• Registrarse
  • Iniciar sesión


  • Resultados 1 al 2 de 2

    Descargue algo desde Torrent y se me descargo junto con ello otras cosas

    ...

    1. #1
      Usuario Avatar de Ayeln10
      Registrado
      ene 2018
      Ubicación
      Argentina
      Mensajes
      1

      Triste Descargue algo desde Torrent y se me descargo junto con ello otras cosas

      Hola, quisiera saber como desintalar los siguientes programas
      Вoйти в Интeрнет
      Искать в Интернете
      Поиcк в Интeрнете
      Use el FRST para ver que era y lo que dice es esto


      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
      Ran by Diego (administrator) on AYELEN-PC (29-01-2018 21:56:16)
      Running from C:\Users\Diego\Desktop
      Loaded Profiles: Diego (Available Profiles: Diego)
      Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser not detected!)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (www.ext2fsd.com) C:\Program Files\Ext2Fsd\Ext2Srv.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      (BitTorrent Inc.) C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe
      (BitTorrent Inc.) C:\Users\Diego\AppData\Roaming\uTorrent\updates\3.5.1_44332\utorrentie.exe
      (BitTorrent Inc.) C:\Users\Diego\AppData\Roaming\uTorrent\updates\3.5.1_44332\utorrentie.exe
      () C:\Users\Diego\AppData\Local\Temp\CECE.tmp.exe
      () C:\Windows\Microsoft\svchost.exe
      () C:\Windows\System32\Ea3Host.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      (The Chromium Authors) C:\Users\Diego\AppData\Local\yc\Application\yc.exe
      () C:\Users\Diego\AppData\Local\Temp\03e8.tmp
      () C:\Users\Diego\AppData\Local\Temp\F2D7.tmp.exe
      () C:\Users\Diego\AppData\Local\Temp\1f03.tmp
      () C:\Users\Diego\AppData\Local\indexer\indexer.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera_crashreporter.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera.exe
      (Opera Software) C:\Program Files\Opera\50.0.2762.67\opera.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18382824 2017-08-13] (Realtek Semiconductor)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [EPSON Stylus CX5600 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAL.EXE [209408 2007-01-25] (SEIKO EPSON CORPORATION)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [uTorrent] => C:\Users\Diego\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2017-12-26] (BitTorrent Inc.)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [ycAutoLaunch_4BC7FA73AF0A32C65E0E55452171B269] => C:\Users\Diego\AppData\Local\yc\Application\yc.exe [3922944 2017-12-01] (The Chromium Authors)
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\Run: [ewdjxoxnnp] => explorer "hxxp://emwesug.ru/?utm_source=uoua03&utm_content=2f43e5543a908075443ddee16a929830&utm_term=9E48DDC79FAF950E4EF315925B0C0052&utm_d=20180130" <==== ATTENTION
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\...\MountPoints2: {8a252304-cc82-11e7-9812-d05099590c83} - G:\Setup.exe
      GroupPolicy: Restriction <==== ATTENTION
      GroupPolicy\User: Restriction <==== ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
      Tcpip\Parameters: [DhcpNameServer] 200.42.4.198 200.49.130.47
      Tcpip\..\Interfaces\{2DA03CFD-3AA7-4308-BE3D-2E92BE0FE62A}: [NameServer] 35.177.46.238,46.101.28.31,82.202.226.203,200.42.4.198,200.49.130.47
      Tcpip\..\Interfaces\{2DA03CFD-3AA7-4308-BE3D-2E92BE0FE62A}: [DhcpNameServer] 200.42.4.198 200.49.130.47
      Tcpip\..\Interfaces\{721E358A-55F9-4965-8389-0AF7589A684E}: [DhcpNameServer] 200.42.4.203 200.49.130.41
      Tcpip\..\Interfaces\{BB43483F-D3DD-4385-9C3C-F8603ABF49E1}: [NameServer] 35.177.46.238,46.101.28.31,82.202.226.203
      Tcpip\..\Interfaces\{BC34F632-C8AC-4210-B34D-DFBF5F22EB8E}: [DhcpNameServer] 200.42.4.203 200.49.130.41

      Internet Explorer:
      ==================
      HKU\S-1-5-21-2507381170-2285812258-1540402085-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://mail.ru/cnt/10445?gp=855424
      SearchScopes: HKU\S-1-5-21-2507381170-2285812258-1540402085-1000 -> DefaultScope {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
      SearchScopes: HKU\S-1-5-21-2507381170-2285812258-1540402085-1000 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
      SearchScopes: HKU\S-1-5-21-2507381170-2285812258-1540402085-1000 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7B3EBFEA26-F398-4D8D-9981-B49466FAB33B%7D&gp=855524
      BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2017-12-16] (Microsoft Corporation)
      BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
      BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-13] (Oracle Corporation)
      BHO-x32: [email protected] -> {8E8F97CD-60B5-456F-A201-73065652D099} -> C:\Users\Diego\AppData\Local\Mail.Ru\Sputnik\ie_addon_dll.dll [2018-01-29] (Mail.Ru)
      BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
      BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-13] (Oracle Corporation)
      Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
      Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
      Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
      Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation)

      FireFox:
      ========
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
      FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
      FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-13] (Oracle Corporation)
      FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-13] (Oracle Corporation)
      FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-16] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
      FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
      FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR HomePage: Default -> hxxps://inline.go.mail.ru/homepage?inline_comp=hp&inline_hp_cnt=11956636
      CHR StartupUrls: Default -> "hxxp://mail.ru/cnt/10445?gp=855424"
      CHR NewTab: Default -> "chrome-extension://ngdlmklkpclkhjopnhihdedhjgjmhlaa/visual-bookmarks.html"

      CHR DefaultSearchURL: Default -> hxxp://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7BB8A2FBC5-8FD0-461D-B9EB-5BA1EB40878A%7D&gp=855524
      CHR DefaultSearchKeyword: Default -> go.mail.ru
      CHR DefaultSuggestURL: Default -> hxxp://suggests.go.mail.ru/chrome?q={searchTerms}
      CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2018-01-29]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-13]
      CHR Extension: (Mail.Ru) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhjhnafpiilpffhglajcaepjbnbjemci [2018-01-29]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-13]
      CHR Extension: (uBlock Origin) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2017-10-14]
      CHR Extension: (Tampermonkey) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-09-12]
      CHR Extension: (Adobe Acrobat) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-01]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-13]
      CHR Extension: (Домашняя страница Mail.Ru) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcadgijmedbfgciegjomfpjcdchlhnif [2018-01-29]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdbhfgaogfjhbhohgbhdfhabffhdehe [2017-08-13]
      CHR Extension: (Пульс) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngdlmklkpclkhjopnhihdedhjgjmhlaa [2018-01-29]
      CHR Extension: (Chrome Web Store Payments) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-21]
      CHR Extension: (Docs PDF/PowerPoint Viewer (by Google)) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2017-08-13]
      CHR Extension: (No Name) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-13]
      CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
      CHR HKLM-x32\...\Chrome\Extension: [bhjhnafpiilpffhglajcaepjbnbjemci] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [hcadgijmedbfgciegjomfpjcdchlhnif] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [ngdlmklkpclkhjopnhihdedhjgjmhlaa] - hxxps://clients2.google.com/service/update2/crx

      Opera:
      =======
      StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1545736 2018-01-29] ()
      R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
      R2 Ea3Host; C:\Windows\system32\Ea3Host.exe [960512 2018-01-29] () [File not signed]
      R2 Ext2Srv; C:\Program Files\Ext2Fsd\Ext2Srv.exe [34816 2016-07-09] (www.ext2fsd.com)
      S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8028304 2017-01-24] (INCA Internet Co., Ltd.)
      R2 SvcHost Service Host; C:\Windows\Microsoft\svchost.exe [0 ] () <==== ATTENTION (zero byte File/Folder)
      R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
      R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
      S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
      R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
      R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-11-18] (Disc Soft Ltd)
      R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-11-18] (Disc Soft Ltd)
      S3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2017-08-16] (Disc Soft Ltd)
      S3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47672 2017-08-16] (Disc Soft Ltd)
      R2 Ext2Fsd; C:\Windows\system32\Drivers\Ext2Fsd.sys [799744 2016-07-09] (www.ext2fsd.com)
      S3 fwlanusb6_860; C:\Windows\System32\DRIVERS\fwlanusb6_860.sys [2274336 2015-07-20] (AVM GmbH)
      S3 gHidPnp; C:\Windows\System32\Drivers\gHidPnp.Sys [25600 2017-08-13] ()
      S3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [14336 2017-08-13] ()
      R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2017-08-13] (Qualcomm Atheros Co., Ltd.)
      S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-18] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-07-18] (NVIDIA Corporation)
      R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-18] (NVIDIA Corporation)
      R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
      S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
      S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11376 2017-08-23] () [File not signed]
      R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2017-06-22] (Anchorfree Inc.)
      S1 vcdrom; \??\C:\Users\Diego\Documents\VCdRom.sys [X]
      S3 VGPU; System32\drivers\rdvgkmd.sys [X]
      S3 X6va065; \??\C:\Windows\SysWOW64\Drivers\X6va065 [X]
      S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2018-01-29 21:56 - 2018-01-29 21:59 - 000018342 _____ C:\Users\Diego\Desktop\FRST.txt
      2018-01-29 21:56 - 2018-01-29 21:56 - 000000000 ____D C:\FRST
      2018-01-29 21:55 - 2018-01-29 21:55 - 002393088 _____ (Farbar) C:\Users\Diego\Desktop\FRST64.exe
      2018-01-29 21:36 - 2018-01-29 21:36 - 000797760 _____ C:\Users\Diego\Downloads\delfix.exe
      2018-01-29 21:33 - 2018-01-29 21:37 - 000000309 _____ C:\DelFix.txt
      2018-01-29 21:24 - 2018-01-29 21:24 - 000002060 _____ C:\Users\Diego\Desktop\Вoйти в Интeрнет.lnk
      2018-01-29 21:24 - 2018-01-29 21:24 - 000000000 ____D C:\Users\Diego\AppData\Local\Вoйти в Интeрнет
      2018-01-29 21:23 - 2018-01-29 21:23 - 000003532 _____ C:\Windows\System32\Tasks\curl
      2018-01-29 21:23 - 2018-01-29 21:23 - 000003322 _____ C:\Windows\System32\Tasks\curls
      2018-01-29 21:23 - 2018-01-29 21:23 - 000000000 ____D C:\Users\Diego\AppData\Roaming\curl
      2018-01-29 21:21 - 2018-01-29 21:25 - 000960512 _____ C:\Windows\system32\Ea3Host.exe
      2018-01-29 21:21 - 2018-01-29 21:25 - 000000000 ____D C:\Users\Diego\AppData\Local\yc
      2018-01-29 21:20 - 2018-01-29 21:20 - 000000000 ____D C:\Users\Diego\Downloads\Hotspot Shield VPN Elite 7.20.8 Setup
      2018-01-29 21:20 - 2018-01-29 21:20 - 000000000 ____D C:\Users\Diego\AppData\Local\Chromium
      2018-01-29 21:19 - 2018-01-29 21:48 - 000000000 ____D C:\Users\Diego\AppData\Local\indexer
      2018-01-29 21:19 - 2018-01-29 21:19 - 000003416 _____ C:\Windows\System32\Tasks\indexer
      2018-01-29 21:17 - 2018-01-29 21:17 - 000001656 _____ C:\Users\Diego\Desktop\Поиcк в Интeрнете.lnk
      2018-01-29 21:17 - 2018-01-29 21:17 - 000000000 ____D C:\Users\Diego\AppData\Local\Поиcк в Интeрнете
      2018-01-29 21:16 - 2018-01-29 21:40 - 000000000 ____D C:\Program Files (x86)\Mail.Ru
      2018-01-29 21:16 - 2018-01-29 21:24 - 000000191 _____ C:\Users\Diego\Desktop\Искать в Интернете.url
      2018-01-29 21:15 - 2018-01-29 21:40 - 000000000 ____D C:\Users\Diego\AppData\Local\Mail.Ru
      2018-01-29 21:15 - 2018-01-29 21:22 - 000000000 ____D C:\ProgramData\Mail.Ru
      2018-01-29 21:14 - 2018-01-29 21:15 - 031825628 _____ C:\Users\Diego\Downloads\hotspot shield vpn elite 2018.rar
      2018-01-29 21:13 - 2018-01-29 21:13 - 001422328 _____ C:\Users\Diego\Downloads\hotspot_shield_vpn_elite_2018_68c-746___.exe
      2018-01-29 21:13 - 2018-01-29 21:13 - 000000509 _____ C:\Users\Diego\Downloads\hotspot_shield_vpn_elite_2018_68c-746___.torrent
      2018-01-29 21:13 - 2018-01-29 21:13 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\uTorrent
      2018-01-29 20:40 - 2018-01-29 20:40 - 000001621 _____ C:\Users\Diego\Desktop\S4League.lnk
      2018-01-29 20:33 - 2018-01-29 20:33 - 000000000 ____D C:\AeriaGames
      2018-01-29 17:06 - 2018-01-29 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S4League
      2018-01-29 16:43 - 2018-01-29 20:31 - 000000000 ____D C:\Program Files (x86)\AeriaGames
      2018-01-29 16:43 - 2018-01-29 16:43 - 000577624 _____ (gamigo AG) C:\Users\Diego\Downloads\S4league_US_downloader.exe
      2018-01-24 09:35 - 2018-01-24 09:35 - 000092906 _____ C:\Users\Diego\Downloads\WhatsApp Image 2018-01-22 at 7.27.54 PM.jpeg
      2018-01-24 09:24 - 2018-01-24 09:25 - 000152017 _____ C:\Users\Diego\Downloads\WhatsApp Image 2018-01-24 at 8.24.28 AM (1).jpeg
      2018-01-24 09:24 - 2018-01-24 09:25 - 000143625 _____ C:\Users\Diego\Downloads\WhatsApp Image 2018-01-24 at 8.24.28 AM.jpeg
      2018-01-22 21:01 - 2018-01-22 21:01 - 000003960 _____ C:\Users\Diego\Downloads\ARG96041670223BD2201801.PDF
      2018-01-22 15:55 - 2018-01-22 15:55 - 000003916 _____ C:\Users\Diego\Downloads\ARG96041670223BD3201802.PDF
      2018-01-15 14:29 - 2018-01-15 14:35 - 000100349 _____ C:\Users\Diego\Downloads\WhatsApp Image 2018-01-15 at 2.29.08 PM.jpeg
      2018-01-15 14:29 - 2018-01-15 14:32 - 000165337 _____ C:\Users\Diego\Downloads\WhatsApp Image 2018-01-15 at 2.28.20 PM.jpeg
      2018-01-13 23:43 - 2018-01-13 23:43 - 000000990 _____ C:\Users\Diego\Desktop\Audition.lnk
      2018-01-13 23:43 - 2018-01-13 23:43 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Audition 1.97
      2018-01-13 23:41 - 2018-01-23 22:10 - 000000000 ____D C:\Program Files (x86)\Axeso5
      2018-01-13 23:07 - 2018-01-13 23:40 - 000000000 ____D C:\Users\Diego\Desktop\AuditionSetup
      2018-01-13 22:52 - 2018-01-13 22:52 - 002543616 _____ C:\Users\Diego\Downloads\AuditionDownloader.exe
      2018-01-12 08:24 - 2018-01-12 08:24 - 000732464 _____ C:\Users\Diego\Downloads\43028337.PDF
      2018-01-12 08:23 - 2018-01-12 08:23 - 000732483 _____ C:\Users\Diego\Downloads\43028684.PDF
      2018-01-12 08:23 - 2018-01-12 08:23 - 000732386 _____ C:\Users\Diego\Downloads\Pelozoc01.PDF
      2018-01-10 05:49 - 2018-01-10 05:49 - 043217280 _____ C:\Users\Diego\Downloads\0P M464zIn3 V01.3.zip
      2018-01-10 05:48 - 2018-01-10 05:48 - 062339954 _____ C:\Users\Diego\Downloads\0P M464zIn3 V01.2.zip
      2018-01-10 05:47 - 2018-01-10 05:47 - 091419819 _____ C:\Users\Diego\Downloads\0P M464zIn3 V01.1.zip
      2018-01-03 12:39 - 2018-01-03 12:39 - 000458110 _____ C:\Users\Diego\Downloads\LACAY.PDF
      2018-01-02 09:43 - 2018-01-02 09:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
      2018-01-02 09:43 - 2017-10-27 13:06 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
      2018-01-02 09:43 - 2017-09-13 20:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
      2018-01-02 09:43 - 2017-09-13 20:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
      2018-01-02 09:43 - 2017-09-13 20:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
      2018-01-02 09:43 - 2017-09-13 20:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
      2018-01-02 06:59 - 2017-11-14 22:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
      2018-01-02 06:59 - 2017-11-14 21:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
      2018-01-02 06:59 - 2017-11-14 00:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
      2018-01-02 06:59 - 2017-11-14 00:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
      2018-01-02 06:59 - 2017-11-14 00:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
      2018-01-02 06:59 - 2017-11-14 00:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
      2018-01-02 06:59 - 2017-11-14 00:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
      2018-01-02 06:59 - 2017-11-14 00:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
      2018-01-02 06:59 - 2017-11-14 00:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
      2018-01-02 06:59 - 2017-11-14 00:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
      2018-01-02 06:59 - 2017-11-14 00:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
      2018-01-02 06:59 - 2017-11-14 00:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
      2018-01-02 06:59 - 2017-11-14 00:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
      2018-01-02 06:59 - 2017-11-14 00:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
      2018-01-02 06:59 - 2017-11-14 00:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
      2018-01-02 06:59 - 2017-11-14 00:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
      2018-01-02 06:59 - 2017-11-14 00:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
      2018-01-02 06:59 - 2017-11-14 00:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
      2018-01-02 06:59 - 2017-11-14 00:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
      2018-01-02 06:59 - 2017-11-14 00:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
      2018-01-02 06:59 - 2017-11-14 00:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
      2018-01-02 06:59 - 2017-11-14 00:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
      2018-01-02 06:59 - 2017-11-14 00:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
      2018-01-02 06:59 - 2017-11-14 00:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
      2018-01-02 06:59 - 2017-11-14 00:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
      2018-01-02 06:59 - 2017-11-14 00:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
      2018-01-02 06:59 - 2017-11-14 00:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
      2018-01-02 06:59 - 2017-11-13 23:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
      2018-01-02 06:59 - 2017-11-13 23:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
      2018-01-02 06:59 - 2017-11-13 23:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
      2018-01-02 06:59 - 2017-11-13 23:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
      2018-01-02 06:59 - 2017-11-13 23:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
      2018-01-02 06:59 - 2017-11-13 23:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
      2018-01-02 06:59 - 2017-11-13 23:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
      2018-01-02 06:59 - 2017-11-13 23:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
      2018-01-02 06:59 - 2017-11-13 23:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
      2018-01-02 06:59 - 2017-11-13 23:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
      2018-01-02 06:59 - 2017-11-13 22:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
      2018-01-02 06:59 - 2017-11-13 22:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
      2018-01-02 06:59 - 2017-11-13 22:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
      2018-01-02 06:59 - 2017-11-13 22:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
      2018-01-02 06:59 - 2017-11-13 22:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
      2018-01-02 06:59 - 2017-11-13 21:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
      2018-01-02 06:59 - 2017-11-13 21:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
      2018-01-02 06:59 - 2017-11-07 17:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
      2018-01-02 06:59 - 2017-11-07 17:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
      2018-01-02 06:59 - 2017-11-07 17:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
      2018-01-02 06:59 - 2017-11-07 17:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
      2018-01-02 06:59 - 2017-11-07 17:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
      2018-01-02 06:59 - 2017-11-07 17:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
      2018-01-02 06:59 - 2017-11-07 17:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
      2018-01-02 06:59 - 2017-11-07 17:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
      2018-01-02 06:59 - 2017-11-07 17:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
      2018-01-02 06:59 - 2017-11-07 17:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
      2018-01-02 06:59 - 2017-11-07 17:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
      2018-01-02 06:59 - 2017-11-07 17:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
      2018-01-02 06:59 - 2017-11-07 17:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
      2018-01-02 06:59 - 2017-11-07 17:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
      2018-01-02 06:59 - 2017-11-07 17:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
      2018-01-02 06:59 - 2017-11-07 17:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
      2018-01-02 06:59 - 2017-11-07 17:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
      2018-01-02 06:59 - 2017-11-07 17:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
      2018-01-02 06:59 - 2017-11-07 17:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
      2018-01-02 06:59 - 2017-11-07 17:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
      2018-01-02 06:59 - 2017-11-07 17:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
      2018-01-02 06:59 - 2017-11-07 17:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
      2018-01-02 06:59 - 2017-11-07 17:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
      2018-01-02 06:59 - 2017-11-07 16:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
      2018-01-02 06:59 - 2017-11-07 13:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
      2018-01-02 06:59 - 2017-11-07 13:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
      2018-01-02 06:59 - 2017-11-04 12:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
      2018-01-02 06:59 - 2017-11-04 12:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
      2018-01-02 06:59 - 2017-11-04 12:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
      2018-01-02 06:59 - 2017-11-04 12:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
      2018-01-02 06:59 - 2017-11-02 13:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
      2018-01-02 06:59 - 2017-11-02 13:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
      2018-01-02 06:59 - 2017-11-02 13:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
      2018-01-02 06:59 - 2017-11-02 13:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
      2018-01-02 06:59 - 2017-11-02 12:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
      2018-01-02 06:59 - 2017-11-02 12:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
      2018-01-02 06:59 - 2017-11-02 12:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
      2018-01-02 06:59 - 2017-11-02 11:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
      2018-01-02 06:59 - 2017-10-16 20:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
      2018-01-02 06:59 - 2017-10-16 19:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
      2018-01-02 06:59 - 2017-10-11 21:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2018-01-29 22:14 - 2017-08-26 23:23 - 000000000 ____D C:\Users\Diego\AppData\Roaming\uTorrent
      2018-01-29 21:23 - 2017-11-24 17:44 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
      2018-01-29 21:15 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
      2018-01-29 21:15 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
      2018-01-29 21:05 - 2017-08-21 15:54 - 000000000 ____D C:\Users\Diego\AppData\Roaming\Skype
      2018-01-29 21:05 - 2017-08-13 19:04 - 000000000 ____D C:\ProgramData\Package Cache
      2018-01-29 20:46 - 2017-08-13 19:05 - 000000000 ____D C:\ProgramData\NVIDIA
      2018-01-29 14:18 - 2009-07-14 01:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2018-01-29 14:18 - 2009-07-14 01:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2018-01-29 11:25 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2018-01-28 22:36 - 2017-09-17 10:45 - 000000000 ____D C:\Users\Diego\AppData\Local\ElevatedDiagnostics
      2018-01-28 15:08 - 2017-08-13 18:53 - 000000000 ____D C:\Windows\SysWOW64\Macromed
      2018-01-26 20:45 - 2017-10-14 14:33 - 000000000 ____D C:\Users\Diego\Downloads\Avon
      2018-01-24 17:39 - 2017-10-15 11:39 - 000000000 ____D C:\Program Files\S4League
      2018-01-24 12:51 - 2017-10-14 23:49 - 000003844 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1508035790
      2018-01-24 12:51 - 2017-10-14 23:49 - 000000000 ____D C:\Program Files\Opera
      2018-01-10 03:09 - 2017-08-16 23:29 - 000000000 ____D C:\Windows\system32\MRT
      2018-01-10 03:05 - 2017-10-10 18:40 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
      2018-01-10 03:05 - 2017-08-16 23:27 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2018-01-10 03:00 - 2009-07-13 23:34 - 000000478 _____ C:\Windows\win.ini
      2018-01-10 00:30 - 2017-09-16 20:15 - 000004502 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
      2018-01-10 00:30 - 2017-08-13 18:53 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
      2018-01-10 00:30 - 2017-08-13 18:53 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
      2018-01-10 00:30 - 2017-08-13 18:53 - 000004332 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
      2018-01-10 00:30 - 2017-08-13 18:53 - 000000000 ____D C:\Windows\system32\Macromed
      2018-01-07 05:09 - 2011-04-12 06:10 - 000751214 _____ C:\Windows\system32\perfh00A.dat
      2018-01-07 05:09 - 2011-04-12 06:10 - 000160238 _____ C:\Windows\system32\perfc00A.dat
      2018-01-07 05:09 - 2009-07-14 02:13 - 001686242 _____ C:\Windows\system32\PerfStringBackup.INI
      2018-01-07 05:09 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
      2018-01-04 10:16 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
      2018-01-02 14:44 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
      2018-01-02 14:44 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\Setup
      2018-01-02 09:44 - 2017-08-21 15:27 - 000000000 ____D C:\Temp
      2018-01-02 09:44 - 2017-08-13 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
      2018-01-02 09:44 - 2017-08-13 19:05 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
      2018-01-02 09:42 - 2017-08-13 19:05 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
      2018-01-02 09:42 - 2017-08-13 19:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation

      ==================== Files in the root of some directories =======

      2017-08-17 16:48 - 2017-08-16 21:07 - 001710680 _____ () C:\Users\Public\SetupVCD5500.exe
      2017-01-14 08:37 - 2017-01-14 08:37 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
      2017-08-27 21:41 - 2017-10-02 21:06 - 000007655 _____ () C:\Users\Diego\AppData\Local\Resmon.ResmonCfg

      Some files in TEMP:
      ====================
      2017-08-13 21:34 - 2017-10-11 20:09 - 000000000 _____ () C:\Users\Diego\AppData\Local\Temp\08e5112af9216e71f46489e25247a34d.dll
      2017-08-13 21:00 - 2017-08-13 21:00 - 000079736 _____ (AppWork GmbH) C:\Users\Diego\AppData\Local\Temp\131471424279658203.exe
      2017-08-13 21:00 - 2017-08-13 21:00 - 001411636 _____ (Tulofeh ) C:\Users\Diego\AppData\Local\Temp\13147142430903320398.exe
      2018-01-29 21:22 - 2018-01-25 09:19 - 001314008 _____ (Mail.Ru) C:\Users\Diego\AppData\Local\Temp\1c6e-0750-561c-b3ab.exe
      2018-01-29 21:24 - 2018-01-29 21:24 - 002575544 _____ () C:\Users\Diego\AppData\Local\Temp\2336800.exe
      2017-08-23 19:06 - 2017-09-16 21:30 - 000000093 _____ () C:\Users\Diego\AppData\Local\Temp\5191434c0f337a914a4dd9023965e1df.dll
      2018-01-29 22:13 - 2018-01-29 21:18 - 000807928 _____ () C:\Users\Diego\AppData\Local\Temp\742D.tmp.exe
      2018-01-29 20:41 - 2018-01-29 20:41 - 000000088 _____ () C:\Users\Diego\AppData\Local\Temp\982e4514673abf91f8a99e28afb2b2d2.dll
      2017-08-24 14:06 - 2017-10-11 19:03 - 000000093 _____ () C:\Users\Diego\AppData\Local\Temp\b0b79f8edf84c48f56c5657eee54306d.dll
      2017-08-13 21:34 - 2017-08-23 16:13 - 000000093 _____ () C:\Users\Diego\AppData\Local\Temp\bbd4c25a7af442f211b50d84ec5ce03a.dll
      2018-01-29 21:21 - 2018-01-29 21:21 - 038316032 ____N (The Chromium Authors) C:\Users\Diego\AppData\Local\Temp\c68qg6Z6R3XP.exe
      2018-01-29 21:20 - 2018-01-29 21:20 - 064938720 _____ (Kometa LCC) C:\Users\Diego\AppData\Local\Temp\cH86rxlcIilc.exe
      2017-11-18 16:12 - 2017-11-18 16:13 - 027536744 _____ (Disc Soft Ltd) C:\Users\Diego\AppData\Local\Temp\DAEMON Tools Lite.exe
      2018-01-29 21:47 - 2018-01-29 21:18 - 000807928 _____ () C:\Users\Diego\AppData\Local\Temp\F2D7.tmp.exe
      2018-01-29 21:22 - 2018-01-25 09:19 - 001314008 _____ (Mail.Ru) C:\Users\Diego\AppData\Local\Temp\f4c9-f062-1d62-8d7a.exe
      2018-01-29 20:41 - 2018-01-29 20:41 - 000000000 _____ () C:\Users\Diego\AppData\Local\Temp\fb1d5c12ab65a33663c67a42c8bf47b2.dll
      2018-01-29 21:15 - 2018-01-29 21:15 - 002575544 _____ () C:\Users\Diego\AppData\Local\Temp\nMHxFdbnMecG.exe
      2015-08-01 09:00 - 2015-08-01 09:00 - 000242864 ____R (Microsoft Corporation) C:\Users\Diego\AppData\Local\Temp\ose00000.exe
      2017-08-18 20:38 - 2017-08-18 20:38 - 001042784 _____ (Microsoft Corporation) C:\Users\Diego\AppData\Local\Temp\PidGenX.dll
      2017-10-15 00:51 - 2017-10-15 00:51 - 000040448 _____ () C:\Users\Diego\AppData\Local\Temp\proxy_vole8374507541955740279.dll
      2017-08-21 20:06 - 2017-10-27 16:21 - 015939512 _____ () C:\Users\Diego\AppData\Local\Temp\psiphon-tunnel-core.exe
      2017-10-15 00:37 - 2017-10-15 00:37 - 058881488 _____ (Skype Technologies S.A.) C:\Users\Diego\AppData\Local\Temp\SkypeSetup.exe
      2001-12-19 11:45 - 2001-12-19 11:45 - 000023552 _____ () C:\Users\Diego\AppData\Local\Temp\VCdControlTool.exe
      2017-12-10 19:34 - 2017-12-10 19:47 - 015301888 _____ (Microsoft Corporation) C:\Users\Diego\AppData\Local\Temp\vcredist_x64.exe

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\SysWOW64\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2018-01-28 22:29

      ==================== End of FRST.txt ============================

    2. #2
      Moderadora Gral.
      Avatar de @Daniela
      Registrado
      abr 2011
      Ubicación
      España
      Mensajes
      25.354

      Re: Descargue algo desde Torrent y se me descargo junto con ello otras cosas

      Hola Ayeln10



      Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

      1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

      • Realiza un Análisis Completo, actualizando si te lo pide.
      • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
      • En el apartado del manual "Historial" >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.



      2) Descargar Junkware Removal Tool

      • Desactiva temporalmente el Antivirus
      • Ejecuta JRT.exe, (en Windows 7 u 8 ejecutar como "Administrador")
      • Presiona cualquier tecla para continuar y espera pacientemente a que termine su proceso.
      • Al finalizar, un registro (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
      • Copia y pega el contenido de JRT.txt en tu próximo mensaje de respuesta



      3) Descarga >> AdwCleaner | InfoSpyware en el escritorio.

      • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
      • Cierra también todos los programas que tengas abiertos.
      • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
      • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botónLimpiar.
      • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistemaAceptas.
      • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
      • El informe también se puede encontrar en "C:\AdwCleaner\AdwCleaner[C0].txt"



      4) Descarga CCleaner

      • Instala Ccleaner
      • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador
      • clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad
      • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.


      Pega los reportes de Malwarebytes, AdwCleaner y JRT y comentas como va el problema.

      Un saludo
      ✿◕‿◕✿ La impaciencia no es buena compañía ✿◕‿◕✿

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.