Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infection is spread by modem, ads pop up and more


  • This topic is locked This topic is locked
29 replies to this topic

#1 VicenteM

VicenteM

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 21 August 2015 - 09:18 AM

Sorry for my english.
Ok first i cant login in bleepingcomputer, msg appear and say "no sing in name entered", so i loggin with my cellphone
The problem: i downloaded some mods for Simcity, after that popups appear in all browsers, in all computers and my cellphone! I guess the "virus" spread by modem. I run avg, malwarebytes, superantispyware and adwcleaner and dont fix anything. HELP PLS
I cant upload frst and addition with my Phone, any suggestions for upload? I think google drive or psstebin?

Edit: Pastebin links
FRST www.pastebin.com/q09rVJ7V
Addition www.pastebin.com/3918f7Y2

Attached Files


Edited by VicenteM, 21 August 2015 - 08:41 PM.


BC AdBot (Login to Remove)

 


#2 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 22 August 2015 - 07:56 PM

Hello VicenteM and welcome to BleepingComputer!                 :)

 

My name is Sirawit and I'm here to help you.

 

Please note that I'm currently in training and my fixes need to be approved first, that may delay our fix a bit, but I will normally reply back in 24 hours.

 

If I don't reply after 3 days, feel free to PM me.                  :)

==========================================================================

Some points for you to keep in mind:

  • Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planned. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Do not attach logs or use code boxes, just copy and paste the text.
  • Periodically update me on the condition of your computer, and provide detail in every post.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 3 days I will bump the topic, if you didn't reply in next 3 days we assume it has been abandoned and I will close it.
  • Once things seem to be working again, please do not abandon the thread. I will give an "all-clean" message at the very end with some additional information on how to stay malware-free.
  • Lastly, I would like to remind you that most members here are volunteers, and sometimes "real life" can get in the way of our malware hunt. I will notify you if I know I will need to be away for longer than 48 hours.

==========================================================================

 

I've submitted my reports to my instructor and will reply back as soon as possible.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#3 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 23 August 2015 - 09:14 AM

Hi VicenteM.

 

What is the make and model of your router?

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#4 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 23 August 2015 - 02:35 PM

 

Hi VicenteM.

 

What is the make and model of your router?

 

Thank you.

 

 

Hi, my modem is Arris TG862G

 

Thanks for your help! :D



#5 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 24 August 2015 - 07:51 AM

Is your Internet Service Provider Comcast?

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#6 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 24 August 2015 - 08:01 AM

No, i from South America



#7 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 24 August 2015 - 09:02 AM

Hi VicenteM.

 

OK, now please login to your router by open your web browser and navigate to 192.168.0.1 and then enter your username and password. The default username is admin and default password is password

 

After you logged in, please navigate and find the settings about Changing your Password and DNS servers settings.

Arris's user manual doesn't state where those settings are located so please check all pages. After that, please capture a screenshot of those settings when you found them.

 

Please tell me if you run into any problems.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#8 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 24 August 2015 - 09:32 AM

Here :D

Thanks for ur help

Attached Files



#9 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 24 August 2015 - 09:35 AM

The DNS settings page is correct, but the password part I mean the password you use to login to the router, not the wifi password. Please check again. :)

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#10 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 24 August 2015 - 09:50 AM

I cant find that but when i try to login in my router the password is not default. The user is another and the password is change everyday, (my internet provider say me that) and send me the password of the day.


Edited by VicenteM, 24 August 2015 - 09:50 AM.


#11 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 25 August 2015 - 08:02 AM

Hi VincenteM.

 

No problem about password then. Now we need to change your DNS server addresses.

 

In the DNS Override section, please enter these info and then save the settings:

  • Primary DNS server IP: 208.67.222.222
  • Secondary DNS server IP: 208.67.220.220

 

After that, please try to browse the web as usual, are there any popups again?

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#12 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 25 August 2015 - 08:17 AM

Hi, i tested for about 5 minutes and no popups. I can loggin in bleepingcomputer in my main pc now(before i cant). So for now its ok, but could not say conclusively that the problem is resolved, keep trying pls dont close the thread :)

This would be the final solution? It will be necessary to run some program? my security and privacy are again safe? I will not have any problems signing in my bank? in steam account?

Thanks for ur help Sirawit :D


Edited by VicenteM, 25 August 2015 - 08:17 AM.


#13 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 25 August 2015 - 09:02 AM

Ok popups is here, when i get in (http://www.gamefaqs.com/boards/930659-diablo-iii/72092380) popup appears

i have image of popup i should upload?



#14 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:07:10 AM

Posted 25 August 2015 - 01:09 PM

Hi VicenteM.

 

I won't close your topic now, we still have more things to do.

 

About your online accounts, to be sure you may consider changing your passwords. I don't think you will have problems signing in since we've removed bad DNS settings.

 

Your popups/logins problems were caused by a malicious DNS server settings in your router. (I got this two times before.)

 

Basically DNS (Domain Name Service) server is the server use to translate website URL into website's IP address. When you use malicious DNS server, your legitimate website URL maybe translate into malicious IP address instead. Since your router is the problem all your devices were affected. But actually none of your devices are infected. After we removed that DNS settings and changed it to legitimate one (OpenDNS). Your problems are gone.

 

Common way for this settings to be changed are default router password, have WAN management enabled, have router's firewall disabled, or outdated firmware. You may want to contact your ISP to see how you can better secured your router without violated their rules. (Firmware upgrade may not be allowed, etc.)

 

------------

 

Maybe that popup is in your cache, let's try this:

 

Please download Minitoolbox and save it to your desktop.

 

Right click at the file and select Run as administrator.

 

In the program window, please select these options and click GO:

  • Flush DNS
  • List IP Configuration

The log file will open after the scan has been finished. Please copy and paste the content of this log into your next reply.

 

-----------------

 

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right-click FRST then click "Run as administrator" (XP users: click run after receipt of Windows Security Warning - Open File).
  • When the tool opens, click Yes to disclaimer.
  • Press the Scan button.
  • When finished, it will produce a log called FRST.txt in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.

Note 2: The first time the tool is run it generates another log (Addition.txt - also located in the same directory the tool was run from). Please also paste that, along with the FRST.txt into your next reply.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#15 VicenteM

VicenteM
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:10 PM

Posted 26 August 2015 - 08:20 AM

Hi, sorry for the delay. I will ask my ISP about router security, but they are quite useless most of the time.

 

Ok the files

 

------------------------ MTBT.txt ------------------------

 

MiniToolBox by Farbar  Version: 25-07-2015 01
Ran by Vicente (administrator) on 26-08-2015 at 10:03:14
Running from "C:\Users\Vicente\Desktop"
Microsoft Windows 7 Ultimate   (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configuraci�n IP de Windows

Se vaci� correctamente la cach� de resoluci�n de DNS.
========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Conexión de área local (Connected)


# ----------------------------------
# Configuraci�n de IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Conexi�n de �rea local 3" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# Fin de la configuraci�n de IPv4



Configuraci�n IP de Windows

   Nombre de host. . . . . . . . . : Vicente-PC
   Sufijo DNS principal  . . . . . :
   Tipo de nodo. . . . . . . . . . : difusi�n
   Enrutamiento IP habilitado. . . : no
   Proxy WINS habilitado . . . . . : no

Adaptador de Ethernet Conexi�n de �rea local:

   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Direcci�n f�sica. . . . . . . . . . . . . : 20-CF-30-E6-65-1F
   DHCP habilitado . . . . . . . . . . . . . : s�
   Configuraci�n autom�tica habilitada . . . : s�
   V�nculo: direcci�n IPv6 local. . . : fe80::3d66:f88b:8fd9:fdd0%11(Preferido)
   Direcci�n IPv4. . . . . . . . . . . . . . : 192.168.0.3(Preferido)
   M�scara de subred . . . . . . . . . . . . : 255.255.255.0
   Concesi�n obtenida. . . . . . . . . . . . : mi�rcoles, 26 de agosto de 2015 9:53:55
   La concesi�n expira . . . . . . . . . . . : mi�rcoles, 26 de agosto de 2015 10:53:54
   Puerta de enlace predeterminada . . . . . : 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . : 192.168.0.1
   IAID DHCPv6 . . . . . . . . . . . . . . . : 237031216
   DUID de cliente DHCPv6. . . . . . . . . . : 00-01-00-01-14-82-99-79-20-CF-30-E6-65-1F
   Servidores DNS. . . . . . . . . . . . . . : 190.160.0.15
                                       200.30.192.14
   NetBIOS sobre TCP/IP. . . . . . . . . . . : habilitado

Adaptador de t�nel isatap.{5A4615D2-3557-4767-B1A9-9F6C2163DF28}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Adaptador ISATAP de Microsoft
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�

Adaptador de t�nel Conexi�n de �rea local* 4:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec�fico para la conexi�n. . :
   Descripci�n . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Direcci�n f�sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci�n autom�tica habilitada . . . : s�
Servidor:  pc-15-0-160-190.cm.vtr.net
Address:  190.160.0.15

Nombre:  google.com
Addresses:  2800:3f0:4003:c00::8a
      190.45.0.212
      190.45.0.186
      190.45.0.161
      190.45.0.251
      190.45.0.238
      190.45.0.199
      190.45.0.213
      190.45.0.187
      190.45.0.148
      190.45.0.225
      190.45.0.160
      190.45.0.200
      190.45.0.174
      190.45.0.173
      190.45.0.226
      190.45.0.239


Haciendo ping a google.com [190.45.0.251] con 32 bytes de datos:
Respuesta desde 190.45.0.251: bytes=32 tiempo=10ms TTL=60
Respuesta desde 190.45.0.251: bytes=32 tiempo=10ms TTL=60

Estad�sticas de ping para 190.45.0.251:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 10ms, M�ximo = 10ms, Media = 10ms
Servidor:  pc-15-0-160-190.cm.vtr.net
Address:  190.160.0.15

Nombre:  yahoo.com
Addresses:  2001:4998:44:204::a7
      2001:4998:c:a06::2:4008
      2001:4998:58:c02::a9
      98.138.253.109
      98.139.183.24
      206.190.36.45


Haciendo ping a yahoo.com [98.139.183.24] con 32 bytes de datos:
Respuesta desde 98.139.183.24: bytes=32 tiempo=172ms TTL=50
Respuesta desde 98.139.183.24: bytes=32 tiempo=175ms TTL=50

Estad�sticas de ping para 98.139.183.24:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 172ms, M�ximo = 175ms, Media = 173ms

Haciendo ping a 127.0.0.1 con 32 bytes de datos:
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128

Estad�sticas de ping para 127.0.0.1:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M�nimo = 0ms, M�ximo = 0ms, Media = 0ms
===========================================================================
ILista de interfaces
 11...20 cf 30 e6 65 1f ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Adaptador ISATAP de Microsoft
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Tabla de enrutamiento
===========================================================================
Rutas activas:
Destino de red        M�scara de red   Puerta de enlace   Interfaz  M�trica
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     10
        127.0.0.0        255.0.0.0      En v�nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      En v�nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      En v�nculo       192.168.0.3    266
      192.168.0.3  255.255.255.255      En v�nculo       192.168.0.3    266
    192.168.0.255  255.255.255.255      En v�nculo       192.168.0.3    266
        224.0.0.0        240.0.0.0      En v�nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      En v�nculo       192.168.0.3    266
  255.255.255.255  255.255.255.255      En v�nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      En v�nculo       192.168.0.3    266
===========================================================================
Rutas persistentes:
  Ninguno

IPv6 Tabla de enrutamiento
===========================================================================
Rutas activas:
 Cuando destino de red m�trica      Puerta de enlace
  1    306 ::1/128                  En v�nculo
 11    266 fe80::/64                En v�nculo
 11    266 fe80::3d66:f88b:8fd9:fdd0/128
                                    En v�nculo
  1    306 ff00::/8                 En v�nculo
 11    266 ff00::/8                 En v�nculo
===========================================================================
Rutas persistentes:
 Cuando destino de red m�trica      Puerta de enlace
  0 4294967295 2620:9b::/96             En v�nculo
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================

**** End of log ****

 

------------------------ MTB.txt END ------------------------

 

------------------------ FRST.txt ------------------------

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-08-2015 02
Ran by Vicente (administrator) on VICENTE-PC (26-08-2015 10:10:06)
Running from C:\Users\Vicente\Desktop
Loaded Profiles: Vicente (Available Profiles: Vicente)
Platform: Windows 7 Ultimate (X64) Language: Español (España, internacional)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Spotify Ltd) C:\Users\Vicente\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Logitech Inc.) C:\Program Files\SetPoint II\SetPointII.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Logitech Inc.) C:\Windows\LOGI_MWX.EXE
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
(Farbar) C:\Users\Vicente\Desktop\FRST64(1).exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-14] (Logitech Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Logitech Utility] => C:\Windows\LOGI_MWX.EXE [19968 2003-11-07] (Logitech Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-07-26] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-04] (Autodesk Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3780520 2015-07-31] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564016 2013-07-26] (Samsung)
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\Run: [Spotify Web Helper] => C:\Users\Vicente\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1964088 2015-03-18] (Spotify Ltd)
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7930136 2015-07-30] (SUPERAntiSpyware)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetPointII.lnk [2012-12-07]
ShortcutTarget: SetPointII.lnk -> C:\Program Files\SetPoint II\SetPointII.exe (Logitech Inc.)
Startup: C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla y Selector de OneNote 2010.lnk [2015-03-26]
ShortcutTarget: Recorte de pantalla y Selector de OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2135426943-1657414351-849837200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={83EE4AA0-B4C8-407C-A6C0-8F8EBE821D0D}&mid=ffe29da92fe347d6a551f18676028cec-09be01ebb47716ae31a1e867d57fd56df605afb8&lang=es&ds=AVG&coid=avgtbavg&cmpid=0415av&pr=fr&d=2015-05-02 01:46:19&v=4.1.0.411&pid=wtu&sg=&sap=hp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-15] (Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión de Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-15] (Oracle Corporation)
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/es/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-04] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-04] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-04] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-04] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 190.160.0.15 200.30.192.14
Tcpip\..\Interfaces\{20EDD49E-8253-4D92-8C86-47B5800D283F}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{5A4615D2-3557-4767-B1A9-9F6C2163DF28}: [DhcpNameServer] 190.160.0.15 200.30.192.14

FireFox:
========
FF ProfilePath: C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default
FF Homepage: www.google.com
FF NetworkProxy: "backup.ftp", "23.21.173.215:8080"
FF NetworkProxy: "backup.ftp_port", 0
FF NetworkProxy: "backup.socks", "23.21.173.215:8080"
FF NetworkProxy: "backup.socks_port", 0
FF NetworkProxy: "backup.ssl", "23.21.173.215:8080"
FF NetworkProxy: "backup.ssl_port", 0
FF NetworkProxy: "ftp", "23.21.173.215:8080"
FF NetworkProxy: "http", "23.21.173.215:8080"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "23.21.173.215:8080"
FF NetworkProxy: "ssl", "23.21.173.215:8080"
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-07-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll [2014-01-28] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [2013-05-22] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll [2013-05-30] (ESN Social Software AB)
FF Plugin-x32: @fxinteractive.com/fxplanet -> C:\ProgramData\FXWebPlayer\npfxplanet.dll [2012-01-07] (FX Interactive)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll [2012-03-29] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Vicente\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-03-10] (Raidcall)
FF Plugin-x32: @raidcall.kr/RCplugin -> C:\Users\Vicente\AppData\Roaming\RCKR\plugins\nprcplugin.dll [2012-08-09] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4092550\npmathplugin.dll [2013-02-07] (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2135426943-1657414351-849837200-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Vicente\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-09] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2135426943-1657414351-849837200-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-08-16] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-03-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-03-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-03-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-03-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-03-11] (Apple Inc.)
FF Extension: ColorfulTabs - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-08-25]
FF Extension: pearltrees - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\collector@broceliand.fr.xpi [2014-05-11]
FF Extension: Classic Toolbar Buttons - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\CSTBB@NArisT2_Noia4dev.xpi [2014-05-11]
FF Extension: MEGA - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\firefox@mega.co.nz.xpi [2014-07-11]
FF Extension: Movable Firefox Button - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\movableAppButton@Merci.chao.xpi [2011-03-28]
FF Extension: Tab Scope - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\tabscope@xuldev.org.xpi [2014-05-11]
FF Extension: Stylish - C:\Users\Vicente\AppData\Roaming\Mozilla\Firefox\Profiles\92c3h02t.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-05-11]

Chrome:
=======
CHR Profile: C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-23]
CHR Extension: (Google Drive) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-23]
CHR Extension: (YouTube) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-23]
CHR Extension: (Google Search) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-23]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]
CHR Extension: (Gmail) - C:\Users\Vicente\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3633576 2015-07-31] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-07-31] (AVG Technologies CZ, s.r.o.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2014-09-24] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1718840 2015-07-08] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6806072 2015-07-16] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-27] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4323256 2011-03-28] (INCA Internet Co., Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-27] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-14] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-02] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1195920 2015-07-22] ()

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [94208 2013-09-24] (Advanced Micro Devices) [File not signed]
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312752 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [245680 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [281568 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-17] (DT Soft Ltd)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\EVGA Precision X\RTCore64.sys [15176 2013-02-21] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-07-27] (Duplex Secure Ltd.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2009-07-13] (Microsoft Corporation)
U3 a2i08596; C:\Windows\System32\Drivers\a2i08596.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
U3 a7r7pvze; C:\Windows\System32\Drivers\a7r7pvze.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 dump_wmimmc; \??\C:\Program Files (x86)\NCsoft\Lineage II\system\GameGuard\dump_wmimmc.sys [X]
S3 EverestDriver; \??\C:\Users\Vicente\Downloads\everestultimate530\kerneld.amd64 [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-26 10:09 - 2015-08-26 10:09 - 00000000 ____D C:\Users\Vicente\Desktop\Viejo
2015-08-26 10:04 - 2015-08-26 10:04 - 02186752 _____ (Farbar) C:\Users\Vicente\Desktop\FRST64(1).exe
2015-08-26 10:03 - 2015-08-26 10:03 - 00007839 _____ C:\Users\Vicente\Desktop\MTB.txt
2015-08-26 10:02 - 2015-08-26 10:02 - 00891392 _____ (Farbar) C:\Users\Vicente\Desktop\MiniToolBox.exe
2015-08-25 10:24 - 2015-04-30 15:34 - 00000000 ____D C:\Users\Vicente\Desktop\Chroma.Squad
2015-08-25 10:23 - 2015-08-25 10:01 - 140512059 ____R C:\Users\Vicente\Desktop\Chroma.Squad.zip
2015-08-25 05:07 - 2015-08-25 05:19 - 00018769 _____ C:\Users\Vicente\Desktop\Copia de 20151ICN321S150_Notas_Parciales.xlsx
2015-08-24 09:49 - 2015-08-24 09:49 - 00021182 _____ C:\Users\Vicente\Downloads\438621.rar
2015-08-23 00:25 - 2015-08-23 00:25 - 00001556 _____ C:\Users\Vicente\Desktop\Noticias sg.txt
2015-08-22 05:35 - 2015-08-22 05:35 - 00000000 ____D C:\Users\Vicente\Documents\SimCity
2015-08-22 05:05 - 2015-08-22 05:06 - 00000000 ____D C:\Users\Vicente\Desktop\backup
2015-08-22 03:04 - 2015-08-22 05:34 - 00000000 ____D C:\Users\Vicente\Desktop\SIMCITY2013MODS
2015-08-21 23:17 - 2015-08-21 23:17 - 00025339 _____ C:\ComboFix.txt
2015-08-21 23:00 - 2011-06-26 02:45 - 00256000 _____ C:\Windows\PEV.exe
2015-08-21 23:00 - 2010-11-07 13:20 - 00208896 _____ C:\Windows\MBR.exe
2015-08-21 23:00 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-08-21 23:00 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-08-21 23:00 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-08-21 23:00 - 2000-08-30 20:00 - 00098816 _____ C:\Windows\sed.exe
2015-08-21 23:00 - 2000-08-30 20:00 - 00080412 _____ C:\Windows\grep.exe
2015-08-21 23:00 - 2000-08-30 20:00 - 00068096 _____ C:\Windows\zip.exe
2015-08-21 22:58 - 2015-08-21 23:17 - 00000000 ____D C:\Qoobox
2015-08-21 22:58 - 2015-08-21 23:15 - 00000000 ____D C:\Windows\erdnt
2015-08-21 22:55 - 2015-08-21 22:55 - 05635234 ____R (Swearware) C:\Users\Vicente\Downloads\ComboFix.exe
2015-08-21 21:17 - 2015-08-26 09:54 - 00001568 _____ C:\Windows\setupact.log
2015-08-21 21:17 - 2015-08-21 23:34 - 00001128 _____ C:\Windows\PFRO.log
2015-08-21 21:17 - 2015-08-21 21:17 - 00533288 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-21 21:17 - 2015-08-21 21:17 - 00000000 _____ C:\Windows\setuperr.log
2015-08-21 09:48 - 2015-08-26 10:10 - 00026132 _____ C:\Users\Vicente\Desktop\FRST.txt
2015-08-21 09:47 - 2015-08-21 09:47 - 00077014 _____ C:\Users\Vicente\Downloads\Addition.txt
2015-08-21 09:46 - 2015-08-26 10:10 - 00000000 ____D C:\FRST
2015-08-21 09:46 - 2015-08-21 09:47 - 00045150 _____ C:\Users\Vicente\Downloads\FRST.txt
2015-08-21 09:45 - 2015-08-21 09:45 - 02173952 _____ (Farbar) C:\Users\Vicente\Downloads\FRST64.exe
2015-08-21 09:45 - 2015-08-21 09:45 - 00151448 _____ C:\Users\Vicente\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-21 09:34 - 2015-08-21 09:34 - 00027084 _____ C:\Users\Vicente\Desktop\hijackthis.log
2015-08-21 09:30 - 2015-08-21 09:33 - 00028439 _____ C:\Users\Vicente\Downloads\hijackthis.log
2015-08-21 09:28 - 2015-08-21 09:28 - 00388608 _____ (Trend Micro Inc.) C:\Users\Vicente\Desktop\HijackThis.exe
2015-08-21 01:42 - 2015-08-21 09:09 - 00000000 ____D C:\AdwCleaner
2015-08-21 01:41 - 2015-08-21 01:41 - 01605632 _____ C:\Users\Vicente\Desktop\adwcleaner_5.003.exe
2015-08-21 01:23 - 2015-08-25 17:23 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 9a583171-86e2-4cbb-ac88-95af8735f581.job
2015-08-21 01:23 - 2015-08-23 02:00 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task d6e388ca-962c-4349-84f3-b8b3d19c3ca2.job
2015-08-21 01:23 - 2015-08-21 22:13 - 00001852 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-08-21 01:23 - 2015-08-21 01:23 - 00003596 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task d6e388ca-962c-4349-84f3-b8b3d19c3ca2
2015-08-21 01:23 - 2015-08-21 01:23 - 00003522 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 9a583171-86e2-4cbb-ac88-95af8735f581
2015-08-21 01:23 - 2015-08-21 01:23 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\SUPERAntiSpyware.com
2015-08-21 01:23 - 2015-08-21 01:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-08-21 01:22 - 2015-08-21 01:23 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-08-21 01:22 - 2015-08-21 01:22 - 23153336 _____ (SUPERAntiSpyware) C:\Users\Vicente\Downloads\SAS_06376.EXE
2015-08-21 01:22 - 2015-08-21 01:22 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2015-08-20 20:03 - 2015-08-21 10:12 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-20 20:02 - 2015-08-20 20:02 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-20 20:02 - 2015-08-20 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-20 20:02 - 2015-08-20 20:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-20 20:02 - 2015-08-20 20:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-20 20:02 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-20 20:02 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-20 20:02 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-20 19:50 - 2015-08-20 19:50 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Vicente\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-19 01:20 - 2015-08-19 01:20 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BSC
2015-08-19 01:20 - 2015-08-19 01:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BSC
2015-08-19 01:16 - 2015-08-19 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Network Addon Mod
2015-08-18 19:22 - 2015-08-18 19:22 - 00159177 _____ C:\Users\Vicente\Desktop\chilectra 1808.xps
2015-08-18 14:37 - 2015-08-18 14:37 - 00001272 _____ C:\Users\Public\Desktop\SimCity™.lnk
2015-08-17 19:21 - 2015-08-17 19:21 - 00107623 _____ C:\Users\Vicente\Desktop\Grafica_dibujo2.vsdx
2015-08-17 19:19 - 2015-08-17 19:21 - 00101947 _____ C:\Users\Vicente\Desktop\Grafica_dibujo1.vsdx
2015-08-17 19:15 - 2015-08-17 19:15 - 00107641 _____ C:\Users\Vicente\Desktop\Dibujo2.vsdx
2015-08-17 19:14 - 2015-08-17 19:15 - 00101951 _____ C:\Users\Vicente\Desktop\Dibujo1.vsdx
2015-08-17 00:05 - 2015-08-17 00:55 - 00000000 ____D C:\Users\Vicente\Desktop\RimWorld.Alpha.11b
2015-08-16 23:36 - 2015-08-16 23:48 - 00000000 ____D C:\Users\Vicente\Desktop\Rimworld mods
2015-08-16 22:56 - 2015-08-16 22:55 - 63363562 ____R C:\Users\Vicente\Desktop\RimWorld.Alpha.11b.zip
2015-08-16 17:45 - 2015-08-24 09:42 - 00000000 ____D C:\Users\Vicente\Desktop\Peluqueria
2015-08-15 22:03 - 2015-08-15 22:07 - 00000000 ____D C:\Users\Vicente\Desktop\Summer.Days.with.Coo.2007.720p.BluRay.x264-CtrlHD [PublicHD]
2015-08-15 22:03 - 2015-08-15 22:06 - 00000000 ____D C:\Users\Vicente\Desktop\Grave of the Fireflies (1988) 1080p [Jpn & Eng] Blu-ray (Studio Ghibli)
2015-08-15 01:10 - 2015-08-15 12:21 - 00000000 ____D C:\Users\Vicente\Desktop\Jemba
2015-08-14 13:10 - 2015-08-17 22:49 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\Opera Software
2015-08-14 13:10 - 2015-08-17 22:49 - 00000000 ____D C:\Users\Vicente\AppData\Local\Opera Software
2015-08-14 13:09 - 2015-08-17 22:49 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-14 13:09 - 2015-08-14 13:09 - 00001085 _____ C:\Users\Vicente\Desktop\Cheat Engine.lnk
2015-08-14 13:09 - 2015-08-14 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-08-14 13:09 - 2015-08-14 13:09 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4
2015-08-14 09:59 - 2015-08-20 19:47 - 00000000 ____D C:\Users\Vicente\Desktop\Encuesta
2015-08-14 05:07 - 2015-08-21 09:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-14 04:09 - 2015-08-14 04:09 - 00000000 ____D C:\Users\Vicente\Desktop\Prison.Architect.Alpha.35
2015-08-14 04:09 - 2015-08-14 04:08 - 167285126 ____R C:\Users\Vicente\Desktop\Prison.Architect.Alpha.35.zip
2015-08-13 23:38 - 2015-08-12 22:46 - 1763349085 ____R C:\Users\Vicente\Desktop\Aloha.2015.1080p.BluRay.x264.YIFY.mp4
2015-08-13 15:34 - 2015-08-13 15:34 - 00034743 _____ C:\Users\Vicente\Downloads\Vicente.xlsx
2015-08-13 00:00 - 2015-08-16 23:59 - 00000000 ____D C:\Users\Vicente\Desktop\Nebraska (2013)
2015-08-12 20:35 - 2015-08-12 20:35 - 00017750 _____ C:\Users\Vicente\Desktop\Crusader.xlsx
2015-08-12 14:31 - 2015-08-12 14:32 - 01459730 _____ C:\Users\Vicente\Downloads\LachhhAndFriendsRPG.air
2015-08-08 02:43 - 2015-08-08 13:19 - 00000000 ____D C:\Users\Vicente\Desktop\Nueva carpeta
2015-08-08 02:26 - 2015-08-08 02:26 - 00067597 _____ C:\Users\Vicente\Downloads\Advanced blacksmith-14-1-0.rar
2015-08-08 02:19 - 2015-08-08 02:19 - 00001639 _____ C:\Users\Public\Desktop\Banished.lnk
2015-08-08 01:45 - 2015-08-08 01:56 - 00000000 ____D C:\Users\Vicente\AppData\Local\Anno Online
2015-08-06 01:44 - 2015-08-06 01:44 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\com.playsaurus.heroclicker
2015-08-04 16:46 - 2015-08-04 16:40 - 00027759 _____ C:\Users\Vicente\Desktop\Para webeo.xlsx
2015-08-04 13:18 - 2015-08-04 13:47 - 05246976 _____ C:\Users\Vicente\Desktop\Aplicacion II.accdb
2015-08-04 13:18 - 2015-08-04 13:21 - 42528768 _____ C:\Users\Vicente\Desktop\Aplicacion II_be.accdb
2015-08-04 13:17 - 2015-08-04 13:17 - 03508517 _____ C:\Users\Vicente\Desktop\Aplicacion II.zip
2015-08-03 22:26 - 2015-08-03 22:26 - 00288115 _____ C:\Users\Vicente\Downloads\424855.rar
2015-08-03 22:26 - 2015-08-03 22:26 - 00277240 _____ C:\Users\Vicente\Downloads\420015(2).rar
2015-08-03 22:26 - 2015-08-03 22:26 - 00277240 _____ C:\Users\Vicente\Downloads\420015(1).rar
2015-08-03 21:10 - 2015-08-03 21:11 - 00277240 _____ C:\Users\Vicente\Downloads\420015.rar
2015-08-01 13:37 - 2015-08-04 09:55 - 00000981 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-07-31 13:07 - 2015-07-31 13:07 - 00022967 _____ C:\Users\Vicente\Downloads\bbdd Estudio Maquinaria - Vicente(1).xlsx
2015-07-31 03:40 - 2015-07-31 20:37 - 00009017 _____ C:\Users\Vicente\Desktop\123.txt
2015-07-30 16:27 - 2015-07-30 16:27 - 00022967 _____ C:\Users\Vicente\Downloads\bbdd Estudio Maquinaria - Vicente.xlsx
2015-07-30 16:11 - 2015-07-30 16:11 - 00037759 _____ C:\Users\Vicente\Downloads\298378.rar
2015-07-30 16:05 - 2015-08-25 04:33 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\vlc
2015-07-30 15:53 - 2015-07-30 15:53 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-07-30 15:27 - 2015-07-30 15:27 - 00040098 _____ C:\Users\Vicente\Downloads\375774.zip
2015-07-30 13:26 - 2015-07-30 13:26 - 00209493 _____ C:\Users\Vicente\Desktop\claro jose 3007.xps
2015-07-30 09:56 - 2015-07-30 09:56 - 00000000 ____D C:\Users\Vicente\Desktop\Varios
2015-07-30 09:28 - 2015-07-30 09:30 - 00000000 ____D C:\Users\Vicente\Desktop\Julio
2015-07-30 09:26 - 2015-07-30 09:30 - 00000000 ____D C:\Users\Vicente\Desktop\Cosas 2
2015-07-30 09:23 - 2015-07-30 09:35 - 00000000 ____D C:\Users\Vicente\Desktop\USM2
2015-07-28 11:02 - 2015-07-28 11:02 - 00312752 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2015-07-28 11:01 - 2015-07-28 11:01 - 00245680 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-26 09:59 - 2010-11-27 00:19 - 00000000 ____D C:\ProgramData\MFAData
2015-08-26 09:57 - 2013-05-21 23:03 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-26 09:57 - 2010-11-27 06:45 - 01821488 _____ C:\Windows\WindowsUpdate.log
2015-08-26 09:53 - 2015-03-01 17:46 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-26 09:53 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-26 00:30 - 2009-07-14 00:45 - 00019968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-26 00:30 - 2009-07-14 00:45 - 00019968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-26 00:26 - 2012-03-11 21:43 - 00000838 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-26 00:18 - 2014-03-02 15:50 - 00000000 ____D C:\Users\Vicente\AppData\Local\Battle.net
2015-08-25 23:44 - 2013-05-21 23:03 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-25 10:09 - 2011-04-20 16:17 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\uTorrent
2015-08-25 07:06 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\system32\NDF
2015-08-25 05:04 - 2014-05-04 23:04 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\foobar2000
2015-08-25 04:33 - 2015-06-12 20:11 - 00000000 ____D C:\Users\Vicente\Desktop\po
2015-08-24 19:50 - 2013-05-22 22:08 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-23 02:19 - 2009-07-14 01:08 - 00032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-23 02:03 - 2013-02-20 09:06 - 00000000 ____D C:\ProgramData\Origin
2015-08-21 23:17 - 2009-07-13 23:20 - 00000000 __RHD C:\Users\Default
2015-08-21 23:14 - 2009-07-13 22:34 - 00000215 _____ C:\Windows\system.ini
2015-08-21 09:03 - 2013-02-21 16:33 - 00000000 ____D C:\Windows\Minidump
2015-08-21 01:31 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\Cursors
2015-08-20 06:19 - 2015-03-31 21:52 - 00000000 ____D C:\Users\Vicente\Documents\Archivos de Outlook
2015-08-19 22:41 - 2012-09-06 21:23 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\AIMP3
2015-08-19 22:40 - 2014-03-02 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-08-19 22:40 - 2010-11-28 00:06 - 00000000 ___RD C:\Users\Vicente\Desktop\Cosas
2015-08-19 22:29 - 2015-07-16 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-08-19 22:29 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-19 21:48 - 2014-09-18 23:45 - 00000406 _____ C:\Users\Vicente\Desktop\AutoClick.ini
2015-08-17 23:29 - 2012-10-28 01:24 - 00000000 ____D C:\Users\Vicente\AppData\Local\Facebook
2015-08-17 22:48 - 2010-11-26 23:52 - 00001393 _____ C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2015-08-17 22:48 - 2010-11-26 23:51 - 00001427 _____ C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-15 12:14 - 2012-04-25 08:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-15 04:16 - 2014-03-16 19:57 - 00000000 ____D C:\Users\Vicente\AppData\Local\Spotify
2015-08-15 03:57 - 2014-03-16 19:10 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\Spotify
2015-08-14 22:32 - 2013-02-20 09:06 - 00000000 ____D C:\Program Files (x86)\Origin
2015-08-14 10:44 - 2013-01-22 12:23 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\TeamViewer
2015-08-12 14:26 - 2012-03-11 21:43 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-12 14:26 - 2012-03-11 21:43 - 00003776 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-12 14:26 - 2012-03-04 14:05 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-08 02:19 - 2015-07-16 22:01 - 00000000 ____D C:\GOG Games
2015-08-08 01:37 - 2013-05-22 23:01 - 00000000 ____D C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-04 09:55 - 2015-03-05 12:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-07-30 16:39 - 2015-04-06 17:02 - 00000000 ____D C:\Users\Vicente\Desktop\Python
2015-07-30 13:27 - 2015-03-16 13:45 - 00000000 ____D C:\Users\Vicente\Desktop\Cuentas

==================== Files in the root of some directories =======

2011-06-21 23:30 - 2011-12-24 17:12 - 0000363 _____ () C:\Users\Vicente\AppData\Roaming\Solve Elec 2.5 Prefs
2012-11-18 22:21 - 2012-11-26 20:10 - 0003584 _____ () C:\Users\Vicente\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-31 16:57 - 2013-08-31 16:57 - 0000095 _____ () C:\Users\Vicente\AppData\Local\fusioncache.dat
2013-03-06 20:15 - 2013-03-06 20:15 - 0007602 _____ () C:\Users\Vicente\AppData\Local\Resmon.ResmonCfg
2012-11-02 03:14 - 2013-10-19 15:47 - 0023237 _____ () C:\Users\Vicente\AppData\Local\soulseek-client.dat
2013-10-19 15:48 - 2013-10-19 15:48 - 0015380 _____ () C:\Users\Vicente\AppData\Local\soulseek-client.dat.1382212123505
2013-10-19 15:48 - 2013-10-19 15:48 - 0015380 _____ () C:\Users\Vicente\AppData\Local\soulseek-client.dat.1382212134039
2012-08-23 19:00 - 2012-06-24 19:00 - 0000032 ____R () C:\ProgramData\hash.dat

Files to move or delete:
====================
C:\ProgramData\hash.dat


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-22 12:17

==================== End of FRST.txt ============================

 

------------------------ FRST.txt END ------------------------

 

------------------------ Addition.txt ------------------------

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-08-2015 02
Ran by Vicente (2015-08-26 10:10:34)
Running from C:\Users\Vicente\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2135426943-1657414351-849837200-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2135426943-1657414351-849837200-1004 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2135426943-1657414351-849837200-1002 - Limited - Enabled)
Invitado (S-1-5-21-2135426943-1657414351-849837200-501 - Limited - Disabled)
Vicente (S-1-5-21-2135426943-1657414351-849837200-1001 - Administrator - Enabled) => C:\Users\Vicente

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"FIFA 14" (HKLM-x32\...\{6049054B-DB11-48E1-A583-9A565D5C8856}_is1) (Version: 1.3.0.0 - )
µTorrent (HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4512 - ABBYY Software House)
Actualización de NVIDIA 2.4.1.21 (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Actualización del driver del escáner EPSON Stylus CX5600 Series (HKLM-x32\...\{116D5112-0717-4411-A516-43468EF26D73}) (Version:  - )
Actualización para Microsoft Outlook Social Connector (KB2289116) (HKLM-x32\...\{90140000-001A-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{843EF293-E568-4D2D-B2D4-A4DC5513BE38}) (Version:  - Microsoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.6 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Adventures of Shuggy (HKLM-x32\...\Steam App 211440) (Version:  - Smudged Cat Games Ltd)
AIMP2: Audio Tools (HKLM-x32\...\AIMP2at) (Version:  - AIMP DevTeam)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1350, 16.06.2014 - AIMP DevTeam)
AMIP (remove only) (HKLM-x32\...\AMIP) (Version:  - )
Analizador y SDK de MSXML 4.0 SP2 (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Anno 2070 (HKLM-x32\...\Steam App 48240) (Version:  - BlueByte)
Anno Online (HKLM-x32\...\Steam App 336510) (Version:  - Blue Byte)
Aplicaciones destacadas de Autodesk (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
App Manager de Autodesk (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft PhotoImpression 6 (HKLM-x32\...\{D03E7B00-CA85-4684-9321-1888873C34BD}) (Version: 6 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 - Michael Tippach)
AutoCAD 2015 - Español (Spanish) (Version: 20.0.210.0 - Autodesk) Hidden
AutoCAD 2015 - Español (Spanish) (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015  Language Pack - Español (Spanish) (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk AutoCAD 2015 - Español (Spanish) (HKLM\...\AutoCAD 2015 - Español (Spanish)) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD 2015 - Español (Spanish) SP2 (HKLM\...\AutoCAD 2015 - Español (Spanish) SP2) (Version: 20.0.210.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6125 - AVG Technologies)
AVG 2015 (Version: 15.0.4409 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6125 - AVG Technologies) Hidden
AVG PC Tuneup (HKLM-x32\...\{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1) (Version: 10.0.0.27 - AVG)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.5.143 - AVG Technologies)
Banished (HKLM-x32\...\1207660783_is1) (Version: 2.3.0.7 - GOG.com)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.1.7 - EA Digital Illusions CE AB)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
Caesar 4 (HKLM-x32\...\Caesar 4_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Canyon Capers (HKLM-x32\...\Steam App 275490) (Version:  - Crazy Moo Games)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - )
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Compresor WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )
CPUID CPU-Z 1.63.0 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
Dead Space™ (HKLM-x32\...\{6E6F22D7-8AD6-4A87-9A47-733E6E996F50}) (Version: 1.0.0.222 - Electronic Arts)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version:  - Blizzard Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
East India Company Gold (HKLM-x32\...\Steam App 254000) (Version:  - )
Endless Legend (HKLM-x32\...\Steam App 289130) (Version:  - AMPLITUDE Studios)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
EVGA Precision X 4.0.0 (HKLM-x32\...\PrecisionX) (Version: 4.0.0 - EVGA Corporation)
Far Cry 3 - Map Editor (HKLM-x32\...\Steam App 226470) (Version:  - Ubisoft)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version:  - FX Interactive) <==== ATTENTION
Game Dev Tycoon versión 1.4.5 (HKLM-x32\...\{5BBB8682-1335-410F-A79F-8E5611A54BD0}_is1) (Version: 1.4.5 - Greenheart Games Pty. Ltd.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Garry)
Geeks3D.com FurMark 1.10.5 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D.com)
GlassFish Server Open Source Edition 4.1 (HKLM\...\nbi-glassfish-mod-4.1.0.13.0) (Version:  - )
Gnomoria (HKLM-x32\...\Steam App 224500) (Version:  - Robotronic Games)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Importación de SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java SE Development Kit 8 Update 40 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180400}) (Version: 8.0.400.26 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version:  - AppWork UG (haftungsbeschränkt))
JetBrains PyCharm Community Edition 4.0.6 (HKLM-x32\...\PyCharm Community Edition 4.0.6) (Version: 139.1659 - JetBrains s.r.o.)
Knights and Merchants (HKLM-x32\...\Steam App 253900) (Version:  - Topware Interactive)
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
League of Legends (x32 Version: 1.3 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech MouseWare 9.79  (HKLM-x32\...\{5809E7CF-4DCF-11D4-9875-00105ACE7734}) (Version:  - )
Logitech SetPoint 5.20 (HKLM\...\{D3120436-1358-4253-9EB2-257FFE8CE1D9}) (Version: 5.20 - Logitech)
Los Sims™ 3 ¡Menuda familia! (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Los Sims™ 3 ¡Quemando rueda! Accesorios (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Los Sims™ 3 ¡Vaya fauna! (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Los Sims™ 3 Aventura en la Isla (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Los Sims™ 3 Criaturas Sobrenaturales (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Los Sims™ 3 De Cine Accesorios (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts)
Los Sims™ 3 Diesel Accesorios (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Los Sims™ 3 Diseño y Tecnología Accesorios (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Los Sims™ 3 Hacia el Futuro (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts)
Los Sims™ 3 Katy Perry Dulce Tentación (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Los Sims™ 3 LOS '70 '80 '90 Accesorios (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
Los Sims™ 3 Movida en la facultad (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
Los Sims™ 3 Patios y Jardines Accesorios (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Los Sims™ 3 Salto a la fama (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Los Sims™ 3 Suite de ensueño Accesorios (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
Los Sims™ 3 Triunfadores (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Los Sims™ 3 Trotamundos (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Los Sims™ 3 Vida en la ciudad Accesorios (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Los Sims™ 3 Y Las Cuatro Estaciones (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Malwarebytes Anti-Malware versión 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Manual del usuario CX5600 (HKLM-x32\...\Silent Package Run-Time Sample) (Version:  - )
Mathematica Extras 9.0 (4092550) (HKLM\...\A-WIN-Extras 9.0.1 4092550_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM-x32\...\Office15.VISPRO) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{e6edaf4d-f9a1-4023-be00-d6189343feb9}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version:  - )
Mozilla Firefox 40.0.2 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 es-ES)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\MyFreeCodec) (Version:  - )
MySQL Connector/ODBC 3.51 (HKLM-x32\...\{0CB3C535-1171-4A20-B549-E2CB5DEB9723}) (Version: 3.51.12 - MySQL AB)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.55.8 - Black Tree Gaming)
NVIDIA Controlador de 3D Vision 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.1.13.85 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Panel de control de NVIDIA 347.52 (Version: 347.52 - NVIDIA Corporation) Hidden
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Portal 2 Sixense Perceptual Pack (HKLM-x32\...\Steam App 247120) (Version:  - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PyScripter 2.6.0 (HKLM-x32\...\PyScripter_is1) (Version: 2.6.0 - PyScripter)
Python 3.4.3 (HKLM-x32\...\{CCD588A7-8D55-49F1-A30C-47FAB40889ED}) (Version: 3.4.16490 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12972.94 - raidcall.com)
Rise of Nations: Extended Edition (HKLM-x32\...\Steam App 287450) (Version:  - SkyBox Labs)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Nombre de su organización)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Nombre de su organización) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Scribblenauts Unmasked A DC Comics Adventure (HKLM-x32\...\Scribblenauts Unmasked A DC Comics Adventure_is1) (Version:  - )
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Civilization V SDK (HKLM-x32\...\Steam App 16830) (Version:  - Firaxis Games)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Software de impresora EPSON (HKLM\...\EPSON Printer and Utilities) (Version:  - SEIKO EPSON Corporation)
Software Logitech para juegos 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
SoulseekQt (HKLM-x32\...\SoulseekQt) (Version:  - )
Spek (HKLM-x32\...\{7CDF6754-F5A0-4F34-B589-197530FEF862}) (Version: 0.8.2 - Spek Project)
Spotify (HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\Spotify) (Version: 1.0.2.6.g9977a14b - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1204 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version:  - Scary Bee LLC)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Crew (Beta) (HKLM-x32\...\Uplay Install 750) (Version:  - Ubisoft)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Long Dark (HKLM-x32\...\Steam App 305620) (Version:  - Hinterland Studio Inc.)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
Time Clickers (HKLM-x32\...\Steam App 385770) (Version:  - Proton Studio Inc)
Tropico 3 - Steam Special Edition (HKLM-x32\...\Steam App 23490) (Version:  - Haemimont Games)
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version:  - Haemimont Games)
Tropico 4 Collectors Bundle (HKLM-x32\...\Tropico 4 Collectors Bundle_is1) (Version:  - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-2135426943-1657414351-849837200-1001\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
User's Guides (HKLM\...\{B48E1FFD-A85D-45DB-9070-C06CDF6BD427}) (Version: 1.20.0000 - Logitech)
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warlock - Master of the Arcane (HKLM-x32\...\Steam App 203630) (Version:  - Ino-Co Plus)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
Wolfram CDF Player (M-WIN-D 9.0.1 4092685) (HKLM-x32\...\M-WIN-D 9.0.1 4092685_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Wolfram Mathematica 7 for Students (M-WIN-G 7.0.1 1213989) (HKLM\...\M-WIN-G 7.0.1 1213989_is1) (Version: 7.0.1 - Wolfram Research, Inc.)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version:  - Firaxis Games)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.1) (Version: 1.3.1 - Xvid Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2135426943-1657414351-849837200-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2135426943-1657414351-849837200-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2135426943-1657414351-849837200-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\es-ES\acadficn.dll (Autodesk, Inc.)

==================== Restore Points =========================

09-08-2015 14:55:06 Punto de control programado
17-08-2015 08:08:46 Punto de control programado
17-08-2015 22:50:27 Removed Facebook Video Calling 3.1.0.521
17-08-2015 22:53:42 Removed FARO LS 1.1.501.0 (64bit)
17-08-2015 22:57:55 Removed Bonjour
17-08-2015 22:59:22 Removed Facebook Video Calling 3.1.0.521
18-08-2015 14:35:48 Se ha instalado DirectX
19-08-2015 22:31:09 Removed Quake Live Mozilla Plugin

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2015-08-21 23:14 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01D70675-120C-4E7F-B8D4-7FB96AFD11FB} - System32\Tasks\{C95AB62A-D464-46BA-87C3-6BBFF122602C} => E:\Setup.exe
Task: {0BE53A44-C959-4E9C-8C53-485C0712379D} - System32\Tasks\{E3D0222B-2620-42D0-846A-DC7BB3681725} => pcalua.exe -a E:\Launch.exe -d E:\
Task: {1425A8B6-7310-436C-AF3C-CAC341327F85} - System32\Tasks\{BB091122-C046-4775-BF7D-C27D75B5E663} => C:\Users\Vicente\Downloads\Nueva carpeta\Warcraft3+expancion.exe
Task: {1BB30625-BB61-4E8E-8141-30CC0B09FD0F} - System32\Tasks\{6A47B501-B589-4863-AA91-18EE81911D73} => C:\Users\Vicente\Desktop\Nueva carpeta\Xpadder\Xpadder.exe
Task: {20F25C88-23E0-452F-A213-FE10805DB4E5} - System32\Tasks\{D78A1275-9D59-4FDB-8355-2E3C38BD117B} => pcalua.exe -a C:\Users\Vicente\Desktop\Casino.Tycoon\Casino.Tycoon.FINAL.MYTH\Install.exe -d C:\Users\Vicente\Desktop\Casino.Tycoon\Casino.Tycoon.FINAL.MYTH
Task: {228AD667-B269-4FDC-8CBB-4A66FBEE2487} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {2882D9E6-3E3D-4030-B7B3-06AD579086FA} - System32\Tasks\{94EACDEA-B4DF-4A1D-987E-6AE0A3035A64} => pcalua.exe -a C:\Users\Vicente\Downloads\shoutcast_aimp2.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {2C1821FC-982D-4D4D-B18B-ACA274E0BD28} - System32\Tasks\{B1EBFF5C-F859-49FE-87B1-59B74F659846} => E:\SETUP.EXE
Task: {2E2BF16C-FA3F-4848-9E0A-60688F7F36E3} - System32\Tasks\{1F77CE5B-73F0-4112-8419-207788E9FE34} => D:\Juegos\FIFA 14\Game\fifa14-3dm.exe
Task: {2F05B546-6118-4013-A812-7C2D8AD67DBD} - System32\Tasks\{3A83DD58-1436-471F-B433-847067B489C1} => D:\Capitalism 2\cap2.exe
Task: {2F5D4DE3-AF94-464F-B55B-F6A4A14D0E86} - System32\Tasks\{A1B99859-27B9-42F1-B23E-AD49F86F7545} => C:\Users\Vicente\Downloads\TeamSpeak3-Client-win64-3.0.0-rc1.exe
Task: {348DC0B8-0062-41B3-9C58-07EA10934535} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {3742D33D-826C-4DE7-B03E-B0F05B292C71} - System32\Tasks\{005AF63A-56AF-47E5-8D24-3DA9389EEA53} => pcalua.exe -a "C:\Users\Vicente\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Final Version Patch\Sims3_1.0.632.00002_from_1.0.631.00002.exe" -d "C:\Users\Vicente\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Final Version Patch"
Task: {43BD60A6-D233-41AB-8189-1A4FEBDF979F} - System32\Tasks\SUPERAntiSpyware Scheduled Task 9a583171-86e2-4cbb-ac88-95af8735f581 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {466D465B-5712-4B99-B19C-AFADFE3CF6BE} - System32\Tasks\{2AB38182-37B7-4377-885D-94EFAAD76F77} => pcalua.exe -a "C:\Program Files (x86)\Zhyper Networks\ZhyperMU Season 6 Ultimate\Uninstall.exe"
Task: {4E2EF354-A9D9-4AAD-AB77-255A7A47320B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {4E672959-5BBA-4927-82A0-CAD93D480943} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5037AB6D-23A8-4ADE-A2CD-48875290596B} - System32\Tasks\{2A7B685C-4EBD-4E72-A66E-9409457668C2} => pcalua.exe -a C:\Users\Vicente\AppData\Roaming\.minecraft\minecraft.exe -c launcher\Uninstall.exe
Task: {538B0224-2809-4D83-AC2A-6C0EED4D976B} - System32\Tasks\{2D6022B5-62B6-444D-A1A8-71A7BC6A0D26} => pcalua.exe -a C:\Users\Vicente\Downloads\D2MPLauncher.exe -d C:\Users\Vicente\Downloads
Task: {56E9496D-72C8-42CE-A3F4-D6D9CA6025C7} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] ()
Task: {5E3F6D36-2130-4292-8F19-36293631DFF8} - System32\Tasks\{B41485EF-E861-4253-8B91-4D6F2E7F0748} => pcalua.exe -a "C:\program files (x86)\ncsoft\launcher\NCLauncher.exe" -c /Uninstall=Lineage2
Task: {5F3A5322-520B-4E60-907D-1F1C780355EF} - System32\Tasks\{4155C67E-2AB3-46DF-B6A2-FF62EE5C4FAC} => C:\Program Files (x86)\Bettyboopz\Paradise Beach 2 - Around the World Deluxe\Paradise Beach 2.exe
Task: {60C4FBF2-66BC-4675-BC6B-A561DA8CA8EC} - System32\Tasks\{56CAE523-29AF-44C0-8756-FC3F54C8BBE8} => C:\Users\Vicente\Desktop\Casino.Tycoon\Casino.Tycoon.FINAL.MYTH\Install.exe
Task: {643122C9-3A47-4D9A-A431-A38FDB251018} - System32\Tasks\{77028E61-439E-4698-B017-9FFA0D3F174B} => C:\Users\Vicente\Downloads\BUPDATER_V112\BUPDATER.EXE
Task: {675AF157-364E-4394-8358-DD38E39A4436} - System32\Tasks\{FC26ABD7-1FCC-4CEF-B7A0-A16E62D718A7} => pcalua.exe -a C:\Users\Vicente\Downloads\MafiaIIDemo\SetupLauncher.exe -d C:\Users\Vicente\Downloads\MafiaIIDemo
Task: {6B52E08D-8616-4748-AC6D-E9E594E3A88E} - System32\Tasks\{A7FD0DCC-D862-4378-A017-9618C726E287} => C:\Users\Vicente\Downloads\TeamSpeak3-Client-win64-3.0.0-rc1.exe
Task: {6C499073-8B36-461C-A521-58AA033CEE79} - System32\Tasks\{45FB2116-6F25-4B66-9CC9-2C0CDF241AD6} => pcalua.exe -a E:\SETUP.EXE -d E:\
Task: {706D09F1-1F3A-40BF-B00F-1A65BDF2F749} - System32\Tasks\{08A51391-8337-4A67-8ECC-6AD1D7836769} => E:\Setup.Exe
Task: {708D68F7-D1A4-4B71-98C9-D9D914762B0E} - System32\Tasks\{4E9A30B8-F1A4-4E83-A60C-9ACD67700479} => C:\Users\Vicente\Downloads\JDownloaderINTSetup_3.exe
Task: {7CCDE49E-16D1-4D40-81BC-8CA4EDF5A425} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {8935DE2F-C73B-4B3E-9D3F-7ED5EE7A889D} - System32\Tasks\{0CEEBFD2-B951-41BE-B6DE-C03B1958FA41} => E:\setup.exe
Task: {8A2E315B-B0D8-43CC-B538-5E6E764CEAEB} - System32\Tasks\{AAB94697-38BC-4F49-8799-30C7771FFCAC} => C:\Users\Vicente\Desktop\Nueva carpeta\mega.exe
Task: {913C98F7-E280-4B1B-AEFC-5C12246F2F09} - System32\Tasks\{3C5DA9C1-64C4-4976-A417-B544FCD55971} => E:\SETUP.EXE
Task: {92CFB122-51CA-4AD5-ABCB-F6BBF0F2CF2B} - System32\Tasks\{0391C609-2A3F-43E0-95D9-BA9B2D47BFBF} => E:\Rong_setup.exe
Task: {9421FF87-EEF1-4A38-A6DF-39AF25AC0E39} - System32\Tasks\{B95E254C-2C2F-4CA2-A198-2DECB25CAC21} => C:\Program Files (x86)\Zhyper Networks\ZhyperMU Season 6 Ultimate\ZhyperMU.EXE
Task: {947C36F9-6D8C-472A-A54A-9E4A97FE7BA3} - System32\Tasks\{D0C03045-64B7-4121-9795-B2C14F449D39} => C:\Program Files (x86)\Bettyboopz\Paradise Beach 2 - Around the World Deluxe\Paradise Beach 2.exe
Task: {9C9F8258-306E-4916-9100-27CBDCDCDE2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-21] (Google Inc.)
Task: {A69DEFE1-44F3-485E-BD01-716531AFF6AA} - System32\Tasks\{CA4C1B76-031C-411C-8C1D-2145B7CD6B04} => E:\AUTOSET.EXE
Task: {A7381B08-5778-469D-A67F-9AB198426459} - System32\Tasks\{250C0FBF-B4AC-474C-B1B3-5134DD92E8B3} => E:\setup.exe
Task: {AF07BE90-8601-45DE-9B6B-F8C4BAC2EF2D} - System32\Tasks\{A164E350-6A1E-453B-B468-DBBA709A2776} => pcalua.exe -a C:\transformer_RT\SetupReg.exe -d C:\transformer_RT
Task: {B2177972-434A-4157-A33B-FB1EECB51BE1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {B508B652-5406-45C5-ADD2-4E16CBE05C3B} - System32\Tasks\{AD2BBBE0-D5A2-4457-BCD8-63CE9322A350} => D:\Capitalism 2\cap2.exe
Task: {B8A8FBD6-86BD-48E9-BED2-C50308C95C05} - System32\Tasks\{D5C91276-88F6-4987-867C-BE6EA1E0D7ED} => pcalua.exe -a "C:\Program Files\TeamSpeak 3 Client\plugins\ts3overlay\InstallHook.exe" -d "C:\Program Files\TeamSpeak 3 Client\plugins\ts3overlay\" -c 10000
Task: {C0C140DC-9266-4C30-87C8-F24620DEEE37} - System32\Tasks\{2B77071E-67A4-4C0A-ACCA-E58B86E28BDC} => D:\Capitalism 2\cap2.exe
Task: {C3D0A1C4-156A-4C10-A9AA-B589F38F41E7} - System32\Tasks\{05159A15-2FC4-467A-BFD3-818A9DAF8E67} => pcalua.exe -a E:\setup.exe -d E:\
Task: {D0EF3E07-269A-411C-9F9D-1CB74211317D} - System32\Tasks\{9C61F435-7523-4277-8AEC-AC6A8B13C6F0} => E:\setup.exe
Task: {D55B4BAF-891E-4F21-9ABA-5328B8789B2A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-21] (Google Inc.)
Task: {D58EF69D-F0DA-46D2-88C2-CCA972F3EFF1} - System32\Tasks\{3ED32D1C-67AF-454C-A2BD-5E598D6C7E23} => C:\Users\Vicente\Downloads\JDownloaderINTSetup_3.exe
Task: {D674B011-F8CA-467E-85D7-CD2B3102BE22} - System32\Tasks\{FACF1AE7-860C-46D2-B0E4-61F96F53D49B} => C:\Users\Vicente\Downloads\BUPDATER_V112\BUPDATER.EXE
Task: {E0DC670A-75A2-4F06-B55E-2BFB00210497} - System32\Tasks\SUPERAntiSpyware Scheduled Task d6e388ca-962c-4349-84f3-b8b3d19c3ca2 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {E593BFBA-7D0E-4C12-8968-3BD53EB61A8C} - System32\Tasks\{D8290529-8C09-4BDE-B375-71AB674F306F} => pcalua.exe -a E:\steambackup.EXE -d E:\
Task: {E69E752C-77F2-45C4-8CDB-9E1EEC8072F3} - System32\Tasks\{B23B0935-9EA7-4436-9AD4-8B628E9712B7} => C:\Users\Vicente\Downloads\MagicShandalarSetup.exe
Task: {E7FF5898-59D1-4FD1-8FFD-7205C1F1B0F0} - System32\Tasks\{B2041CEB-F2CB-4E45-87EC-D7FDF368D326} => D:\setup.exe
Task: {EB840D65-95BE-447B-8595-0585E3FF1BEC} - System32\Tasks\{188A79D6-507C-4831-B434-3D9CC6F17D24} => pcalua.exe -a "C:\Users\Vicente\Downloads\Nueva carpeta\War3TFT_126a_Castellano.exe" -d "C:\Users\Vicente\Downloads\Nueva carpeta"
Task: {EDB6DC7C-3F02-4F85-A916-49B1E05CE8F5} - System32\Tasks\{6161204D-03D3-48D7-A816-96FCEE0354EA} => C:\Program Files (x86)\Bettyboopz\Paradise Beach 2 - Around the World Deluxe\Paradise Beach 2.exe
Task: {F2595EC0-E669-4ADF-A84F-88EE3D7D20D4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {FD225AAC-49BD-4844-B710-A36E5E638E77} - System32\Tasks\{21EE1B93-52EF-47E6-87EB-0B82090732A2} => D:\Capitalism 2\cap2.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 9a583171-86e2-4cbb-ac88-95af8735f581.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task d6e388ca-962c-4349-84f3-b8b3d19c3ca2.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-02 01:45 - 2015-07-22 13:54 - 01195920 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2015-03-01 17:45 - 2015-02-05 15:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-02-20 23:57 - 2013-12-02 23:50 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2012-10-01 20:34 - 2012-10-01 20:34 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2010-01-30 01:40 - 2010-01-30 01:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-11-27 13:31 - 2010-03-15 10:28 - 00052224 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2014-02-11 14:21 - 2014-02-11 14:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 14:22 - 2014-02-11 14:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 14:21 - 2014-02-11 14:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 14:22 - 2014-02-11 14:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2013-03-27 15:28 - 2010-08-11 11:32 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2013-03-27 15:28 - 2010-08-11 11:32 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2013-03-27 15:28 - 2010-08-11 11:32 - 00105584 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2013-03-27 15:28 - 2010-08-11 11:32 - 64643696 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2015-03-23 16:27 - 2014-12-04 22:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2015-03-23 16:27 - 2014-12-04 22:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2013-09-13 18:51 - 2013-09-13 18:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 18:51 - 2013-09-13 18:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-03-31 20:12 - 2015-03-27 23:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-08-12 14:26 - 2015-08-12 14:26 - 17482952 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2135426943-1657414351-849837200-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Vicente\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 190.160.0.15 - 200.30.192.14
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{B7263125-48AE-4E0D-8C61-812B1945DDB5}C:\program files (x86)\warcraft iii\war3.exe] => (Allow) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [UDP Query User{1CB4EAD1-74DF-461D-ABE9-EB1B8CBA6CB2}C:\program files (x86)\warcraft iii\war3.exe] => (Allow) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [TCP Query User{7F4EFFA9-2D48-45BE-BFF2-1F01B716A0F1}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{DF9B67A7-87CD-48A0-BC7B-6621E1B33B45}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [{A1B386B4-1084-4B05-8D4B-9BC88152386B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{CAC00413-22B6-40EC-9B1D-B77C7B2DD5BF}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{9A4C58F5-5285-4443-BF3B-273094312A15}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8A4F3204-D4E1-4B04-A0B7-E1519D64310D}] => (Allow) svchost.exe
FirewallRules: [{DD3DB7D2-736C-4F9A-B3A6-6926DB70874C}] => (Allow) LPort=8381
FirewallRules: [{C59DE555-44E6-46CE-929E-61611D91E69B}] => (Allow) LPort=8381
FirewallRules: [TCP Query User{DF20C4FD-CBD5-49DA-BDB6-8AA27F1D2F29}C:\riot games\league of legends\lol.launcher.exe] => (Allow) C:\riot games\league of legends\lol.launcher.exe
FirewallRules: [UDP Query User{1AE05C52-B97D-4493-9632-2309570EA254}C:\riot games\league of legends\lol.launcher.exe] => (Allow) C:\riot games\league of legends\lol.launcher.exe
FirewallRules: [{1658BE7D-7A06-449B-A084-0277AA562FFB}] => (Allow) LPort=3306
FirewallRules: [TCP Query User{BDA701EE-CF70-4BB9-AEDF-1306FEBEAA85}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{1364BAC6-8D41-43FE-AE98-C68BBABAEAFE}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{A2DABD6C-0B8D-4130-9385-CAF675D33F94}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{B774FCFC-2275-46AD-884B-C10ECCD50119}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{A660E452-FEF9-4F4F-9940-D7440051788D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E2E6E2E1-830B-4F40-9A7E-CD065E8F15D8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C067304B-9434-4291-92BD-1E5706B90457}] => (Allow) LPort=2869
FirewallRules: [{81A870BD-F2D6-4CE3-8A4E-B894AF383343}] => (Allow) LPort=1900
FirewallRules: [{6A496A3E-6F4B-4326-B467-B165A2946523}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{543F73F5-DDE3-485C-8D03-AFDCE1B0A8E3}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{0BC7050E-E68F-4AD4-A1D5-16775BAC3180}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{3145D790-B6B2-4EA1-BA7E-25095657A6B0}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{4465809B-930A-43E9-AE94-F6061B9BEB99}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{112E53DF-786F-4757-9DA6-49CEA71D5029}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{3E2884C1-38E4-481C-8F8D-3BCBC22C9D7E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{38F38774-7C24-4286-B210-91C907B9C059}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{70CBF269-C322-44D1-9284-ECB2967B9EBF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0D2DB461-9C70-4AEE-A36A-DD18A9DFB9A0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B21612E5-DA6F-4B7A-81B9-E493C9DE5B1D}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{9D6E18AC-8D83-4247-A996-0C69CD08C5CB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{10AF32B2-756B-4306-BD25-B4887434C3A2}] => (Allow) C:\Users\Vicente\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{02E57F20-51BE-4A2C-8560-85032E9F1764}] => (Allow) C:\Users\Vicente\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{39A1605A-706A-4230-970C-76F072E29AC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe
FirewallRules: [{B3B98A5E-5E5C-4432-8FAF-CE8E6D07A947}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe
FirewallRules: [{0FC3D81B-F8DE-4A3D-92F1-642ADA5C4E27}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{92B28F10-A57C-4223-82B6-879888E010A9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{9E79A3C8-591C-4736-807C-3D91C361C931}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{93A97C0A-DB8E-40DE-B3EB-36B23615610F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E6AB82E8-82CA-4074-9017-CF3B06BED176}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D6407226-11D0-4593-A662-DF4168A42075}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{90A9FBCF-727E-48AF-8533-614AF1F0A58F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{0DE43CE1-DBF5-456B-AFAA-95720E5B909E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{682FB3DD-BDA3-41C0-880F-E61650B54155}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{625A41DA-E1D2-43AC-BC9E-4AC1F7084439}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{6AA2D2CB-AE66-4842-A879-EB8A5FDDAF54}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{5B19F009-2EF6-437A-8118-F6057ED8776F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{9B5BB7DB-5E83-4E90-AC02-C32EE6B10B9F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{68F72473-40DA-44CC-9BA2-88E6E591AC8C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{DE7B3428-AC16-43F0-ABF2-B780C8340A96}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{E2AD4579-60BB-4D3F-8D05-A16746FA1213}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{81E2DEBB-8160-490B-8D5D-808D04046026}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{E190E4ED-A9EB-4EDA-A37C-0F4A90F28411}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{023D053B-ABCC-44B1-BBA6-307235DC1674}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{1882EBB3-3B48-480A-9399-2066859EAAAF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{BC32B962-B771-4D79-B4C1-224263776894}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{F71C8E32-D9B7-4AE5-BAA7-147B352928B8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{E895B8FB-28B8-4BA0-AEF8-B663616965C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{1D3F402E-3C11-41F9-BB54-72E343C770F1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{F45C8418-470D-4F4C-A108-6321A1519A40}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{19897B51-8B05-4C1E-B332-4D846E7C9F97}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{28A4DA98-9AAC-4319-B151-5E09FF1D5FF0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{AB324D51-AD57-43B9-BC65-A3DBB6622416}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{47F618B8-C031-4BCC-A76D-523EA88EDF7E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{CF3ABCE8-48FB-4CAA-9FF0-3CA15729F465}] => (Allow) D:\Juegos\FIFA 14\Game\fifa14.exe
FirewallRules: [{721C105F-F1DD-4AF5-B191-99BC590B6263}] => (Allow) D:\Juegos\FIFA 14\Game\fifa14.exe
FirewallRules: [{00B0F1E8-01C2-4A98-97C7-CA9A7F86F438}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Free to Play\FTP.exe
FirewallRules: [{A4574B42-5EBB-4289-8B6E-14A312E8EFA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Free to Play\FTP.exe
FirewallRules: [{259C6AD5-AF30-4A55-B95E-D64EDF72B24E}] => (Allow) D:\Juegos\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{DB13F868-C882-47BD-B5F2-7617082CBF00}] => (Allow) D:\Juegos\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{060FF30D-A5FE-4BBE-B2EB-6DEBB5F329AB}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{E65CBBCE-AD47-4AFD-B7D1-4594B4BBB30C}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{0431F988-1DDA-4868-8F20-00E25E4021AF}] => (Allow) D:\SteamLibrary\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{86FD8EE3-6D83-479D-809C-986EBB272352}] => (Allow) D:\SteamLibrary\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{EF73A2C8-1B17-4A10-92A8-5C26DB2F2195}] => (Allow) D:\SteamLibrary\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{81E22764-3E08-4868-BB41-E2E9F9E78082}] => (Allow) D:\SteamLibrary\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{BCBADD31-108F-46A5-8117-0E71DA109A23}] => (Allow) D:\SteamLibrary\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{3F4B17F2-C9DF-4683-885C-7F2B5E933F32}] => (Allow) D:\SteamLibrary\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{0D8262E0-2C43-4C3A-BA6B-A51C7D65EE8B}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2 Sixense Perceptual Pack\portal2.exe
FirewallRules: [{BEDABFAB-29A4-4948-ACE5-98CBDAEE86C3}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2 Sixense Perceptual Pack\portal2.exe
FirewallRules: [{66ADFFC8-404B-416A-9BCD-073F5CD2A1B5}] => (Allow) D:\SteamLibrary\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{01D13603-BCA9-47AE-8E07-03D1EAB912BC}] => (Allow) D:\SteamLibrary\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{39EAC322-9FED-46D2-AF20-EFE9F4B93DF9}] => (Allow) D:\SteamLibrary\SteamApps\common\Adventures Of Shuggy\Shuggy.exe
FirewallRules: [{60848E6F-57D5-45E8-82CC-9640969AEF3A}] => (Allow) D:\SteamLibrary\SteamApps\common\Adventures Of Shuggy\Shuggy.exe
FirewallRules: [{FC1BE3F1-A71A-4C7C-AD92-50FB6BE50193}] => (Allow) D:\SteamLibrary\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{49E23A0F-2F9A-4F6D-BEF6-4CD263DBD466}] => (Allow) D:\SteamLibrary\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{AF92EB9B-B231-421B-8EF0-78FF8D3CB51B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5A235CD1-6911-48CA-BB78-ED5D37C32365}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5254D358-A747-4F9C-8C3A-20AB847C31B6}] => (Allow) D:\SteamLibrary\SteamApps\common\Tropico 4\Tropico4.exe
FirewallRules: [{F6866EE5-302D-4BD8-9383-C41B3358B9EF}] => (Allow) D:\SteamLibrary\SteamApps\common\Tropico 4\Tropico4.exe
FirewallRules: [{06D6CFEC-E354-4778-9E0F-A2052D111D95}] => (Allow) D:\Juegos\The Crew (Beta)\TheCrew.exe
FirewallRules: [{3EBD455D-8D65-4E35-A299-DB1B3E2E7C65}] => (Allow) D:\Juegos\The Crew (Beta)\TheCrew.exe
FirewallRules: [{419DF9DB-6880-45CA-BBF6-B6196BBD96E6}] => (Allow) D:\Juegos\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{6A0362A5-E9AF-4AF0-AA99-044B1918FB07}] => (Allow) D:\Juegos\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{3B6EF16A-444D-4D68-B4DB-E1A9D8995DCB}] => (Allow) D:\Juegos\Origin Games\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{D460FA8C-F1BE-4606-A6F7-F148A496B65D}] => (Allow) D:\Juegos\Origin Games\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{4760822E-8CFD-4455-9774-FACD0BED0C45}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{70A0591B-4253-489C-B0EA-195887E8622F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{49F6A0F9-9E66-4B4E-96DC-A4F25B4D8ABC}] => (Allow) D:\SteamLibrary\SteamApps\common\Canyon Capers\CanyonCapers.exe
FirewallRules: [{4C5E0B24-D353-48DA-BD0E-65DAEBDF68D8}] => (Allow) D:\SteamLibrary\SteamApps\common\Canyon Capers\CanyonCapers.exe
FirewallRules: [{D8555470-CDA1-4FC1-919E-7EA13C90DFFD}] => (Allow) D:\SteamLibrary\SteamApps\common\Warlock - Master of the Arcane\Game.exe
FirewallRules: [{B590B94D-0AEC-44BE-BB73-0B5AFDD867A4}] => (Allow) D:\SteamLibrary\SteamApps\common\Warlock - Master of the Arcane\Game.exe
FirewallRules: [{93E93061-BF31-4232-9118-F4A017A762E9}] => (Allow) D:\SteamLibrary\SteamApps\common\Knights and Merchants Historical Version\KM_TPR.exe
FirewallRules: [{829BEABD-ADEF-481D-B2CA-A99009B78551}] => (Allow) D:\SteamLibrary\SteamApps\common\Knights and Merchants Historical Version\KM_TPR.exe
FirewallRules: [{83915961-3400-4D75-BF9C-F96921D91091}] => (Allow) D:\SteamLibrary\SteamApps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe
FirewallRules: [{5EDEC559-B8E0-4EFA-B491-68099F613E8E}] => (Allow) D:\SteamLibrary\SteamApps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe
FirewallRules: [{765241E7-D06C-4A0F-AE2C-415D8A34F957}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\eastindia.exe
FirewallRules: [{3A67328C-5774-443A-88E9-1958D36BD6A8}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\eastindia.exe
FirewallRules: [{77B8208C-E7F6-4C91-B605-5689042E0174}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\piratebay.exe
FirewallRules: [{CDC1588F-B241-413E-991C-C17FD6AC036F}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\piratebay.exe
FirewallRules: [{1622550C-BF28-48B3-B2ED-AB6147413E53}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\privateer.exe
FirewallRules: [{401BF612-39DC-4C49-88A3-9ED84A5EE201}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\privateer.exe
FirewallRules: [{E9D74BFD-BB38-494D-9941-D66942889BD1}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\trafalgar.exe
FirewallRules: [{3E21806C-6703-481C-AE79-543076AE4A7D}] => (Allow) D:\SteamLibrary\SteamApps\common\East India Company Gold\trafalgar.exe
FirewallRules: [{EFA5B245-FFCF-44ED-B66F-D4A6ACD6820B}] => (Allow) D:\Juegos\Origin Games\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{53B77975-8420-491F-9CCB-FB893A1C9593}] => (Allow) D:\Juegos\Origin Games\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{6F3ECF8C-9A68-467B-9621-1AE021471812}] => (Allow) D:\Juegos\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{600C1EE7-B01E-4CA6-AC1E-5069D7FE1827}] => (Allow) D:\Juegos\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{19E1F7BB-A623-4FA2-A6ED-552377C436FB}] => (Allow) D:\SteamLibrary\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{79A5D2DF-111E-409A-B89E-4C3924FE3769}] => (Allow) D:\SteamLibrary\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{AD36D3A4-B17D-4195-A4C3-B32CE7CA2778}] => (Allow) C:\Users\Vicente\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{2C63BAFB-CD39-4E96-B798-E038E881AAD7}] => (Allow) C:\Users\Vicente\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{6EC245FA-24E7-4F90-8636-B506DF5476A0}] => (Allow) C:\Users\Vicente\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6961902D-AA57-46C4-8902-96000F79598C}] => (Allow) C:\Users\Vicente\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6EF5319D-33A7-41CC-8659-F72A97970B78}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FA933165-338E-4595-8920-A73532F5893F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A5122BF9-5961-4DB7-863B-9C1A184D3F6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8E4721EB-DAC7-43B5-A27C-161B14495D91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C0D30A68-5769-4ACC-B960-70A55427038D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8C1266C3-5CF6-4B13-BC6F-775A32C1D437}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{38ACF281-97FE-4970-AC9E-4DD0625DB839}] => (Allow) D:\SteamLibrary\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{D6DE192A-BBD1-41E0-999B-65CC7E2A5342}] => (Allow) D:\SteamLibrary\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{FA131FAD-3C62-4049-B092-2865BE67E58B}] => (Allow) D:\SteamLibrary\SteamApps\common\TheLongDark\tld.exe
FirewallRules: [{F5DD4447-D67B-45DC-BEFB-6AFA65C3EC22}] => (Allow) D:\SteamLibrary\SteamApps\common\TheLongDark\tld.exe
FirewallRules: [{BE0778A7-E088-42AA-BACE-FF008C029ED9}] => (Allow) D:\SteamLibrary\SteamApps\common\Tropico 3\tropico3.exe
FirewallRules: [{3434F85A-0183-45E7-9879-A3F63A8E731C}] => (Allow) D:\SteamLibrary\SteamApps\common\Tropico 3\tropico3.exe
FirewallRules: [{C1F24F87-1F46-4AEB-B905-94FC202294BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E5ED5ED3-B837-4C26-8058-F4ABD2813F08}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0DC8EF8E-EC0A-4003-A33A-DFA47F0B2B8C}] => (Allow) LPort=50248
FirewallRules: [{C341B24E-A3E2-404E-9146-8AA09DA1EFA6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4A47B0EE-5DCD-4EE5-91E9-A4FE84724FB0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AE2E9A63-851D-4D89-B3D9-D01E9E0701CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6A9B6B3B-3AF7-438C-B5D7-B2F15BE889A5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F95E43AA-AF8C-47CE-8B9B-4BDA29695605}] => (Allow) D:\SteamLibrary\SteamApps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [{FD598278-3967-4D6E-9CC7-BF6AB10042E8}] => (Allow) D:\SteamLibrary\SteamApps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [{6CA8268D-61E2-46B0-B324-3325D9CCAEC5}] => (Allow) D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{3820943A-62C5-481A-B454-BD597DF08A44}] => (Allow) D:\SteamLibrary\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{FEB10ECF-033F-4211-84FB-DF21D63DA256}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{3DF9E157-3547-4A07-9ACC-F844284C96A1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{F91F33A0-C818-41FB-BFBC-BBA548380C33}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{58E96AAD-87C9-4F32-9A17-79332A31845E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{5B20A7D1-3BA1-4BA7-9937-46D08A2610F3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{D4DFD74F-2854-434D-B440-57E4CE18BB91}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{518117FC-4A52-4C62-9442-336EE1AC7E22}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{A92FAABA-9C6C-4583-A6B9-56692824654E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{2B99ACE6-4C2C-4566-8006-BD4F759DA992}] => (Allow) D:\SteamLibrary\SteamApps\common\TimeClickers\TimeClickers.exe
FirewallRules: [{5717AAA6-47AE-48DE-A70F-5522EC090462}] => (Allow) D:\SteamLibrary\SteamApps\common\TimeClickers\TimeClickers.exe
FirewallRules: [{20DA2145-E78D-45F0-9CDD-B538361D58FC}] => (Allow) D:\SteamLibrary\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{33105460-9C9F-4838-9FE6-18D7D2B019DF}] => (Allow) D:\SteamLibrary\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{DE8028F2-7279-4A22-BDE7-5931B4F12B5A}] => (Allow) D:\SteamLibrary\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{81952EDD-F9BC-4FB8-A119-33A242FA456B}] => (Allow) D:\SteamLibrary\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{81EBF298-EC81-47A9-8735-A6279061534E}] => (Allow) D:\SteamLibrary\SteamApps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{9F7FBF90-1B93-4AC9-AF30-9BC13383B0B3}] => (Allow) D:\SteamLibrary\SteamApps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{3579DD6E-F9B7-40DA-AB92-02C626D112E6}] => (Allow) D:\SteamLibrary\SteamApps\common\Anno Online\nw.exe
FirewallRules: [{668DB271-A643-4DDD-9850-9A6BD7F8DAC1}] => (Allow) D:\SteamLibrary\SteamApps\common\Anno Online\nw.exe
FirewallRules: [{1ADECBA2-22D1-42A7-9C50-238C2DCBB853}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{3291A9E2-FF0E-40AB-834B-CCAC2936F03D}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{A8944D3E-C3C9-4DD5-9A39-50CACC6A6AB9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{B17783BF-8423-4A74-A5F3-503CF0725FD8}D:\juegos\diablo iii\diablo iii.exe] => (Allow) D:\juegos\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{006E635A-83E0-4C84-8FCE-492056FFEB35}D:\juegos\diablo iii\diablo iii.exe] => (Allow) D:\juegos\diablo iii\diablo iii.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/26/2015 09:57:16 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x00000000.

Error: (08/26/2015 09:57:16 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
0x800401F9

Error: (08/26/2015 09:54:01 AM) (Source: Autodesk Content Service) (EventID: 0) (User: )
Description: No se puede iniciar el servicio. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase
   en Connect.MetaStore.MetaStorage.Initialize()
   en Connect.IVault.IVault.OnStart(String[] args)
   en System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/26/2015 12:24:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa firefox.exe, versión 40.0.2.5702, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

Identificador de proceso: 1970

Hora de inicio: 01d0df51029372ed

Hora de finalización: 545

Ruta de acceso de la aplicación: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Identificador de informe: 4d3edb32-4baa-11e5-90c9-20cf30e6651f

Error: (08/25/2015 12:13:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa firefox.exe, versión 40.0.2.5702, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

Identificador de proceso: b24

Hora de inicio: 01d0df3f96d56910

Hora de finalización: 2348

Ruta de acceso de la aplicación: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Identificador de informe: 3c2a9cf8-4b44-11e5-90c9-20cf30e6651f

Error: (08/25/2015 12:13:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: plugin-container.exe, versión: 40.0.2.5702, marca de tiempo: 0x55cc03bd
Nombre del módulo con errores: mozglue.dll, versión: 40.0.2.5702, marca de tiempo: 0x55cbf190
Código de excepción: 0x80000003
Desplazamiento de errores: 0x0000e631
Id. del proceso con errores: 0x1820
Hora de inicio de la aplicación con errores: 0xplugin-container.exe0
Ruta de acceso de la aplicación con errores: plugin-container.exe1
Ruta de acceso del módulo con errores: plugin-container.exe2
Id. del informe: plugin-container.exe3

Error: (08/25/2015 09:53:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: plugin-container.exe, versión: 40.0.2.5702, marca de tiempo: 0x55cc03bd
Nombre del módulo con errores: mozglue.dll, versión: 40.0.2.5702, marca de tiempo: 0x55cbf190
Código de excepción: 0x80000003
Desplazamiento de errores: 0x0000e631
Id. del proceso con errores: 0x169c
Hora de inicio de la aplicación con errores: 0xplugin-container.exe0
Ruta de acceso de la aplicación con errores: plugin-container.exe1
Ruta de acceso del módulo con errores: plugin-container.exe2
Id. del informe: plugin-container.exe3

Error: (08/25/2015 04:30:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: NvStreamNetworkService.exe, versión: 4.1.1943.6202, marca de tiempo: 0x551399be
Nombre del módulo con errores: NvStreamNetworkService.exe, versión: 4.1.1943.6202, marca de tiempo: 0x551399be
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000004e920f
Id. del proceso con errores: 0xd90
Hora de inicio de la aplicación con errores: 0xNvStreamNetworkService.exe0
Ruta de acceso de la aplicación con errores: NvStreamNetworkService.exe1
Ruta de acceso del módulo con errores: NvStreamNetworkService.exe2
Id. del informe: NvStreamNetworkService.exe3

Error: (08/25/2015 04:29:30 AM) (Source: Autodesk Content Service) (EventID: 0) (User: )
Description: No se puede iniciar el servicio. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase
   en Connect.MetaStore.MetaStorage.Initialize()
   en Connect.IVault.IVault.OnStart(String[] args)
   en System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/25/2015 04:29:22 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x00000000.


System errors:
=============
Error: (08/23/2015 09:20:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (08/21/2015 11:14:25 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: El servicio PEVSystemStart ha sido marcado como servicio interactivo. Sin embargo, el sistema está configurado para no permitir servicios interactivos. Este servicio puede tener un funcionamiento incorrecto.

Error: (08/21/2015 11:13:43 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Se bloqueó la carga de \??\C:\ComboFix\catchme.sys por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador.

Error: (08/21/2015 11:10:23 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: El servicio PEVSystemStart ha sido marcado como servicio interactivo. Sin embargo, el sistema está configurado para no permitir servicios interactivos. Este servicio puede tener un funcionamiento incorrecto.

Error: (08/21/2015 09:10:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (08/21/2015 09:10:21 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Windows Search se cerró con el error específico de servicio %%-1073473535.

Error: (08/21/2015 09:09:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (08/21/2015 09:09:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (08/21/2015 09:09:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Protección de software terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (08/21/2015 09:09:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Live ID Sign-in Assistant terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio.


Microsoft Office:
=========================
Error: (08/26/2015 09:57:16 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001

Error: (08/26/2015 09:57:16 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: 0x800401F9

Error: (08/26/2015 09:54:01 AM) (Source: Autodesk Content Service) (EventID: 0) (User: )
Description: No se puede iniciar el servicio. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase
   en Connect.MetaStore.MetaStorage.Initialize()
   en Connect.IVault.IVault.OnStart(String[] args)
   en System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/26/2015 12:24:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe40.0.2.5702197001d0df51029372ed545C:\Program Files (x86)\Mozilla Firefox\firefox.exe4d3edb32-4baa-11e5-90c9-20cf30e6651f

Error: (08/25/2015 12:13:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe40.0.2.5702b2401d0df3f96d569102348C:\Program Files (x86)\Mozilla Firefox\firefox.exe3c2a9cf8-4b44-11e5-90c9-20cf30e6651f

Error: (08/25/2015 12:13:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe40.0.2.570255cc03bdmozglue.dll40.0.2.570255cbf190800000030000e631182001d0df468f0a0c83C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dll43b766e4-4b44-11e5-90c9-20cf30e6651f

Error: (08/25/2015 09:53:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe40.0.2.570255cc03bdmozglue.dll40.0.2.570255cbf190800000030000e631169c01d0df10c92f85f9C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dll9bece0df-4b30-11e5-90c9-20cf30e6651f

Error: (08/25/2015 04:30:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fd9001d0df10362a6fa6C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe80ec51b8-4b03-11e5-90c9-20cf30e6651f

Error: (08/25/2015 04:29:30 AM) (Source: Autodesk Content Service) (EventID: 0) (User: )
Description: No se puede iniciar el servicio. Connect.Exceptions.IndexingServiceException: IndexingServiceErrCodes:129:UnexpectedDatabase
   en Connect.MetaStore.MetaStorage.Initialize()
   en Connect.IVault.IVault.OnStart(String[] args)
   en System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/25/2015 04:29:22 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001


CodeIntegrity:
===================================
  Date: 2015-08-26 09:53:53.150
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-26 00:29:06.155
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-25 23:38:14.230
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-25 10:51:50.009
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-25 04:29:08.673
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-25 04:24:23.796
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-25 04:17:25.731
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-24 18:51:07.394
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-24 14:00:52.499
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

  Date: 2015-08-24 05:20:43.298
  Description: Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\user32.dll porque el conjunto de hashes de imagen por página no se encuentra en el sistema.


==================== Memory info ===========================

Processor: Intel® Core™ i5 CPU 750 @ 2.67GHz
Percentage of memory in use: 56%
Total physical RAM: 4094.05 MB
Available physical RAM: 1769.28 MB
Total Virtual: 8186.25 MB
Available Virtual: 5724.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:189.93 GB) NTFS
Drive d: (Disco 2) (Fixed) (Total:1863.01 GB) (Free:706.88 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: ECB79197)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BF76E1FB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

 

------------------------ Addition.txt END ------------------------






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users