cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.06.2018
Ran by Pedro Chiapetti (09-07-2018 19:41:45)
Running from C:\Users\Pedro Chiapetti\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-08-15 20:09:07)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2327579781-1938737965-4185811035-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-2327579781-1938737965-4185811035-1002 - Limited - Enabled)
Invitado (S-1-5-21-2327579781-1938737965-4185811035-501 - Limited - Disabled)
Pedro Chiapetti (S-1-5-21-2327579781-1938737965-4185811035-1000 - Administrator - Enabled) => C:\Users\Pedro Chiapetti

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2327579781-1938737965-4185811035-1000\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{8DF1EF50-AEB6-902C-F68C-4683C45784E6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software)
ccc-core-static (HKLM-x32\...\{3EE91D75-5721-4662-AE9E-AEF5C6BF41D4}) (Version: 2010.0909.1412.23625 - Nombre de su organización) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Gunbound Gitz World Champion versão 11 (HKLM-x32\...\{86521E8E-7AE9-41BA-9C01-ABA51C86DC43}_is1) (Version: 11 - GitzWC, Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6466.0 - IDT)
InfinityMU Season 3 Episode 1 (HKLM-x32\...\InfinityMU Season 3 Episode 1) (Version: Season 3 Episode 1 - InfinityMU)
Legendas 3.5 (HKLM-x32\...\{461C0377-D2EC-4FB0-B038-847BC6455432}_is1) (Version: 3.5 - Legendas Brasil)
MalwareFox AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Wolf of Webstreet OPC Private Limited)
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 SDK (HKLM-x32\...\{58AF62C8-1D15-46D7-9B7F-243B93C5589E}) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 Targeting Pack (ENU) (HKLM-x32\...\{B517DBD3-B542-4FC8-9957-FFB2C3E65D1D}) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 Targeting Pack (HKLM-x32\...\{1784A8CD-F7FE-47E2-A87D-1F31E7242D0D}) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Lync Vdi 2013 (HKLM\...\Office15.LYNCVDI) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 61.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 61.0.1 (x64 en-US)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla)
Paquete de compatibilidad de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{DE9EAC0A-7859-4294-B05F-4A056D83024C}) (Version: 4.7.03062 - Microsoft Corporation)
Paquete de controladores de Windows - Intel (NETwLv64) net (10/07/2010 13.4.0.139) (HKLM\...\EA1C8ECD4E416637C38F0079F98C8C7B0A112265) (Version: 10/07/2010 13.4.0.139 - Intel)
Paquete de controladores de Windows - Intel (NETwNs64) net (01/22/2012 14.3.2.1) (HKLM\...\CD88F0FADE1395C9F91302912FD35B13CF75C196) (Version: 01/22/2012 14.3.2.1 - Intel)
Paquete de controladores de Windows - Intel (NETwNs64) net (02/20/2012 15.1.0.18) (HKLM\...\3B10B182703FB1E32FC2AC67FE61C96FB4BF34C1) (Version: 02/20/2012 15.1.0.18 - Intel)
Paquete de desarrollador de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{9ae94cd5-b13d-4e26-b767-f98273003d85}) (Version: 4.7.3062 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
RAR Password Finder (HKLM-x32\...\RAR Password Finder) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.97.1001.2015 - Realtek)
Realtek PC Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10253 - Realtek Semiconductor Corp.)
Remote Mouse version 2.53 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 2.53 - Remote Mouse)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SDK de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{9BEBCD18-E34F-4FB0-B960-064C5EEDAEE0}) (Version: 4.7.03062 - Microsoft Corporation)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012E-0000-1000-0000000FF1CE}_Office15.LYNCVDI_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Skynet Mu Season 12 (HKLM-x32\...\Skynet Mu Season 12) (Version: - )
Software Intel® PROSet/Wireless (HKLM-x32\...\{12415e07-c869-4438-9d99-b55261706671}) (Version: 19.1.0 - Intel Corporation)
Update for Skype for Business 2015 (KB4022170) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.LYNCVDI_{623DC402-8FDC-490D-9881-E60F5337036E}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4022170) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.LYNCVDI_{623DC402-8FDC-490D-9881-E60F5337036E}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4022170) 64-Bit Edition (HKLM\...\{90150000-012E-0000-1000-0000000FF1CE}_Office15.LYNCVDI_{623DC402-8FDC-490D-9881-E60F5337036E}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-01] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\MalwareFox AntiMalware\ZAMShellExt64.dll [2018-04-27] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-01] (AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-01] (AVAST Software)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Pedro Chiapetti\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2000-01-01] (Intel Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\MalwareFox AntiMalware\ZAMShellExt64.dll [2018-04-27] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-01] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0ACDA59A-AF96-44BF-9731-539E27CBFA52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {0C01FEA0-EC08-4E9D-8730-D945C1289434} - System32\Tasks\{1F3AA0C4-4A75-4036-A1E1-6A7220695739} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanionInstaller.exe" -c --uninstall
Task: {22B0997E-16B2-4332-B49E-7F0469E1A1AC} - System32\Tasks\{64364ABD-A5B6-4215-9BB7-78DDE5F3135E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pedro Chiapetti\Desktop\sp57090.exe" -d "C:\Users\Pedro Chiapetti\Desktop"
Task: {49306FA1-4BFB-4A10-A2D4-6952B50FDCB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {55E976A3-1C4B-428E-B931-CB6046264BBB} - System32\Tasks\{CFD5EECA-4C73-4B76-BA6D-B57778F54C35} => C:\Users\Pedro Chiapetti\Downloads\avast_free_antivirus_setup_online_a2e (1).exe
Task: {576EEA7D-AFEE-49CC-BC7F-89EADF9444B1} - System32\Tasks\{585262F3-8477-4801-BE6D-58F6735ED330} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\IObit\IObit Unlocker\unins000.exe"
Task: {5CEC5E08-BE39-4390-9AD1-663994FE62D5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {68CF762D-1CC2-4FC1-9D61-5CDD179FAB23} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-07-08] ()
Task: {6A869F61-9E72-45F2-B31F-EF948515D05B} - System32\Tasks\ezvyhgxmrmtdaundurabl => C:\ehrpmnoyufniuhpqobesg\ezvyhgxmrmtdaundurabl.exe [2018-03-09] ()
Task: {7A9373BF-A15A-4EB5-B776-FADF9F2E1D8C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-07-01] (AVAST Software)
Task: {8824045F-1129-4AD9-86CE-5EA473036925} - System32\Tasks\{7D6EA3E2-30F9-414B-8857-76692D28A7D3} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pedro Chiapetti\Desktop\Setup.exe" -d "C:\Users\Pedro Chiapetti\Desktop"
Task: {8D63F053-05E0-434A-AD43-E79D4374BA14} - System32\Tasks\{C7D51858-4390-4355-83C6-647ED52F1EC3} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pedro Chiapetti\Downloads\Rar Password Finder\SETUP.EXE" -d "C:\Users\Pedro Chiapetti\Downloads\Rar Password Finder"
Task: {AC09058B-098B-43F5-BC4C-E943449386A5} - System32\Tasks\{35A3541D-A547-4A54-872A-4A42FBD84D4C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F57CEB84-3D22-4657-8EDA-F8CD5217B83E}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
Task: {B3F0711D-F845-4B63-8E61-97D4F406F157} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-07-02] (AVAST Software)
Task: {CD56059B-67EC-4D5E-BC98-3D27C3B7DEE3} - System32\Tasks\Anedochdokather Engine => C:\Program Files (x86)\Repoph\nrodom.exe
Task: {EBDEC7E0-9121-4B06-97FF-A9EA3E0BBD0A} - System32\Tasks\Driver Booster Scheduler => C:\PROGRA~2\IObit\DRIVER~1\5404C4~1.0\Scheduler.exe
Task: {F4CF04B7-DED4-4C8A-AA3F-D398B0E6AF86} - System32\Tasks\{944FC2B8-F49C-4BCF-9090-A4DAD5D2CE18} => C:\Windows\system32\pcalua.exe -a C:\Game\SoftnyxGame\GunboundLS\unins000.exe
Task: {FB37E214-1F12-4665-86A0-BDD6D9806A23} - System32\Tasks\{75A5D97B-10A7-4CBE-9E68-45F7E21AFAD7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pedro Chiapetti\Desktop\sp64676 (1).exe" -d "C:\Users\Pedro Chiapetti\Desktop"
Task: {FDD94FC0-1CFD-40B9-9605-85684DB8F8DC} - System32\Tasks\{17419DF5-017B-44F2-ADE3-2F69393D0084} => C:\Windows\system32\pcalua.exe -a C:\Windows\svchost.com -d "C:\Users\Pedro Chiapetti\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" -c "C:\PROGRA~2\Hotben\APPLIC~1\chrome.exe"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2018-02-02 12:38 - 2017-04-28 02:23 - 000086528 _____ () C:\Program Files (x86)\Legendas-3.5\ShellExtContextMenuHandler.dll
2018-05-22 20:27 - 2018-03-09 07:00 - 000891904 _____ () C:\ehrpmnoyufniuhpqobesg\ezvyhgxmrmtdaundurabl.exe
2018-07-01 23:25 - 2018-07-01 23:25 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-07-09 16:55 - 2018-07-09 16:55 - 005843088 _____ () C:\Program Files\AVAST Software\Avast\defs\18070806\algo.dll
2018-07-01 23:29 - 2018-07-01 23:29 - 000928984 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-07-01 23:25 - 2018-07-01 23:25 - 000532696 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-07-01 23:24 - 2018-07-01 23:24 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-07-01 23:25 - 2018-07-01 23:25 - 000985304 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\exefile\shell\open\command: C:\Windows\svchost.com "%1" %* <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2327579781-1938737965-4185811035-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2327579781-1938737965-4185811035-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-05-30 14:58 - 000000826 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2327579781-1938737965-4185811035-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Pedro Chiapetti\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: scpbradserv => 2
MSCONFIG\Services: TeamViewer => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E8A5AF2C-BDA6-4F65-BB60-DA9D733219A4}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{47675A6C-4212-4172-A737-DABB8AC9E458}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4996C94F-8048-4F64-8A08-1ACB45FBC665}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18553DD3-D111-4A21-8960-F23F020C07CA}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CDF1BC69-8741-499C-9D67-C81425B4B9C3}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{938F5226-901F-434D-911B-E24D9C2F8924}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9BB44FB0-FE56-4DF6-BB5C-302CFA9CD7B7}] => (Allow) C:\Users\Pedro Chiapetti\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{14E11F38-A3E8-4A19-87F0-D211C4676F85}] => (Allow) C:\Windows\System32\mstsc.exe
FirewallRules: [{178B2AF7-946C-49FE-A20E-16F721BB20A3}] => (Allow) C:\Windows\System32\mstsc.exe
FirewallRules: [TCP Query User{C9DC2309-3877-4260-9345-258F618ACB10}C:\gitzwc\gunbound.exe] => (Allow) C:\gitzwc\gunbound.exe
FirewallRules: [UDP Query User{CA0B8F96-F4A1-465A-BA7B-D979C5615168}C:\gitzwc\gunbound.exe] => (Allow) C:\gitzwc\gunbound.exe
FirewallRules: [TCP Query User{D21C0512-7FC7-450B-8EC0-D8C70521C33D}C:\gitzwc\gitzgame.exe] => (Allow) C:\gitzwc\gitzgame.exe
FirewallRules: [UDP Query User{CE3A04AD-8AC9-4B2B-8C6D-2E43FA33390C}C:\gitzwc\gitzgame.exe] => (Allow) C:\gitzwc\gitzgame.exe
FirewallRules: [{53C750FC-0513-4208-AF43-10C07EAC7805}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A9282974-F925-4F4B-82EA-CCE249CA908D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B25971C8-038B-42B9-9D49-BFFAFB510D1F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D616534B-4B8A-4061-BEA2-12D12A44226E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{81F3159A-44C4-407A-B3FC-E5A8A2F3D969}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{67F9B4FE-6457-4EE9-B7F8-5BA97189D725}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{2CCEEAF5-31B8-45EC-8EAC-641DDFCF7E80}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [{E1D41060-DBE4-4917-9EA5-8B80DFB81356}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [{828E549B-9271-4CD4-BDB9-FB0DF4EFBE86}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{B1125B63-1F72-4266-B739-195FB62536CE}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{13AD194B-6709-4F3E-9425-0E00F1F3C51A}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.exe
FirewallRules: [{C504E4D4-939E-4921-8527-CC44EBDCDC85}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.exe
FirewallRules: [{8CCCCF8E-A6B7-4671-9E7C-69D798BDEF2F}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.dat
FirewallRules: [{C6483751-6C52-486D-B45A-299D2366837C}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.dat
FirewallRules: [TCP Query User{40B20176-2EEF-4AF0-AB5A-154346A11C00}C:\gitzwc\gitzgame.exe] => (Block) C:\gitzwc\gitzgame.exe
FirewallRules: [UDP Query User{CB0B388B-1596-4244-9487-D7D565084792}C:\gitzwc\gitzgame.exe] => (Block) C:\gitzwc\gitzgame.exe
FirewallRules: [{3F3F3DBA-FACF-46E4-9765-179B6F2E6E2B}] => (Allow) C:\Windows\System32\mstsc.exe
FirewallRules: [{8AC542A6-5824-41D2-9FB5-5017E3E8C45F}] => (Allow) C:\Windows\System32\mstsc.exe
FirewallRules: [{00E27773-4A8E-4643-91C1-B8D0C24B8B82}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{F9AE00B6-1405-41F8-B783-8545433F510F}C:\users\pedro chiapetti\desktop\application\chrome.exe] => (Allow) C:\users\pedro chiapetti\desktop\application\chrome.exe
FirewallRules: [UDP Query User{8E1C91D9-F5E0-4844-B3EA-55862E24AFFD}C:\users\pedro chiapetti\desktop\application\chrome.exe] => (Allow) C:\users\pedro chiapetti\desktop\application\chrome.exe
FirewallRules: [{B97FA720-7C77-48A3-AD85-27495DE9D0D6}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.dat
FirewallRules: [{3C367062-4F61-4BFD-9C68-0D12D0A36E4D}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_x3m4cskztxxx3m4cskzt.dat
FirewallRules: [{C639989B-F30F-45B5-ADF4-27B6AEEE7F32}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{22202BB6-84CC-4A2D-8BD7-ABF8E2E518D5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{59F620C2-2B2E-4AD5-89A5-0A2AE045B8DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A1E1E8E1-7CDD-4BC2-BD7B-6F4E5A7C7444}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{80CAB077-4437-4883-8108-5F3E4C82DD68}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [{1243BC0F-7ECA-4F29-8BAD-A150E0167DB9}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
FirewallRules: [TCP Query User{3E62D6C1-642B-411E-89B5-48756DB18E9D}C:\game\softnyxgame\gunboundls\gunbound.gme] => (Allow) C:\game\softnyxgame\gunboundls\gunbound.gme
FirewallRules: [UDP Query User{FC9F74FB-B941-42BB-A680-787B0352E4C0}C:\game\softnyxgame\gunboundls\gunbound.gme] => (Allow) C:\game\softnyxgame\gunboundls\gunbound.gme
FirewallRules: [{DB6A1161-46C4-48F0-B525-91CACE28A7A7}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{007885D2-4DE8-4F6B-B422-274076E5169F}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{CE8FC33A-3476-4377-8F4E-4FC5A3391DD1}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{7569BE86-6EB8-421E-970B-058125889C09}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{9C8E5E8C-2017-4950-B00A-F6BE4789DEE8}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
FirewallRules: [{CA6ECD27-3D56-4E27-B628-0C038632418D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{42D8514E-5817-4F04-A7F6-7393ECA99827}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C4CB5A3A-9CFA-48A7-81E7-2165E851837A}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{3976C3AB-5C5D-4E5E-8664-AE8B3F77E0A9}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [TCP Query User{055C598B-C57D-4C7E-98B7-A2B351E7849F}C:\users\pedro chiapetti\appdata\local\temp\3582-490\gitzgame.exe] => (Allow) C:\users\pedro chiapetti\appdata\local\temp\3582-490\gitzgame.exe
FirewallRules: [UDP Query User{CDF8B5B1-8D2D-4439-936E-EDBF31514356}C:\users\pedro chiapetti\appdata\local\temp\3582-490\gitzgame.exe] => (Allow) C:\users\pedro chiapetti\appdata\local\temp\3582-490\gitzgame.exe
FirewallRules: [{E689CC8E-5F19-465A-92F6-5A5790A8F97D}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{03E463E5-5105-4691-A539-0022E6E63876}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

==================== Restore Points =========================

05-07-2018 06:12:34 Punto de control programado
09-07-2018 17:16:03 Removed Bonjour
09-07-2018 17:17:15 Removed Apple Mobile Device Support
09-07-2018 17:21:27 Removed iTunes
09-07-2018 17:24:03 Removed Mu

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/09/2018 07:22:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (07/09/2018 07:16:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SNES9X~1.EXE, versión 1.5.3.0, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

Identificador de proceso: 10c8

Hora de inicio: 01d417a6a0dfb2db

Hora de finalización: 32

Ruta de acceso de la aplicación: D:\emulador\SNES9X~1.EXE

Identificador de informe: d08f1b0f-839b-11e8-a70a-78acc05bb4a3

Error: (07/09/2018 05:38:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: explorer.exe, versión: 6.1.7601.23537, marca de tiempo: 0x57c44cc4
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x74806c47
Id. del proceso con errores: 0x15a0
Hora de inicio de la aplicación con errores: 0x01d4179aedca8b92
Ruta de acceso de la aplicación con errores: C:\Windows\SysWOW64\explorer.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: 2bca281a-838e-11e8-a70a-78acc05bb4a3

Error: (07/09/2018 04:53:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (07/08/2018 11:33:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Nombre del módulo con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x00126353
Id. del proceso con errores: 0x16ac
Hora de inicio de la aplicación con errores: 0x01d4169ea74fcc04
Ruta de acceso de la aplicación con errores: C:\Users\Pedro Chiapetti\Desktop\ePSXe.exe
Ruta de acceso del módulo con errores: C:\Users\Pedro Chiapetti\Desktop\ePSXe.exe
Id. del informe: eb2ef381-8291-11e8-b713-78acc05bb4a3

Error: (07/08/2018 11:32:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Nombre del módulo con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x00126353
Id. del proceso con errores: 0x850
Hora de inicio de la aplicación con errores: 0x01d4169e78281706
Ruta de acceso de la aplicación con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Ruta de acceso del módulo con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Id. del informe: c530fb62-8291-11e8-b713-78acc05bb4a3

Error: (07/08/2018 11:31:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Nombre del módulo con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x00126353
Id. del proceso con errores: 0x1b0c
Hora de inicio de la aplicación con errores: 0x01d4169e1174b567
Ruta de acceso de la aplicación con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Ruta de acceso del módulo con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Id. del informe: a95b25e0-8291-11e8-b713-78acc05bb4a3

Error: (07/08/2018 11:28:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Nombre del módulo con errores: ePSXe.exe, versión: 0.0.0.0, marca de tiempo: 0x576aa939
Código de excepción: 0xc0000094
Desplazamiento de errores: 0x00126353
Id. del proceso con errores: 0x1ffc
Hora de inicio de la aplicación con errores: 0x01d4169e06081503
Ruta de acceso de la aplicación con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Ruta de acceso del módulo con errores: C:\Users\Pedro Chiapetti\Desktop\PS1\ePSXe.exe
Id. del informe: 4bbefa4d-8291-11e8-b713-78acc05bb4a3


System errors:
=============
Error: (07/09/2018 07:22:11 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
iSafeKrnlMon

Error: (07/09/2018 07:22:03 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Tibeingshadaing se cerró con el siguiente error:
No se puede encontrar el módulo especificado.

Error: (07/09/2018 07:22:00 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Apple ConfigSet Service se cerró con el siguiente error:
No se puede encontrar el módulo especificado.

Error: (07/09/2018 05:00:16 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: NT AUTHORITY)
Description: El servicio de hora detectó que la hora del sistema debe modificarse en -71784 segundos. El servicio de hora no cambiará la hora del sistema en más de 54000 segundos. Compruebe que la hora y la zona horaria son correctas, y que el origen de la hora time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.168.138.145:123) funciona correctamente.

Error: (07/09/2018 04:53:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
iSafeKrnlMon

Error: (07/09/2018 04:52:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Tibeingshadaing se cerró con el siguiente error:
No se puede encontrar el módulo especificado.

Error: (07/09/2018 04:52:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Apple ConfigSet Service se cerró con el siguiente error:
No se puede encontrar el módulo especificado.

Error: (07/09/2018 04:52:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Apple Mobile Device Service no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.


Windows Defender:
===================================
Date: 2018-07-01 07:12:27.870
Description:
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor!blnk&threatid=227171
Nombre:BrowserModifier:Win32/Sasquor!blnk
Id.:227171
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:containerfile:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk;file:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk->[CMDEmbedded];startup:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
Tipo de detección:Concreto
Origen de detección:Sistema
Estado:Desconocido
Usuario:NT AUTHORITY\Servicio de red
Nombre de proceso:c:\program files\windows defender\MpCmdRun.exe

Date: 2018-07-01 07:12:27.869
Description:
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor!blnk&threatid=227171
Nombre:BrowserModifier:Win32/Sasquor!blnk
Id.:227171
Gravedad:Alta
Categoría:Modificador de explorador
Ruta de acceso encontrada:containerfile:C:\Users\Pedro Chiapetti\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\8e202c89f55fe71d\Google Chrome.lnk;file:C:\Users\Pedro Chiapetti\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\8e202c89f55fe71d\Google Chrome.lnk->[CMDEmbedded]
Tipo de detección:Concreto
Origen de detección:Sistema
Estado:Desconocido
Usuario:NT AUTHORITY\Servicio de red
Nombre de proceso:c:\program files\windows defender\MpCmdRun.exe

CodeIntegrity:
===================================

Date: 2018-07-09 19:40:02.650
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:38:43.427
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:38:38.340
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:38:24.035
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:38:12.743
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:36:38.284
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:36:29.067
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-07-09 19:36:28.138
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Percentage of memory in use: 30%
Total physical RAM: 7989.86 MB
Available physical RAM: 5585.7 MB
Total Virtual: 15977.89 MB
Available Virtual: 13161.93 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:40.7 GB) NTFS
Drive d: () (Fixed) (Total:465.75 GB) (Free:224.57 GB) NTFS

\\?\Volume{c0efeed4-6309-11e6-863d-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CA8BD0A2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité