• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    Creo que tengo un bitcoin miner :(

    ...

    1. #1
      Usuario Avatar de punkman
      Registrado
      jun 2008
      Ubicación
      Córdoba
      Mensajes
      3

      Malware Creo que tengo un bitcoin miner :(

      Estimados, disculpen la molestia... les hago una consulta, estoy teniendo problemas en mi PC, ha estado andando algo lenta y cada tanto, salta un cartel de NOD 32 , que me avisa del bloqueo de 2 páginas, de las cuales sospecho, que son de un bitcoin miner en mi PC.
      Adjunto dichas imágenes:
      https://ibb.co/kgYgsR


      https://ibb.co/fpe4CR



      Este es el log de Hijackthis v2.0.5

      Logfile of Trend Micro HijackThis v2.0.5
      Scan saved at 01:57:10 p.m., on 14/01/2018
      Platform: Windows 7 SP1 (WinNT 6.00.3505)
      MSIE: Internet Explorer v8.00 (8.00.7601.17514)


      Boot mode: Normal

      Running processes:
      F:\0001 - PROGRAMASSS\BackUp & Recorder\uBBMonitor.exe
      C:\Program Files (x86)\PC Faster\5.1.0.0\PCFTray.exe
      C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
      C:\Program Files (x86)\PC Faster\5.1.0.0\FasterNow.exe
      C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      C:\Users\SoyCristianDiaz\Desktop\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?linkid=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?linkid=255141
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?linkid=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?linkid=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL
      O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll
      O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll
      O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
      O4 - HKLM\..\Run: [Baidu PC Faster 5.1.0.0] "C:\Program Files (x86)\PC Faster\5.1.0.0\PCFTray.exe" -auto -start
      O4 - HKLM\..\Run: [Baidu PC Faster 4.0.0.0] "C:\Program Files (x86)\PC Faster\5.1.0.0\PCFTray.exe" -auto -start
      O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
      O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      O4 - Global Startup: TotalMedia BackUp & Recorder Monitor.lnk = F:\0001 - PROGRAMASSS\BackUp & Recorder\uBBMonitor.exe
      O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
      O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
      O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
      O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
      O9 - Extra button: WinToFlash Suggestor - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - (no file)
      O9 - Extra 'Tools' menuitem: WinToFlash Suggestor options - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - (no file)
      O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
      O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
      O15 - Trusted Zone: http://help.eset.com (HKLM)
      O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
      O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~2\Office12\GRA32A~1.DLL
      O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
      O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
      O23 - Service: ArcSoft Exchange Service (ADExchange) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Arp Intelligent Protection Service (AIPS) - Arcai.com - C:\Program Files (x86)\netcut\services\AIPS.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
      O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
      O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: DES2 Service for Energy Saving. (DES2 Service) - Unknown owner - C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
      O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
      O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
      O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Remote Connections Service (FlexService) - BitMicro Software Corporation - C:\Program Files (x86)\RapidBIT\cisvc.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Windows Conectividad Gramblr. (gramblrclient) - Unknown owner - C:\Program Files\Gramblr\gramblr.exe
      O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
      O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Baidu PC Faster Service 5.1.0.0 (PCFasterSvc_{PCFaster_5.1.0.0}) - Baidu, Inc. - C:\Program Files (x86)\PC Faster\5.1.0.0\PCFasterSvc.exe
      O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\WindowsMobile\rapimgr.dll,-104 (RapiMgr) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: RemoteServerWin - Unified Intents AB - C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
      O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
      O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
      O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
      O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
      O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
      O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: Post Restricted Access (tuquzini) - Unknown owner - C:\Users\SoyCristianDiaz\AppData\Roaming\VOPackage\nsb4F70.tmpfs (file missing)
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\WindowsMobile\wcescomm.dll,-40079 (WcesComm) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 26542 bytes




      y Este es el log de COMBO FIX

      ComboFix 17-12-11.01 - USER 15/12/2017 0:24.1.4 - x64 MINIMAL
      Microsoft Windows 7 Ultimate 6.1.7601.1.1252.54.1033.18.24559.22662 [GMT -3:00]
      Running from: c:\users\USER\Desktop\BRUSHES PHOTOSHOP\ComboFix.exe
      AV: ESET NOD32 Antivirus *Disabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
      SP: ESET NOD32 Antivirus *Disabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
      SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      * Created a new restore point
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      c:\program files (x86)\sXe Injected
      c:\program files (x86)\sXe Injected\ddsxei.sys
      c:\program files (x86)\sXe Injected\Injected.exe
      c:\program files (x86)\sXe Injected\Injected.txt
      c:\program files (x86)\sXe Injected\sXe-I EULA.txt
      c:\program files (x86)\sXe Injected\sXe.dll
      c:\program files (x86)\sXe Injected\sXeInjectedSetup.14.2.exe
      c:\program files (x86)\sXe Injected\sXeInjectedSetup.15.2.Fix.2.exe
      c:\program files (x86)\sXe Injected\sXeInjectedSetup.15.3.Fix.5.exe
      c:\program files (x86)\sXe Injected\uninstall.exe
      c:\program files (x86)\sXe Injected\uninstall.ini
      c:\programdata\ntuser.pol
      c:\users\SoyCristianDiaz\AppData\Roaming\vso_ts_preview.xml
      c:\windows\msvcr71.dll
      c:\windows\wininit.ini
      c:\windows\XSxS
      F:\install.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2017-11-15 to 2017-12-15 )))))))))))))))))))))))))))))))
      .
      .
      2017-12-15 03:31 . 2017-12-15 03:31 -------- d-----w- c:\users\Default\AppData\Local\temp
      2017-12-11 17:27 . 2017-12-11 17:59 253880 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
      2017-12-09 18:31 . 2017-11-29 12:11 77432 ----a-w- c:\windows\system32\drivers\mbae64.sys
      2017-12-09 18:31 . 2017-12-09 18:31 -------- d-----w- c:\program files\Malwarebytes
      2017-12-08 08:50 . 2017-11-18 00:30 13899592 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A46C299C-9DED-4A6F-84AE-EDECC836A12C}\mpengine.dll
      2017-12-02 00:45 . 2008-08-18 22:18 77824 ----a-w- c:\windows\SysWow64\fmcodec.DLL
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2017-12-15 02:00 . 2012-02-06 02:42 25640 ----a-w- c:\windows\gdrv.sys
      2017-11-25 18:31 . 2013-01-07 06:04 803328 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2017-11-25 18:31 . 2013-01-07 06:04 144896 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      .
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "Baidu PC Faster 5.1.0.0"="c:\program files (x86)\PC Faster\5.1.0.0\PCFTray.exe" [2015-05-13 2333152]
      "Baidu PC Faster 4.0.0.0"="c:\program files (x86)\PC Faster\5.1.0.0\PCFTray.exe" [2015-05-13 2333152]
      .
      c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
      TotalMedia BackUp & Recorder Monitor.lnk - f:\0001 - programasss\BackUp & Recorder\uBBMonitor.exe [2014-5-9 286720]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
      @="Service"
      .
      R1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
      R1 archlp;archlp;SysWOW64\drivers\archlp.sys;SysWOW64\drivers\archlp.sys [x]
      R1 ArcSec;ArcSec;c:\windows\system32\drivers\ArcSec.sys;c:\windows\SYSNATIVE\drivers\ArcSec.sys [x]
      R1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
      R1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
      R1 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
      R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
      R2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
      R2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [x]
      R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [x]
      R2 FlexService;Remote Connections Service;c:\program files (x86)\RapidBIT\cisvc.exe;c:\program files (x86)\RapidBIT\cisvc.exe [x]
      R2 gramblrclient;Windows Conectividad Gramblr.;c:\program files\Gramblr\gramblr.exe;c:\program files\Gramblr\gramblr.exe [x]
      R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
      R2 NvContainerLocalSystem;NVIDIA LocalSystem Container;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
      R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
      R2 NvTelemetryContainer;NVIDIA Telemetry Container;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
      R2 Origin Web Helper Service;Origin Web Helper Service;c:\program files (x86)\Origin\OriginWebHelperService.exe;c:\program files (x86)\Origin\OriginWebHelperService.exe [x]
      R2 PCFasterSvc_{PCFaster_5.1.0.0};Baidu PC Faster Service 5.1.0.0;c:\program files (x86)\PC Faster\5.1.0.0\PCFasterSvc.exe;c:\program files (x86)\PC Faster\5.1.0.0\PCFasterSvc.exe [x]
      R2 RemoteServerWin;RemoteServerWin;c:\program files (x86)\Unified Remote 3\RemoteServerWin.exe;c:\program files (x86)\Unified Remote 3\RemoteServerWin.exe [x]
      R2 Sentinel64;Sentinel64;c:\windows\System32\Drivers\Sentinel64.sys;c:\windows\SYSNATIVE\Drivers\Sentinel64.sys [x]
      R2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [x]
      R3 3xHybr64;Philips SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybr64.sys;c:\windows\SYSNATIVE\DRIVERS\3xHybr64.sys [x]
      R3 ADExchange;ArcSoft Exchange Service;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [x]
      R3 AIPS;Arp Intelligent Protection Service;c:\program files (x86)\netcut\services\AIPS.exe;c:\program files (x86)\netcut\services\AIPS.exe [x]
      R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
      R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
      R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
      R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
      R3 etdrv;etdrv;c:\windows\etdrv.sys;c:\windows\etdrv.sys [x]
      R3 ggflt;SOMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
      R3 ggsomc;SOMC USB Flash Driver;c:\windows\system32\DRIVERS\ggsomc.sys;c:\windows\SYSNATIVE\DRIVERS\ggsomc.sys [x]
      R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
      R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
      R3 LVUVC64;Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
      R3 MAUSBFASTTRACKULTRA;Service for M-Audio Fast Track Ultra;c:\windows\system32\DRIVERS\MAudioFastTrackUltra.sys;c:\windows\SYSNATIVE\DRIVERS\MAudioFastTrackUltra.sys [x]
      R3 MAUSBJAMLAB;Service for M-Audio JamLab;c:\windows\system32\DRIVERS\MAudioJamLab.sys;c:\windows\SYSNATIVE\DRIVERS\MAudioJamLab.sys [x]
      R3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys;c:\windows\SYSNATIVE\Drivers\nx6000.sys [x]
      R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsucx64.sys [x]
      R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
      R3 NvContainerNetworkService;NVIDIA NetworkService Container;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe;c:\program files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
      R3 NvStreamKms;NVIDIA KMS;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
      R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
      R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
      R3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS;c:\windows\SYSNATIVE\DRIVERS\PFC027.SYS [x]
      R3 PCFApiUtil;PCFApiUtil;c:\program files (x86)\PC Faster\5.1.0.0\PCFApiUtil64.sys;c:\program files (x86)\PC Faster\5.1.0.0\PCFApiUtil64.sys [x]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
      R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
      R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
      R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
      R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
      R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x]
      R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
      R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
      R3 tsusbhub;tsusbhub;tsusbhub [x]
      S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
      S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
      S1 BprotectEx;Baidu ProtectEx;c:\windows\System32\drivers\BprotectEx.sys;c:\windows\SYSNATIVE\drivers\BprotectEx.sys [x]
      S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
      S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
      S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
      S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
      S3 nvvhci;NVVHCI Enumerator Service;c:\windows\system32\DRIVERS\nvvhci.sys;c:\windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
      2010-11-05 01:57 444752 ----a-w- c:\windows\System32\mscoree.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-02-11 11776104]
      "IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-30 171992]
      "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-30 399832]
      "Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-30 442328]
      "ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2017-07-26 1922496]
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      mLocal Page = c:\windows\system32\blank.htm
      uInternet Settings,ProxyOverride = *.local
      IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
      Trusted Zone: eset.com\help
      TCP: DhcpNameServer = 200.42.4.204 200.49.130.44
      .
      - - - - ORPHANS REMOVED - - - -
      .
      SafeBoot-MBAMSwissArmy
      HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - c:\program files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe
      ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
      AddRemove-Injected Anti-cheat - c:\program files (x86)\sXe Injected\uninstall.exe
      AddRemove-sXe Injected - c:\program files (x86)\sXe Injected\uninstall.exe
      .
      .
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\tuquzini]
      "ImagePath"="c:\users\SoyCristianDiaz\AppData\Roaming\VOPackage\nsb4F70.tmpfs"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------

      .
      [HKEY_USERS\S-1-5-21-1304566161-127138627-1525239295-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Èìju]
      @Class="Shell"
      @Allowed: (Read) (RestrictedCode)
      .
      [HKEY_USERS\S-1-5-21-1304566161-127138627-1525239295-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Èìju\OpenWithList]
      @Class="Shell"
      "a"="vlc.exe"
      "MRUList"="a"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
      "Version"=hex:a8,fe,a9,08,f7,e9,05,b4,ab,a8,61,6a,90,48,fd,06,81,d6,6d,8e,50,
      01,ee,db,d4,ee,9f,fb,c9,68,59,fb,44,32,be,43,50,a4,15,1c,bc,0c,1b,2b,b2,9a,\
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
      "Version"=hex:a8,fe,a9,08,f7,e9,05,b4,ab,a8,61,6a,90,48,fd,06,81,d6,6d,8e,50,
      01,ee,db,d4,ee,9f,fb,c9,68,59,fb,44,32,be,43,50,a4,15,1c,bc,0c,1b,2b,b2,9a,\
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
      "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
      00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0011\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0012\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0013\AllUserSettings]
      @Denied: (A) (Users)
      @Denied: (A) (Everyone)
      @Allowed: (B 1 2 3 4 5) (S-1-5-20)
      "BlindDial"=dword:00000000
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      Completion time: 2017-12-15 00:32:41
      ComboFix-quarantined-files.txt 2017-12-15 03:32
      .
      Pre-Run: 11.604.701.184 bytes free
      Post-Run: 11.604.721.664 bytes libres
      .
      - - End Of File - - F79B2724C489051A69BAB8C0FC59D7BA
      A36C5E4F47E84449FF07ED3517B43A31


      Desde ya, muchísimas gracias por la ayuda!
      Saludos!

    2. #2
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Creo que tengo un bitcoin miner :(

      Hola punkman

      No debiste utilizar ComboFix sin que te lo hubieran indicado, has podido dañar tu equipo de echo lo tendrías que haber descargado y ejecutado desde el escritorio sin que estuviera dentro de ninguna carpeta



      Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

      1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

      • Realiza un Análisis Completo, actualizando si te lo pide.
      • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
      • En el apartado del manual "Historial" >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.



      2) Descargar Junkware Removal Tool

      • Desactiva temporalmente el Antivirus
      • Ejecuta JRT.exe, (en Windows 7 u 8 ejecutar como "Administrador")
      • Presiona cualquier tecla para continuar y espera pacientemente a que termine su proceso.
      • Al finalizar, un registro (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
      • Copia y pega el contenido de JRT.txt en tu próximo mensaje de respuesta



      3) Descarga >> AdwCleaner | InfoSpyware en el escritorio.

      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Cierra también todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botónLimpiar.
      • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistemaAceptas.
      • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
      • El informe también se puede encontrar en "C:\AdwCleaner\AdwCleaner[C0].txt"



      4) Descarga CCleaner

      • Instala Ccleaner
      • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador
      • clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad
      • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.


      Pega los reportes de Malwarebytes, AdwCleaner y JRT y comentas como va el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de punkman
      Registrado
      jun 2008
      Ubicación
      Córdoba
      Mensajes
      3

      Re: Creo que tengo un bitcoin miner :(

      @daniela
      Muchas gracias por tu respuesta, al parecer me he salvado jajaja al pasarle el Combo fix, lo único que perdí (creo) fue el archivo host que tenía modificado para correr algunos programas (de los cuales perdí la activación claro), por suerte tenía a mano un backup up del mismo, por lo que pide reactivar todo
      Llego a casa, sigo los pasos y coloco los detalles acá!, Muchas gracias!

    4. #4
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Creo que tengo un bitcoin miner :(

      Hola

      De acuerdo, cuando puedas lo realizas

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de punkman
      Registrado
      jun 2008
      Ubicación
      Córdoba
      Mensajes
      3

      Re: Creo que tengo un bitcoin miner :(

      Acá van los Log's!

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 14/1/18
      Hora del análisis: 21:13
      Archivo de registro: f42feb70-f988-11e7-8625-50e54940836e.json
      Administrador: Sí

      -Información del software-
      Versión: 3.3.1.2183
      Versión de los componentes: 1.0.262
      Versión del paquete de actualización: 1.0.3695
      Licencia: Gratis

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: USER

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 313546
      Amenazas detectadas: 0
      (No hay elementos maliciosos detectados)
      Amenazas en cuarentena: 0
      (No hay elementos maliciosos detectados)
      Tiempo transcurrido: 7 min, 34 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 0
      (No hay elementos maliciosos detectados)

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

      AdwCleaner
      # AdwCleaner 7.0.6.0 - Logfile created on Mon Jan 15 01:00:48 2018
      # Updated on 2017/21/12 by Malwarebytes
      # Database: 01-11-2018.1
      # Running on Windows 7 Ultimate (X64)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services found.

      ***** [ Folders ] *****

      PUP.Optional.Legacy, C:\Windows\System32\config\systemprofile\AppData\Local\YSearchUtil
      PUP.Optional.Legacy, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
      PUP.Optional.Legacy, C:\ProgramData\pc faster
      PUP.Optional.Legacy, C:\ProgramData\Application Data\pc faster
      PUP.Optional.Legacy, C:\Program Files (x86)\pc faster
      PUP.Optional.Legacy, C:\Users\All Users\pc faster
      PUP.Optional.Legacy, C:\Users\All Users\Documents\pc faster
      PUP.Optional.Legacy, C:\Users\Public\Documents\pc faster
      PUP.Optional.Legacy, C:\Users\USER\AppData\Roaming\pc faster


      ***** [ Files ] *****

      PUP.Optional.OutBrowse, C:\Windows\SysNative\drivers\wcmvcam64.sys


      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{7CDE5781-A7D1-47D7-A43E-25C6F77B13A0}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{4369B852-E210-47AF-8C85-B930197EDE53}C:\users\USER\appdata\local\popcorn time\node-webkit\popcorn time.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{F1F00907-0E16-4139-AD9F-9A26FFE9C8F7}C:\users\USER\appdata\local\popcorn time\nw.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{CC3B6C14-B70D-46CF-B286-42EEF7325E40}C:\users\USER\appdata\local\popcorn time\nw.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{0F50EB71-C4EF-437D-B9E2-8F0515C99810}C:\users\USER\appdata\local\popcorn time\nw.exe
      PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{E3F6FDBB-4332-4756-A4D6-B9B80E028EA4}C:\users\USER\appdata\local\popcorn time\nw.exe
      PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MaxPower
      PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
      PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{43769158-3B03-4932-8D8A-8F0F344BF024}
      PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A89A7E3-6ADD-4EF9-8EE7-A3C3B7D83BB0}
      PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
      PUP.Optional.Conduit, [Key] - HKU\S-1-5-21-1304566161-127138627-1525239295-1000\Software\Conduit
      PUP.Optional.Conduit, [Key] - HKCU\Software\Conduit
      PUP.Optional.WinRepairPro, [Key] - HKU\S-1-5-21-1304566161-127138627-1525239295-1000\Software\win
      PUP.Optional.WinRepairPro, [Key] - HKCU\Software\win
      PUP.Optional.WeatherTool, [Key] - HKLM\SOFTWARE\DtsEncodeTools


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries.

      *************************

      C:/AdwCleaner/AdwCleaner[S0].txt - [9830 B] - [2015/2/10 176]
      C:/AdwCleaner/AdwCleaner[S1].txt - [1949 B] - [2015/2/13 21:52:18]


      ########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########


      JRT


      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 7 Ultimate x64
      Ran by USER (Administrator) on 14/01/2018 at 21:42:36,61
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 443

      Failed to delete: C:\Program Files (x86)\pc faster (Folder)
      Successfully deleted: C:\ProgramData\duplicaterecord.js (File)
      Successfully deleted: C:\ProgramData\mntemp (File)
      Successfully deleted: C:\ProgramData\pc faster (Folder)
      Successfully deleted: C:\users\Public\Documents\pc faster (Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0063BDF1-E647-4D5E-8345-4935782C9CB2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0086585E-2DDA-4179-9A5F-AF012854EF56} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{027F4C7B-E581-44EF-9435-D1E452256443} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{036FA638-3C82-47B9-B261-E5B6145E50BC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{039C7B55-6C23-4C02-9C44-C77FF4D5D05A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0444AF52-49D9-4E3B-A4B6-EE2AC46CCF3F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{04C86EB0-BB48-4C18-AF3D-4BF621E85F73} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{04DC7615-F851-434E-8DF4-1C2BD27B7A1E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{06184D40-C426-4226-93B0-0FD397B7E319} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0645A556-16BB-4A59-9852-EC53A2D87752} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0651787C-EF59-45EA-98C8-B636A8088F47} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{06F94E92-650A-4E7F-A686-36F58A0CA644} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{09B51509-376C-4B6B-A327-81E68A7E5CAC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0A3F2099-BEB0-42FC-966A-ABE720F9A007} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0B097504-1FDC-4BFB-9E3C-118BE173054F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0B1C9F35-B3A5-4BF4-949D-F15A32475E7B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0B465194-42BE-47F6-BE49-0408E8C3D25C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0CD61A11-750A-42DD-B70E-4A260D6F70C5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0D362216-0692-482A-9F43-3AE765CC55A1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0D7A8A52-A964-4A74-A0EA-5B0E63BD06C5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0E698555-3A3B-46BA-8A91-2B3E06E96BB2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0F971C32-430D-4A1A-97ED-F0AC8BAFBC6E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{0FA871E9-4AE7-41CE-AA79-7A3B45E20124} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1075B649-A760-4566-881B-796CDE1F3327} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{12257C85-997F-40C9-8021-1C2E0132240E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{12800DAA-3D39-45E1-AD7C-0771C31D87FF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1281475D-2D51-4056-AEF0-DF4F40E3137F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1428528D-5514-4DCC-BB87-BF32BE40DE28} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{14669894-8026-4F7C-A7AB-93F807E08C30} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{148D057D-FCB1-414D-86AC-ABBD08739151} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{14E9297D-3225-4E37-861D-1F1CEA090ADE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{15177EE5-620C-4C3F-BF0E-CD7DA041E2F3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1567D3A2-E0B2-41C8-86DF-95A14636B77A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1581E5ED-472B-4E56-AF49-31C33447D511} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{15ACAACB-4504-4021-9DCE-3818A620B6FE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{15E6CDC3-08C6-47CB-A01C-1B18CF2E65C1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1609766F-4EE6-4561-8F78-1090AF63DA42} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{16763DE8-6ED0-4FEE-AFB5-AE91A37BEF51} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1750EC00-B010-4AAC-BC55-BFE1318E1362} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{17C0791B-DE1D-455D-A7D7-C1193063488F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{182A14AA-D96E-4BCB-9E2C-17B25A1A38EF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{18955E66-001D-4D73-B04C-388CB41B053E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{18A89EE0-8031-495D-A4B7-FAAB78973685} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1946CA7C-9D8B-47FF-A0AE-4AF188E75631} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{19A6200E-2FCE-4598-AA10-9757D01E47C3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1A1A905D-DCAD-448D-9F67-DE868BBD5C32} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1AB3D790-F898-41A0-9D0B-806B342541C5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1B0B4BED-4F7D-4FBD-885D-33DD3B9AC5F6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1B69B67B-FD7E-47BD-B244-957463EB4786} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1BE88186-3816-4D2B-8AC2-ABD1FA26829B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1C90C17B-9641-41AD-B27C-48F8054BDC51} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1DE0C8B1-B143-4ED9-9B59-943C31A78EEF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1E414DCC-4E9F-4D20-AB09-7932BA19803B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{1F0DB107-428E-43BD-A7B8-26353BDF545D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{205A2476-9701-4F24-A952-5CCF4B7CA743} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2198CC05-9F4B-4550-BAE7-4348243D7A34} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{223AC163-D4F5-47B4-A212-4AFC862D4124} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{225AC308-8A31-4A74-AE53-F5ADF27B9DB9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{25A77748-840D-4D13-813A-52032A854ACD} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{25B28BBD-3D68-41B8-AEAB-5CDB789E44B0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{25CECF6E-1FAF-4FA4-92DB-5468109BC471} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{267BC1D8-DAB8-4F64-BF37-CDCE62F7E029} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{26E36C0B-21B2-415A-B2CC-943873BA8016} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{273ACB8E-40D9-4350-95D2-1FCAC7374B9A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2793CCF0-F3F3-494B-AA00-3823958189A1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{27E8E9E2-9647-4620-BD20-BD6BB94ACDB0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{27F6A419-710E-4F01-BABB-0E4BFA936529} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{28C55D13-4D37-427D-8355-236B4E686671} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{290EE6C3-950B-44D1-9FA5-B5D04C6D3398} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2980C9B1-F7C7-4269-9F10-97645D184022} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{29B163D3-CC9B-4FC4-B15A-BFC1D71CB396} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2AA1AE4C-0BCC-466E-A8CB-DAC12C57FBD9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2AC217D3-91F7-4BE0-B616-1638AD795235} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2B59A47A-3393-4D08-A849-6C87397E55CE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2B9C1273-D62E-4763-89BE-F04F96C4A981} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2BE29F68-B945-414C-95F3-EDC4FED2BD63} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2C0F6290-2EB4-4719-B14B-203BCF2E52B6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2C52CE2F-D991-4270-AEF4-AE22DC33FA9A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2C58B8D5-8857-40CC-BFBE-72272DF2FAD6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2C94F78E-E579-498A-9FA0-0CA5E1D7A5F6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2D100E3B-87B5-42DC-8E46-EF9425A86904} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2D5F1D05-5EB0-484E-BCDE-6F593CC52201} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2D7CA064-A1FD-4592-951F-145204042C55} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2E789A1A-2D96-4258-BD4E-5D62EF570B38} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2E8A41F0-5527-420D-9D83-8D31C5B6CDEB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2F81A91A-779D-4442-9FDE-9C4993884096} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{2FD4A326-4CB9-4130-921B-EBEE459BCDF5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{30747C67-892E-482A-AD46-BFA28A7D2F90} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{31BFEE78-4725-4002-96D6-C28520B03BF5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3203321E-E201-4A50-9125-F41D1FA195D1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3203609F-4435-44CC-B27B-2598C3BF2367} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{33E440B5-AF2D-4DCC-8045-F96BA41BFA7A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{34CFB253-87B6-46FB-A9E3-59778A7A5B4E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{35254663-F50A-494D-8E3B-ECF9CF1EF8FF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{356A9992-F804-4D7F-9B2E-46570C0B73C9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{367B1B37-7C6A-44A3-B2B9-FFF873F84E10} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{36B68924-FF0A-451C-80FA-162BD10C98B5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{37066225-4C21-4FA6-927A-44868CDB12DE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3754824C-FDDD-46B5-BAC4-DEE80719795A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{37A486D8-BCF8-48D7-8436-4276F0AA4D8D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{38730635-22E8-4689-B334-4061FD1111B2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3906592A-C275-4FA5-91E4-15C156343928} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{39B6B84C-8FCC-4451-8CE8-0C81C45D8778} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{39BF3750-E0BF-4214-B26D-B16232C91A91} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{39C8BC0C-D6A1-467C-BCCF-CDBB01CFC665} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3B5823C4-B373-4690-8E42-06D3CED448E1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3BDFBE44-134B-4BDD-81A5-1F0A0301F9DA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3BE1349B-BB75-4B83-A8FE-B38C20B61AF9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3C0D182A-5B08-4E19-8892-2E68392EDDD6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3CF56DC2-3579-4342-BC1C-95B9DB8226D2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{3DAE671C-AEED-43D9-965C-AF1A1F2ABAE3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{407BF867-C27D-4F14-B2AD-6B2C237D72DE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{40CF5F5B-D698-4C71-8A1B-2B11AE577E2E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4147816A-9E71-48BB-8561-AF8AEE794A64} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4221C0D4-C082-4ED6-B885-9A09B8E30250} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{43562104-9C65-4644-9F18-A54232DA0E1D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{439100A0-5E98-4647-A994-94F44242C8FB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{43A94EFF-82CE-45C2-9254-F8156A4B6E3C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{43C2E599-3DB5-4C1B-9EBF-D43D80C4B539} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4521761A-727F-47C8-9664-2D40BE27F03F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{453B1016-5619-4D4D-B44D-F99CDBB6CE75} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{455ACD3D-4B90-4E78-B794-877A19CBC48B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{45DDF58B-E5CE-4808-9041-755237959846} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{461EC297-BC01-4883-ABD8-64E15ECF4979} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{466AE4EA-87AD-4B95-A203-C84577943B6F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{46727AFF-3EBB-43DC-9383-5DD4B073C8FD} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{471F5753-8AA8-427D-A7CD-F57AEB0FA8F1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{48447C83-010F-4836-A30A-9C000F565E35} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{490592D7-5B90-4A83-8CDC-003AFC75D10D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4A470674-D41A-4895-A0CF-BF9C4868B4B4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4AE48A16-0765-4BA9-B867-251FC09EFE99} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4BFCA175-3B29-4C33-A4C0-EE4B11393B49} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4DA90BC9-CDDD-4DB3-94EA-91A3EC1B8920} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4EA3B2CA-AE55-406F-9EE6-D0FB172D7D26} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4F6CF554-85CE-448A-89F0-8805735B370C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{4FEC3BB6-431F-4C7C-9DBE-7555DC7D5F29} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{508B406D-E810-4814-8760-57D4D2347E4B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{52A661F7-80D7-447E-886C-F1C6A71EEFAB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{53A0FC69-30C5-4492-A025-A6DB7472A6B4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{553D2406-5081-45D6-807B-432B3D938030} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5563ED2E-F1B6-472B-AB26-7CB76443E7A9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{571F7820-475C-4EA0-80D6-7C1D8E6166AD} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{57CCE465-49ED-44F8-AAC1-B13E7DE739E6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5833D034-8CCD-44CD-80C5-B8204CF429E7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{58683512-DFCB-4FDC-8F9D-A9E65AF6ED54} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5A416B46-D1FC-42AD-AAF3-B0B393CD9E9F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5A523F59-7E38-46BE-B4B8-A3ABFB786432} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5A86F36E-FDFB-46B5-B1F3-2B0F7AA717BB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5ABEB9F1-D3E6-4D07-B7D8-94F334834AC2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5B0184B8-0E46-44E3-BA3F-27C74580B7E2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5B869FC2-C29E-463B-BF1C-80B24FF649D4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5BC0C432-671B-4FB4-86C6-BEF6E6ED8A1F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5BC30966-D79F-4D94-A171-563F6D2C592D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5D15645D-782E-49A7-8232-4DA48EF030B0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5DE98569-5A0B-44CD-A516-D95EC8FFD540} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{5EF659B4-6ACC-44F0-93E8-4FAF6E118A9F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6002E936-277A-4958-B48B-BB69ABE79DCB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{60A8531A-4C60-4B55-A4E6-E8B3957808AC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{61437B1C-8752-4334-99FF-7D11DFB30AAA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{626B10FF-6198-4E2D-895C-7DEBE741C7C6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{62F7993D-979A-4151-9CFA-7EAEA265EFBA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{63507216-0683-413D-898A-2ACB5096ADD0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{65068798-F153-439E-ACF0-113336B1151E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6657F05F-955F-478B-B9A6-4D7A2E12C010} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{66CB1584-91B4-4E69-98B3-F37399562AB4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6817E296-7362-4B30-BC87-8B4E90D1CB46} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{693D4791-B301-4260-A009-059F9DE4AEFE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{699B89C4-0C06-4D49-A413-32C6EACF502B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{69EBE97B-887E-40FD-BD99-D7AB57E79F93} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6A5D187E-F0FF-4F11-ACD2-F6F80CE17306} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6A7956D1-AA9A-40C2-AA41-47FD692FC7EB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6C5097E9-F752-4C06-8533-603F61E09551} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6CB8D9A2-5D42-4D84-A919-E3F9B1FCC2D4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6CFA4F66-6E5F-4C20-9863-334FD6E550C4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6D2C0699-29FE-4885-9CCC-8907E46E95EC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6D9752BD-4E1E-4C19-B29D-9968C60C92FE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6D9F7656-38E2-482E-9BA0-1E2B658CEF0E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6DDCC995-4319-4CAF-8B88-34D1CD696153} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6E925B14-07DA-4265-BF8D-C6E538B2C749} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6F41D3D7-3569-4033-8CE3-043E86F5FF55} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{6FF01CD0-4FDB-4ED3-B80B-B80CA16DA5B3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7002D89F-754B-4F0F-9AFD-088DBEC4B394} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{701CEE38-C9F9-437A-ADD1-FAA774478AA1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7040DE81-C260-4104-9164-E4C863F27AFE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{70BA2514-0782-40D0-B511-CFBC2D8C68A6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7214E95F-51AE-4B5F-8D0F-CD9EF65FAD15} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{731F6514-8B6F-49CC-AD15-C8F961C71C9B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{73D6AD82-2AF8-4451-BE41-164AA5BE71FA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7463555A-92CF-44AC-A0D7-45D944B07EBC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7494E840-6920-4B01-8497-28D12C88BC85} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{74C0DA5D-86E2-4864-9C2D-322609495D76} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7609D017-B63C-45AD-AD10-EBF14F3F40FF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{76A2ED78-01FD-4D3E-86D2-67987D42A18F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{776FCE87-117F-4769-BE11-D7C7B28D7C6B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{779EDC23-DDAA-4703-B1F8-3DB46A86E691} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7822C4F0-690F-4171-890A-B6C0AA7B5E0C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{783E82A5-0DE4-4E16-99A7-E3C2A7C4EF2F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{789822D7-5710-486B-8471-14CC66209CE3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{78E2ED76-1AAF-40E4-8B07-74BE8C1C15A1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{790F9B16-1A3C-4654-B552-989C18B29038} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{79209C0B-0402-4C5E-A689-D9A2341DE66E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7B4D5113-E8B3-4C48-A059-AA0C7BE86149} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7BAAC538-43DA-41B0-A94A-04E388512DB5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{7E32712A-4817-4CEE-9C9D-AF135ED5AF37} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8002DA31-5688-424B-942A-515928AEDAFD} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{80F2D7E0-CE74-4883-96DE-6A4748F19B02} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{80FFA58B-AE55-4F3C-892F-36CF7A433270} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{81CF2A81-3546-41FA-901E-92112DF4341E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82454E56-C1EE-4C79-B9E5-7AC6148F35EA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82462884-31D0-4237-9211-EEC8C590EB62} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82679751-06B4-4C02-8E77-A2DEF4558CFB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8280A85D-D85D-4C55-995E-E364A163D6A2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82B90696-DF5C-463A-9DAB-CFDC7EF40FA3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82E17B99-880A-4E3D-8C20-CB327E5E2CCC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{82F0BF09-B7BB-4BA1-995F-CB79530B9EAB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8306A29B-E412-42FE-8DE9-57618374F468} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{83350172-6B4F-45A8-8BAA-3523A2919D3A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{836BEDF3-F93B-4D69-973E-7E5C2283BCE2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8372EAE6-87D1-40BA-A0B6-6B5DA042F19B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{83D8675F-8E76-4F84-9311-7231599A8907} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{84258E07-F799-49BB-B6E3-22AF2E22C4DF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{84DF470F-9C42-44F7-9E37-67252F6ECD91} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{85DD1E1E-6904-447D-82FA-9C77DB995D42} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{85DF65E7-9485-4884-8DC5-BDAECB4C684E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{85FAD7E8-61E9-413E-B156-C0EEFA6C361C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{85FD29A6-1EA0-4EF1-AFF5-B86290788F7E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{86DEDBAC-C172-44AF-8B32-57BB538132CE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{872DBD1C-8C7B-4C3A-89C0-0FB95524A02B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8772BED8-64E3-4499-A325-83000F2D45EE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8856E5A1-F01E-4357-8382-F7244392F829} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{88720D89-E86E-4E40-9E75-D8CDC9577611} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{88E55CF4-A7B3-47DE-8123-584484D922B1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8A351465-F8A7-4DFC-A630-D1C9C17B933F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8A440BF8-7CBD-4CC5-AE24-37DFFD6869E3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8AF373B1-5CA4-48D0-A6E8-5C6513189D10} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8B0BE2F9-D26E-4402-8787-4892B1F8151D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8BB1AAC7-370A-4F98-AA46-F2775827F071} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8CC0931D-3957-462F-B65A-319B88298FBB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8DE05E28-00DE-4EF9-A27B-210A07753999} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8DFDC336-1DB6-42C2-8F72-1E68113142D7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8EE2EBB8-87BE-4F37-B326-E9F239BF978B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8F1B9303-47BE-48AB-A910-663C69870478} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8F1F66E5-6F2B-4097-BAFD-3AE91018A6BF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8F45BEE8-1E9D-4BE6-BFA3-36953EFDEAD8} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{8F794339-92BD-4C08-B1C0-3F4DCF5E0D94} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{906C51D9-F408-4AA2-A7A5-70B2233C7099} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{92184CB2-0D6A-40F7-B644-6CF99A51CCB4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9237BD10-8DCE-4079-BD66-C716257B73FE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{926633DE-334A-43FB-B764-CFFE8909F119} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{93AC47C2-B158-4A96-BCD5-316065E06502} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{93B94142-564B-47FF-824C-82885D1DBF3F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{945F027E-5ECB-4BF3-9EB6-87C0756AB6DE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{94BDA856-1269-4C2D-BF54-6DC59FFAAEB1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{952F9A20-FECD-4608-95F9-E41ED8F9B61B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{975D3678-A06F-457E-88FE-935255FF7155} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{99161C03-E517-43E8-81F6-BE73BE08D7E6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{993C47F2-32BE-4F07-8F42-AB1775D88616} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9A2355C5-E61D-4A9A-97C6-E46677134644} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9A3B84C6-2E6B-444C-A7D2-7E7395EF661E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9A4CC010-5215-4ACE-A9CC-6D5731D6AB9C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9AA3269F-159E-47C0-A046-5CE254CA2DCA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9AE4E34F-CBAD-4D4C-970F-9EB55C752885} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9C8DEEC5-E945-4943-8E9F-F6C9EF28CEDF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9CAE38BE-CC2D-4CAE-8627-5C8F0E96CB9A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9DDCA3F9-52AE-468B-8CC2-126FF9AC7739} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9E2294E2-A472-44B0-B9E7-EEB8456234F0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{9FEB2C99-F2C6-4069-95AA-4DC764D79134} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A07C5BFA-8EDB-447C-9C5F-25E1D5B03A46} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A26825E3-C6AC-45B7-A81C-82E8A3E0A07A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A27AEFA0-E375-4A53-9793-FE9F12BA7B84} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A2A7F66B-C465-4AAC-AA07-EF6DB0FB06C1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A3385CC5-4045-4BC5-8FEE-084CBE01663C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A3EAA6B2-CEA8-4469-9052-36487BACCB72} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A48873B5-E0D1-4FA3-93AE-C67A33E9928B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A51567F6-5E95-46D0-AF9B-B1CFAB0C604A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A5508397-E86C-4AE9-A294-AD4E31BC2398} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A6699F8C-3EC3-4DCB-8DBE-93A31A8640E8} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A7F126EA-F424-484E-AE8E-72315069F425} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A896873F-E847-4365-8036-A8884C3D7727} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{A995E34E-8CF3-41E1-8280-37DA4DFA9049} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AA273D7D-D98D-4E0D-A023-9B24A4EC82E4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AA46D39A-F2DD-4084-BCF1-F6139DD49907} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AB36EE3C-C9B3-46DE-9B20-379089C60F7F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{ABA5C324-0231-46E7-9192-E3925F2B2EA7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{ABE1939D-A5ED-4CAA-899D-261336153C57} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AC714FEF-3BCB-4A49-B6C9-A4356D47068C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AD994E37-A610-4353-84C1-E5966B56E8EF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{AEBEA49C-F611-48C2-958E-07D88F895586} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B08CBE3F-832F-49C7-94B6-1C2446478C6A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B08DCC09-58C2-414F-9B3C-3407C082D6E2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B0910939-7FAD-4306-886D-2C436BCF275C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B0DCB7D5-FB52-49E7-B0C6-0EBE57550EA3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B14364ED-E31B-4611-A43C-9557E01D906A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B1AD39C8-4A2E-4AC9-BB4E-0726DCDD67B3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B289243F-4A64-43A7-AC88-F924B4FEDD58} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B2C5DEDE-CD74-4339-96CC-DE31464313F4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B438EE45-4EDE-49C9-B8B6-DE489F55097B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B579C525-52D2-439C-A4C9-D4E7819F60AE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B58A39A7-33D7-4FCC-89AF-75514DA2F33E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B5CF8802-4B5A-4671-8FBB-00610C6729E3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B6A64496-B2D7-4458-ABF4-7981CAC9108B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B6B368B3-9B5F-4033-8448-624F88E43E82} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B7227240-AE3D-4A32-B72B-2EF8E7120FD5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B8D4E6B0-A694-40C8-A18C-1723B36F0C4E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B8FEA1A6-0A63-41EA-B288-99F4C4F458C5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B9174839-05BA-497C-BAE9-3ABD87A68795} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B92D3F7E-B30C-4DAB-9315-58642EE12ADF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B9827F48-DC2E-4A41-B696-06ED1E7CB7B2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B9A22FCC-8021-4582-BC9B-29D3B1FDC49E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{B9FB72CA-7D44-4EEA-9F59-6CD7785CA1B3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BA34A08C-2B1B-41D7-A87D-97601CEFDFB2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BB4DCBA9-FA70-4696-8378-5317397B6DB6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BC75B47C-F214-44C3-93A3-1E4BE7489017} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BD6956BA-C0BC-45E7-BF5B-C6D58C5643D6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BE0369DA-9AC8-4867-919B-2F9A7A8FB2E5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{BE3C67D4-A362-48C0-893D-29DB4774C7AB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C029BCD1-49F1-4FD8-8A3E-8A892164942F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C039CC74-1E85-467A-9FAD-00BC75DB4475} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C17DA1BD-934F-48A5-AD6F-94DC2ED5CA62} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C2420A49-0A82-47B1-BEB0-301EAA40B61A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C26278CB-9F26-49F8-959A-9F39E5E3B507} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C2E8E86A-4BFD-422E-B9EC-5981042A962B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C30E1BDD-97DE-487B-9E36-7E3FBEBB8768} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C37B53AD-E6AA-4E56-B7A6-526BC79292C3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C3A57B6C-441F-4C8B-9B29-EAF34EFBACEB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C3AC982F-467C-47AC-8B96-ADA64562E324} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C46F9ED7-2FDE-486A-9D8B-63A5C352DB62} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C470994F-3F4F-4F85-A472-2174FF117983} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C4D2234E-7EA4-4F2A-93A0-4AC69D579C2B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C4ED52F5-A186-401A-99BA-7C2BC5318539} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C524B5F0-CA3B-4EF9-AB32-107B3659E69B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C5D09B05-A285-46F0-BAF0-495003C4C814} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C6C176FF-7BF9-4968-BAA0-828BDF4E8BB0} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C7488379-733F-4461-A3E2-199579F70D67} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C77EEE05-75EF-47D2-8F56-772811B167A2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C86AF008-0FE8-41E6-A37A-A21B05FF6C19} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C8A374F8-9F97-47B1-9087-461D82D43C1F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C8E94864-0271-4DE0-A917-CCC1CDC3B3CC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{C99C880D-CBF2-4337-812C-765AFF69519C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CA2060A6-78CB-4A95-83DB-B3EBAD117E50} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CA21AD9F-A385-41C2-87DC-9F4A7CCAF3F9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CA388880-E71F-4053-8C33-2BAC193D4BDC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CAE1E487-4AF2-4ADF-A3CA-B9B8CB9D8E18} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CAE1E81F-46B8-454F-B66B-62ED01215E96} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CB779527-F991-4DF2-8DE7-77E4CFDB90FA} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CCEB93F9-AA92-4B3C-8992-BDA40CA5DEEE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CD3C2E60-1227-4188-AC02-5E659B9F0838} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{CE4F774A-B52D-4412-A7E7-5594E92001FC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D02F9715-3841-48E7-8B45-7DB94542CB02} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D1448B94-0257-471A-977D-CEB710A6FE37} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D28928B9-7EB0-4C35-883B-C24B3FD4FD32} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D2C52E1B-CF12-4829-8131-43ECEE4386C2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D3DA1EE8-2DD9-4604-90B8-3FFA42F6A6B1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D6E886D9-6FF3-4C8E-AAD9-3C659AC900C1} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D70280E7-A46C-4DB8-AA79-ABA7ED0D8BF7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D70EA16F-4BAE-40D3-9F8A-F80208C209EC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D79FC287-69BE-4E45-8725-319079056698} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{D89D4961-A0A8-478B-AD60-7D2F99314E34} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DA15AC91-37CE-48CC-ACEC-52661F0F6827} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DB4F50E5-5F65-43B6-A681-9CAB71C6A1FF} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DBCDDFBF-FDAA-45E4-8972-0B82EF2341F3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DBEA282E-0B17-48C0-A4B6-8F56178688BC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DC498DF1-8642-455C-856A-4434FA01D512} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DCD61A76-2F44-43A0-9149-EE9F13713012} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DD2A6B79-27C5-44EA-9428-29B16028F484} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DE821B35-D6EA-4911-90F3-ED413B136707} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{DF7E99BC-9123-4463-9477-7124FDC06EDC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E0B83A31-BA95-4D2B-897B-7CAE994F998F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E2C1C4E8-2FBB-4E44-BE6B-5F545420918A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E2D4C5E8-5FC2-4E2B-89FC-AA71C4038156} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E32AB64B-D0D3-4406-B3BD-5955A7030AAB} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E347DB05-F1BF-4D5D-845D-689935CA590F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E40EC545-3745-41EE-8FC1-525B89CFA942} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E4B11B7C-829E-464D-88E5-E0A6CE2B3146} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E4D4279D-5256-470B-A731-1577A369533E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E6489924-44A0-4EFB-B298-24A5C87ED780} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E7010F5F-ACA3-4AC1-B7CD-7FFA8D1A91B2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E73B1277-60E7-4D61-95FF-74A4B52B1276} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E7817CD8-3101-46BD-A900-A9F59CDAFBF2} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E8436DA2-1202-4B75-9747-DFCEE1B1BB73} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E8593416-86F6-4A16-9EAE-EE55D398448F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E98140F1-9635-4EEF-92C1-31B8CDBFC0C7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{E9993EFA-DF32-4780-8586-E129D5DD0DCC} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EAC26478-047D-450E-BF82-5DB944F3390C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EB586D23-40CF-4130-85E3-6CCE261F0BB5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EC19A7BB-CA6A-420D-AFE4-109F83B03994} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EC276CD2-07CC-4E22-8EE7-51D6172420D6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EC820542-F83D-4891-B7E3-7033779A84B5} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{ED7A7799-45F9-4D2E-BF64-19D064806D5D} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{ED9A0560-6670-4B32-B2E7-96DD5F26AC3C} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EEB47982-08A5-47E5-AF98-EAFC6693EE5B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EECF3C59-EBD8-4641-8819-96852B4A0044} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EEE3620E-D1DC-4400-BF40-C31AA931F31B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{EFADE984-A346-4BDA-92AB-5EF42639A798} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F04456F0-3442-4F7F-8BE5-BC7A4A4605F6} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F052AF49-2332-43E6-B285-F6029AB8EB2F} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F1393F8C-B07A-4281-813E-EE0BDA8CB39A} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F148A714-9237-4392-AFCD-899983E2086B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F1B2D8FF-C49F-4EF3-AB8E-836F06064421} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F1F7EC69-6F10-4E3C-A6B5-A11F91B5AB97} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F1FA6FAE-941B-4AB4-8802-B161585630D7} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F2D06FDB-8522-4974-8462-07B6307AB104} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F2DF8F3C-5089-4DFF-9D15-4F222E60BE71} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F303D4F7-2D13-49F2-8F14-2F7F2472D582} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F589EBF8-2906-4FBC-8739-8BC1A8C202F8} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F5BB7E04-CBD7-48DD-BF36-8779303020D3} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F5F93B1C-C908-44E8-8D3C-9D5C36E70B28} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F7361A20-72A7-4EF5-90F1-B8BF4C370FE4} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F7DE1FA5-E0EB-49D3-A91B-1C96A38B8F2E} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{F9DDDAAB-AA75-4DAD-AF05-C869D0EC112B} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FB396D1C-19D4-4CCC-BE0C-0B672E520D18} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FBBA5FF6-E66D-4A85-8980-B865250AB5F9} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FD10CA81-81A3-445D-AFF4-574090EC8162} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FD16E28E-E883-49BE-8F93-6FD4F9F781BE} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FF522AC8-9C9C-4494-8D75-82F9180EA310} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\{FF55C8E2-3D94-4028-8854-5412FC6F6901} (Empty Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gkojfkhlekighikafcpjkiklfbnlmeio (Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\ysearchutil (Folder)
      Successfully deleted: C:\Users\USER\AppData\Roaming\pc faster (Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2WNQ7HM9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WQ35DVO1 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJY46YUF (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ2TAI9D (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\USER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YCGD2BD4 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2WNQ7HM9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WQ35DVO1 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJY46YUF (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ2TAI9D (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YCGD2BD4 (Temporary Internet Files Folder)



      Registry: 2

      Failed to delete: HKLM\SYSTEM\CurrentControlSet\services\BprotectEx (Registry Key)
      Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\PCFApiUtil (Registry Key)




      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 14/01/2018 at 21:45:12,85
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    6. #6
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.333

      Re: Creo que tengo un bitcoin miner :(

      Hola

      El reporte de AdwCleaner es del escaneo, presionaste después en limpiar? Si no es así, vuelve a ejecutarlo.

      No olvides comentar como sigue el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.