal lomo de cabrito.xlsx
      2017-11-01 23:14 - 2017-11-01 23:14 - 000023941 _____ C:\Users\Unmot\Downloads\Ficha tecnica entrada.xlsx
      2017-10-31 18:22 - 2017-10-31 18:22 - 000000043 _____ C:\Users\Unmot\Downloads\hbpix (2)
      2017-10-27 21:58 - 2017-10-27 21:58 - 001112862 _____ C:\Users\Unmot\Downloads\Las gafas de la felicidad - Rafael Santandreu.pdf

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-26 22:16 - 2017-05-05 01:24 - 000000000 ____D C:\Users\Unmot\Desktop\cosas
      2017-11-26 22:10 - 2017-09-30 12:00 - 000000000 ___HD C:\$WINDOWS.~BT
      2017-11-26 22:02 - 2017-03-25 22:09 - 000000000 ____D C:\Users\Unmot\AppData\Local\Packages
      2017-11-26 21:02 - 2017-07-19 23:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-11-26 18:38 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
      2017-11-26 18:29 - 2017-07-19 23:51 - 002743780 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-11-26 18:29 - 2017-03-20 02:09 - 001303674 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-11-26 18:29 - 2017-03-20 02:09 - 000301920 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-11-26 18:27 - 2017-03-25 22:14 - 000000000 ___RD C:\Users\Unmot\OneDrive
      2017-11-26 18:25 - 2017-07-19 23:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-11-26 18:25 - 2017-07-19 23:28 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      2017-11-26 18:25 - 2017-03-25 22:09 - 000000000 __SHD C:\Users\Unmot\IntelGraphicsProfiles
      2017-11-26 18:24 - 2017-03-18 08:40 - 002097152 _____ C:\WINDOWS\system32\config\BBI
      2017-11-26 17:28 - 2017-07-19 23:29 - 000000000 ____D C:\Users\Unmot
      2017-11-26 17:26 - 2017-07-19 23:52 - 000004218 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{DA287817-C18E-4F61-8BE6-73D868712ABE}
      2017-11-26 01:08 - 2017-06-02 23:50 - 000000000 ___DC C:\WINDOWS\Panther
      2017-11-25 22:59 - 2017-07-19 18:19 - 000000000 ____D C:\Windows.old
      2017-11-23 22:29 - 2017-07-02 23:37 - 000000000 ____D C:\Users\Unmot\AppData\Roaming\DAEMON Tools Lite
      2017-11-23 22:28 - 2017-03-26 16:08 - 000000000 ____D C:\Users\Unmot\AppData\Local\CrashDumps
      2017-11-23 22:28 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
      2017-11-23 14:32 - 2016-07-16 08:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
      2017-11-23 13:54 - 2017-07-23 19:35 - 000000000 ____D C:\Users\Unmot\Desktop\Tesis
      2017-11-23 13:54 - 2017-03-18 18:03 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-11-23 13:54 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-11-23 13:50 - 2017-07-19 23:52 - 000004252 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
      2017-11-23 13:49 - 2017-03-25 22:13 - 000000000 ____D C:\Users\Unmot\AppData\Local\clear.fi
      2017-11-22 21:33 - 2017-10-08 16:12 - 000025290 _____ C:\Users\Unmot\Desktop\Solomillo.xlsx
      2017-11-22 14:07 - 2017-04-15 23:57 - 000455376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
      2017-11-22 13:33 - 2017-09-12 23:22 - 000000000 ____D C:\Users\Unmot\Desktop\8 semestre
      2017-11-22 13:14 - 2016-11-21 03:55 - 000000000 __RHD C:\Users\Public\AccountPictures
      2017-11-22 13:07 - 2017-07-19 23:52 - 000004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
      2017-11-22 12:59 - 2017-07-19 23:24 - 000403472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-11-22 12:56 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2017-11-22 12:56 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2017-11-22 12:56 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\Provisioning
      2017-11-22 12:56 - 2017-03-18 18:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
      2017-11-22 12:56 - 2017-03-18 18:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
      2017-11-21 23:44 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\NDF
      2017-11-18 14:35 - 2017-04-26 10:15 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-11-18 14:03 - 2017-10-11 22:14 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-11-18 14:03 - 2017-04-26 10:15 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-11-15 21:17 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\rescache
      2017-11-15 21:09 - 2017-10-18 20:55 - 000000000 ____D C:\Program Files (x86)\Dropbox
      2017-11-15 21:01 - 2017-03-25 22:55 - 000002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-11-15 21:01 - 2017-03-25 22:55 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-11-15 00:00 - 2017-03-18 17:51 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-11-14 12:46 - 2015-12-16 08:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
      2017-11-14 12:43 - 2017-07-19 23:52 - 000003508 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
      2017-11-14 12:43 - 2015-12-16 08:30 - 000000000 ___HD C:\OEM
      2017-11-14 12:00 - 2017-07-19 23:52 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
      2017-11-14 11:59 - 2017-03-26 00:35 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
      2017-11-14 11:54 - 2017-07-19 23:52 - 000004626 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
      2017-11-14 11:51 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
      2017-11-14 11:50 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
      2017-11-13 19:29 - 2017-07-19 23:52 - 000003554 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-11-13 19:29 - 2017-07-19 23:52 - 000003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-11-10 23:31 - 2017-06-07 03:40 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000364464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000203976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000148288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
      2017-11-10 23:29 - 2017-04-15 23:57 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
      2017-11-10 23:28 - 2017-08-12 14:05 - 000570152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
      2017-11-10 23:28 - 2017-04-15 23:57 - 001026232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
      2017-11-10 23:28 - 2017-04-15 23:57 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
      2017-11-10 23:28 - 2017-04-15 23:57 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
      2017-11-10 23:28 - 2017-04-15 23:57 - 000198968 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
      2017-11-10 23:28 - 2017-04-15 23:57 - 000057728 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
      2017-11-05 11:39 - 2017-10-18 20:56 - 000000980 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
      2017-11-05 11:39 - 2017-10-18 20:56 - 000000976 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
      2017-11-04 22:40 - 2017-03-18 18:06 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2017-11-04 22:40 - 2017-03-18 18:06 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
      2017-11-03 13:50 - 2017-07-20 00:01 - 000024768 _____ C:\WINDOWS\diagwrn.xml
      2017-11-03 13:50 - 2017-07-20 00:01 - 000024768 _____ C:\WINDOWS\diagerr.xml
      2017-11-03 13:05 - 2017-03-18 08:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
      2017-11-03 12:45 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\Registration
      2017-11-02 23:05 - 2017-07-24 22:38 - 000003376 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2063637959-3338619981-453652926-1001
      2017-11-02 23:05 - 2017-03-25 22:14 - 000002399 _____ C:\Users\Unmot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

      ==================== Files in the root of some directories =======

      2017-03-27 08:34 - 2017-03-27 08:34 - 000000000 _____ () C:\Users\Unmot\AppData\Local\{8480D214-1C3B-446B-AB9D-D3C6175E0730}

      Some files in TEMP:
      ====================
      2017-11-24 21:38 - 2015-03-16 13:12 - 005912800 _____ (Foxit Corporation) C:\Users\Unmot\AppData\Local\Temp\FoxitUpdater.exe

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-11-18 23:26

      ==================== End of FRST.txt ============================

    7. #7
      Usuario Avatar de Sweetun
      Registrado
      nov 2017
      Ubicación
      Chile
      Mensajes
      5

      Re: Ventana activa de amazon assistant

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-11-2017 01
      Ran by Unmot (26-11-2017 22:17:58)
      Running from C:\Users\Unmot\Desktop
      Windows 10 Home Single Language Version 1703 15063.726 (X64) (2017-07-20 03:05:05)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-2063637959-3338619981-453652926-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-2063637959-3338619981-453652926-503 - Limited - Disabled)
      Invitado (S-1-5-21-2063637959-3338619981-453652926-501 - Limited - Disabled)
      Unmot (S-1-5-21-2063637959-3338619981-453652926-1001 - Administrator - Enabled) => C:\Users\Unmot

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
      AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
      FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.03.2003 - Acer Incorporated)
      abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
      Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3001 - Acer Incorporated)
      Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2004 - Acer Incorporated)
      Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)
      Acer Quick Access (HKLM\...\{E3678E72-78E3-4F91-A9FB-913876FF6DA2}) (Version: 2.00.3008 - Acer Incorporated)
      Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 2.01.3002 - Acer Incorporated)
      Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated)
      Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
      AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
      Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
      Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software)
      Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.4 - AVAST Software)
      Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
      Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3029 - Acer Incorporated)
      CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
      CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5427.02 - CyberLink Corp.)
      DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0232 - Disc Soft Ltd)
      Dropbox (HKLM-x32\...\Dropbox) (Version: 39.4.49 - Dropbox, Inc.)
      Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
      ELAN HIDI2C Filter Driver X64 13.6.3.1_WHQL (HKLM\...\Elantech) (Version: 13.6.3.1 - ELAN Microelectronic Corp.)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security)
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
      Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2.0.0.1067 - Intel Corporation)
      Intel® Security Assist (HKLM-x32\...\{84DB01CB-7EB7-4261-9249-99A32768D991}) (Version: 1.0.0.523 - Intel Corporation)
      Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.8326.2076 - Microsoft Corporation)
      Microsoft Office Profesional 2016 - es-es (HKLM\...\ProfessionalRetail - es-es) (Version: 16.0.8326.2076 - Microsoft Corporation)
      Microsoft Office Professional 2016 - en-us (HKLM\...\ProfessionalRetail - en-us) (Version: 16.0.8326.2076 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
      Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.67 - Qualcomm Atheros)
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.21277 - Realtek Semiconductor Corp.)
      Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7589 - Realtek Semiconductor Corp.)
      Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
      RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
      SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
      Software para dispositivos de chipset Intel® (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
      The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
      UpdateAssistant (HKLM-x32\...\{4E67FF7F-C24E-4279-9AB2-C26D57B53742}) (Version: 1.3.0.0 - Microsoft Corporation) Hidden
      Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
      WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-10] (AVAST Software)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ShellIconOverlayIdentifiers-x32: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ShellIconOverlayIdentifiers-x32: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-09-08] (Acer Incorporated)
      ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-10] (AVAST Software)
      ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-10] (AVAST Software)
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-13] (Dropbox, Inc.)
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-20] (Intel Corporation)
      ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-10] (AVAST Software)
      ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {0252BE97-7E03-49A5-A77B-206FA848A6C1} - System32\Tasks\AutoPico Daily Restart => C:\Users\Unmot\Desktop\cosas\OFFICE [Argument = 2017 MARLON TUTOS 2017\ACTIVADOR DE OFFICE 2017 MARLON TUTOS\AutoPico.exe /silent]
      Task: {08111E90-8F83-433E-86AC-8ABF5F707DBB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-08-20] ()
      Task: {09CF7C37-43A6-46F2-9DB7-6D7450C71A56} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
      Task: {16CAAF25-AA15-43F8-9D4F-067678AF3B42} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-08-12] (Microsoft Corporation)
      Task: {28A4A86E-1B35-4F85-8868-9DA33BE1904D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-25] (Google Inc.)
      Task: {2DE60770-E75D-4824-BDD9-17A055E8BE3C} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2016-09-09] (Acer)
      Task: {2EF0713A-734F-4D79-A896-D027A9D20ECB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-10-18] (Dropbox, Inc.)
      Task: {3AB6036B-13E2-4B47-A609-262F77FB3459} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-14] (Adobe Systems Incorporated)
      Task: {4FBD70A0-8A4C-4808-B951-DBF01C402B47} - System32\Tasks\SafeZone scheduled Autoupdate 1492311728 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
      Task: {6A38DDC0-5484-45E8-B0B1-A7D309D6A2D8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-08-12] (Microsoft Corporation)
      Task: {6B31B888-3EC4-462A-8362-7099CCEC7D93} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
      Task: {7232FAE2-9A23-4402-A670-3E219716D10F} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2015-05-14] (Acer Incorporated)
      Task: {74DFE4F1-1C33-4163-ADBE-1ED6B1473EB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-08-20] (Microsoft Corporation)
      Task: {750E2564-1150-4382-8232-08F87124E4F1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-08-20] (Microsoft Corporation)
      Task: {7595DDA5-B205-43B0-8107-7365C204EBBF} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2017-03-20] (Acer Incorporated)
      Task: {79361CF7-4533-4BB5-8B85-FA4BC70E3075} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2015-09-04] (Acer Incorporated)
      Task: {7AFD41BD-4DB8-4BA6-B993-54D914B9E72D} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [2015-05-14] ()
      Task: {8690CDCA-D5E7-4298-8742-E3D4D7E6D5C2} - System32\Tasks\Avast SecureLine => C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [2017-04-02] (AVAST Software)
      Task: {8CD3346F-43A5-4463-B3C0-627FF7BCA8CA} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2017-04-02] (AVAST Software)
      Task: {8EEE0421-1C57-49F5-8BBA-65453D46FA45} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
      Task: {97377FE9-4105-47A4-BA6B-7697EC6185B5} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-12] (TODO: <Company name>)
      Task: {97EDE846-2700-4955-885A-947ADE50659A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-14] (Adobe Systems Incorporated)
      Task: {AF4845A1-FE94-4BEA-A6BA-91F5C521E635} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2015-11-25] ()
      Task: {B67BFA76-C453-4AC9-A319-6C17C202064E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2017-05-24] ()
      Task: {BD5DCE8F-8017-4356-9978-A824CAA85881} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2017-05-24] ()
      Task: {C1AEC9C5-3C85-4361-AB07-1926E18D857E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-10] (AVAST Software)
      Task: {C720C101-6EEF-4481-88EC-3AA0706E6C74} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2015-09-04] (Acer Incorporated)
      Task: {DEA243E0-A3BC-4CAC-BD53-F10FB2223551} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-10-18] (Dropbox, Inc.)
      Task: {E02A5E2B-1422-44C8-88E1-4393F0271F25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-25] (Google Inc.)
      Task: {E86B17D2-6CFD-43A9-B0F1-C91F94A5FFE2} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
      Task: {ECA3AEA5-1A88-41CF-90C1-987E4070F878} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-08-20] ()
      Task: {EEF82F38-7206-4478-99F1-BD8D404793EE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-08-20] (Microsoft Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
      Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2017-11-26 11:24 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
      2017-11-26 11:24 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
      2017-04-02 20:39 - 2017-04-02 20:39 - 000592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
      2017-10-04 13:06 - 2017-10-04 13:06 - 000105136 _____ () C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
      2017-03-18 17:58 - 2017-03-18 17:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
      2015-12-16 08:43 - 2015-05-08 15:41 - 000111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
      2015-09-02 00:42 - 2015-08-20 04:44 - 000395368 _____ () C:\WINDOWS\system32\igfxTray.exe
      2015-02-26 12:12 - 2015-02-26 12:12 - 000330240 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
      2017-05-24 21:11 - 2017-05-24 21:11 - 004645168 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
      2017-11-11 23:06 - 2017-11-11 23:07 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      2017-11-11 23:06 - 2017-11-11 23:07 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2017-10-18 13:19 - 2017-10-18 13:19 - 000098688 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
      2017-11-10 23:29 - 2017-11-10 23:29 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
      2017-11-15 21:01 - 2017-11-10 06:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll
      2017-11-15 21:01 - 2017-11-10 06:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll
      2017-03-18 17:59 - 2017-03-20 02:10 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2016-09-09 10:51 - 2016-09-09 10:51 - 000202456 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll
      2016-09-09 10:51 - 2016-09-09 10:51 - 000119000 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll
      2017-11-10 23:29 - 2017-11-10 23:29 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
      2017-11-10 23:29 - 2017-11-10 23:29 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
      2017-07-19 22:01 - 2017-07-19 22:01 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2017-11-10 23:29 - 2017-11-10 23:29 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
      2017-11-10 23:29 - 2017-11-10 23:29 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
      2017-11-10 23:28 - 2017-11-10 23:28 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
      2017-05-15 23:22 - 2017-08-20 16:19 - 000164552 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\JitV.dll
      2017-11-15 21:07 - 2017-11-13 07:26 - 000725312 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
      2017-11-15 21:07 - 2017-11-13 07:26 - 002075456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
      2017-11-15 21:07 - 2017-11-13 07:26 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000130512 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 001856848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
      2017-11-15 21:07 - 2017-11-13 07:26 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
      2017-11-15 21:07 - 2017-11-13 07:26 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000026056 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000021824 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000066392 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000022856 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 001796920 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000084424 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 001956152 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 003859264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000155464 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000521024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000050496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000042304 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000131384 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000218944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000204096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000100688 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000101184 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
      2017-11-15 21:07 - 2017-11-13 07:29 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000025424 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
      2017-11-15 21:07 - 2017-11-13 07:28 - 000032600 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
      2017-11-15 21:07 - 2017-11-13 07:26 - 000293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
      2017-11-15 21:07 - 2017-11-13 07:28 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
      2017-11-15 21:07 - 2017-11-13 07:29 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
      2017-11-15 21:07 - 2017-11-13 07:28 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
      2017-11-15 21:07 - 2017-11-13 07:28 - 001638200 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
      2017-11-15 21:07 - 2017-11-13 07:29 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
      2017-09-22 15:17 - 2017-09-22 15:17 - 000654072 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
      2017-09-22 15:14 - 2017-09-22 15:14 - 000202528 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
      2017-09-22 15:17 - 2017-09-22 15:17 - 000641312 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
      2017-09-22 15:16 - 2017-09-22 15:16 - 000119072 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
      2017-11-14 12:43 - 2017-11-14 12:43 - 000015064 _____ () C:\WINDOWS\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
      2017-03-20 14:24 - 2017-03-20 14:24 - 000013016 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
      2017-03-20 14:21 - 2017-03-20 14:21 - 000277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE trusted site: HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\sharepoint.com -> hxxps://inacapmailcl-files.sharepoint.com

      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2015-07-10 08:04 - 2017-08-12 14:11 - 000000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Unmot\Documents\tumblr_static_tumblr_static_dm5tmfdq1cocs8s4488kkwo40_640.jpg
      DNS Servers: 190.54.110.23 - 190.54.120.23
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{670106B7-563B-4678-988C-EDF1E5AB3C2E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{DE395B64-545A-4D14-BDFD-CC43AC95F78A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{6993E675-81D3-4370-B19E-24CDAEA7CD75}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{B2E24367-A3B6-4A18-96AC-2A31FD17F2F8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{481A549C-2D59-40A7-A31A-AD411696E74B}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
      FirewallRules: [{34903697-CF04-488A-995D-290550F9C4D8}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
      FirewallRules: [{E75F1D73-408A-4A6D-BE36-7DFEB675EBDD}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
      FirewallRules: [{D928DD1F-E806-416A-9124-51FB4F687822}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
      FirewallRules: [{52E9F59F-C3B9-4A39-B1B9-1C9412B3E959}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
      FirewallRules: [{2BC76935-8B5C-4385-A771-CD568B6AFF4F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
      FirewallRules: [{17934D04-DF9E-4F03-A6D9-E396E499BD33}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
      FirewallRules: [{A91C60C3-7252-4FB5-A2D1-2B6871A33DDA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
      FirewallRules: [{E3E8FBA8-578E-4F67-9A69-5EE628C6A00D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
      FirewallRules: [{7F267516-93A3-4B58-BD31-E3EF211A3644}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
      FirewallRules: [{C089E7CF-96DF-43A4-BC0A-2B5E1B49A235}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
      FirewallRules: [{7908CC21-F526-41AF-AC6C-A23CB35786BD}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
      FirewallRules: [{751F7F24-51E5-4778-93DF-478F5CBA9B92}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{12B49160-C7FE-4A23-AABA-F34A8BE0A57D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{77C99576-70E0-4787-9E63-899172E8281B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{3BE59F3C-9C9E-41EF-995E-831DF0864006}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

      ==================== Restore Points =========================

      18-11-2017 14:01:55 Windows Update
      23-11-2017 14:14:41 Removed Amazon Assistant
      23-11-2017 14:41:27 JRT Pre-Junkware Removal
      24-11-2017 21:37:01 Removed Foxit PhantomPDF
      26-11-2017 17:36:42 JRT Pre-Junkware Removal
      26-11-2017 17:50:40 JRT Pre-Junkware Removal

      ==================== Faulty Device Manager Devices =============

      Name:
      Description:
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

      Name:
      Description:
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (11/26/2017 09:02:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 744: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 09:02:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 732: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 09:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 860: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 09:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 880: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 06:58:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)

      Error: (11/26/2017 06:58:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: mDNSCoreReceive: mDNS_Lock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)

      Error: (11/26/2017 06:58:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-O5LT6918)
      Description: No se pudo activar la aplicación Microsoft.Windows.Photos_8wekyb3d8bbwe!App debido al error: -2147023170. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/26/2017 06:33:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 828: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 06:33:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 792: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)

      Error: (11/26/2017 06:32:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: 728: ERROR: read_msg errno 10054 (Se ha forzado la interrupción de una conexión existente por el host remoto.)


      System errors:
      =============
      Error: (11/26/2017 09:02:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/26/2017 06:30:30 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
      Description: El servidor {5B99FA76-721C-423C-ADAC-56D03C8A8007} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (11/26/2017 06:29:45 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
      Description: El servicio Optimización de entrega no respondió después de iniciar.

      Error: (11/26/2017 06:25:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio CldFlt no pudo iniciarse debido al siguiente error:
      Solicitud no compatible.

      Error: (11/26/2017 06:25:15 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
      Description: La DLL de notificación de contraseña "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" no se pudo cargar y dio el error 126. Compruebe que la ruta de acceso de la DLL de notificación definida en el registro, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, haga referencia a una ruta de acceso correcta y absoluta (<unidad>:\<ruta de acceso>\<nombre de archivo>.<ext>) y no a una ruta de acceso relativa o no válida. Si la ruta de acceso de la DLL es correcta, valide que los archivos auxiliares se encuentren en el mismo directorio, y que la cuenta del sistema tenga acceso de lectura tanto en la ruta de acceso de la DLL, como en los archivos auxiliares. Póngase en contacto con el proveedor de la DLL de notificación para obtener soporte adicional. Si desea obtener más detalles visite http://go.microsoft.com/fwlink/?LinkId=245898.

      Error: (11/26/2017 06:24:23 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
      Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio MBAMService.

      Error: (11/26/2017 06:24:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio Intel Security True Key no pudo iniciarse debido al siguiente error:
      El servicio no respondió a tiempo a la solicitud de inicio o de control.

      Error: (11/26/2017 06:24:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
      Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Intel Security True Key.

      Error: (11/26/2017 06:23:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio Intel Security True Key terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

      Error: (11/26/2017 06:23:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.


      CodeIntegrity:
      ===================================
      Date: 2017-11-26 18:28:29.452
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-11-26 18:28:29.248
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-11-26 11:25:34.362
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-11-25 14:25:08.406
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-11-25 14:25:08.192
      Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-11-24 23:21:54.001
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\$WINDOWS.~BT\NewOS\Windows\WinSxS\amd64_microsoft-windows-security-spp-extcom_31bf3856ad364e35_10.0.16299.15_none_2dc55ee6b13a1b9b\SppExtComObj.Exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 23:21:53.952
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\$WINDOWS.~BT\NewOS\Windows\WinSxS\amd64_microsoft-windows-security-spp-extcom_31bf3856ad364e35_10.0.16299.15_none_2dc55ee6b13a1b9b\SppExtComObj.Exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 23:21:53.923
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\$WINDOWS.~BT\NewOS\Windows\WinSxS\amd64_microsoft-windows-security-spp-extcom_31bf3856ad364e35_10.0.16299.15_none_2dc55ee6b13a1b9b\SppExtComObj.Exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 21:55:25.924
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\$WINDOWS.~BT\NewOS\Windows\WinSxS\wow64_microsoft-windows-utilman_31bf3856ad364e35_10.0.16299.15_none_2fea8633d6c283f7\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 21:55:25.909
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\$WINDOWS.~BT\NewOS\Windows\WinSxS\wow64_microsoft-windows-utilman_31bf3856ad364e35_10.0.16299.15_none_2fea8633d6c283f7\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


      ==================== Memory info ===========================

      Processor: Intel(R) Pentium(R) CPU N3710 @ 1.60GHz
      Percentage of memory in use: 73%
      Total physical RAM: 3994.27 MB
      Available physical RAM: 1072.74 MB
      Total Virtual: 7834.27 MB
      Available Virtual: 4357.53 MB

      ==================== Drives ================================

      Drive c: (Acer) (Fixed) (Total:465.16 GB) (Free:281.28 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 465.8 GB) (Disk ID: 240F7448)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    8. #8
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      24.352

      Re: Ventana activa de amazon assistant

      Hola

      Sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

      • Para hacerlo descarga >> DelFix en tu escritorio.
        • Doble clic para ejecutarlo.(Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
        • Marca unicamente la casilla "Create registry backup".
      • Pulsar en Run.

        Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


      A continuación inicia tu equipo desde el >> Modo Seguro de Windows con función de red.

      Si tu SO es Windows 8/8.1/10 usa el 2º MÉTODO: de esta Faq de Windows 8 (aplicable a Windows 10) >> ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.


      Con los demás programas cerrados ve a >> Inicio >> Ejecutar >> y escribe notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)

      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      () C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      HKU\S-1-5-21-2063637959-3338619981-453652926-1001\...\MountPoints2: {c43a2c65-4d7b-11e7-9bd8-54ab3a67fa07} - "F:\HiSuiteDownLoader.exe" 
      GroupPolicy: Restriction <==== ATTENTION
      SearchScopes: HKLM -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL = 
      SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://cl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
      SearchScopes: HKLM-x32 -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL = 
      SearchScopes: HKU\S-1-5-21-2063637959-3338619981-453652926-1001 -> DefaultScope {301017C1-43CD-4C64-BE14-CAC4983743B0} URL = 
      BHO: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\Windows\System32\mscoree.dll [2017-03-18] (Microsoft Corporation)
      FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
      FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
      CHR StartupUrls: Default -> "hxxp://search.ividi.org/?src=tbhp&id=84eed9ed000000000000000000000000&affilt=3","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://encrypted.google.com"
      CHR Extension: (Lone Tree) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfmkllfplegemejikoabfpjdaoncphip [2017-11-26]
      CHR Extension: (Chrome Media Router) - C:\Users\Unmot\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-22]
      R2 Amazon Assistant Service; C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe [105136 2017-10-04] ()
      S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
      S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
      S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
      2017-11-23 14:13 - 2017-11-23 14:20 - 000000000 ____D C:\Program Files (x86)\IObit
      2017-11-23 14:13 - 2017-11-23 14:13 - 000000000 ____D C:\Users\Unmot\AppData\LocalLow\IObit
      2017-11-23 14:12 - 2017-11-23 14:57 - 000000000 ____D C:\Users\Unmot\AppData\Roaming\IObit
      2017-11-23 14:12 - 2017-11-23 14:14 - 000000000 ____D C:\ProgramData\IObit
      2017-11-23 14:10 - 2017-11-23 14:12 - 015871160 _____ (IObit ) C:\Users\Unmot\Downloads\iobituninstaller.exe
      2017-11-26 18:25 - 2017-07-19 23:28 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
      2017-03-27 08:34 - 2017-03-27 08:34 - 000000000 _____ () C:\Users\Unmot\AppData\Local\{8480D214-1C3B-446B-AB9D-D3C6175E0730}
      2017-11-24 21:38 - 2015-03-16 13:12 - 005912800 _____ (Foxit Corporation) C:\Users\Unmot\AppData\Local\Temp\FoxitUpdater.exe
      ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      2017-10-04 13:06 - 2017-10-04 13:06 - 000105136 _____ () C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe 
      
      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

      Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo

      • Ejecutas Frst.exe.
      • Presionas el botón Fix y aguardas a que termine.
      • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      • Lo pegas en tu próxima respuesta.


      Pon el reporte y comenta como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.