Avira Antivirus Problemas con las excepciones

Buenas tardes, soy de México y el problema es que, cada que ingreso un archivo cualquiera a excepciones al programa parece como si le diera amnesia ya que al día siguiente olvida la orden que se le fue dada, hace tres días por ejemplo me borro los accesos directos de programas que uso, lo más extraño es que solo ignora esos dos, los otros si los conserva, que podría hacer para evitarlo?, los datos de mi PC son los siguientes:

Windows 7 Home Premium 32 bits SP1, AMD athlon™ 64 X2 Dual Core Processor 3600 de 1.90 GHz, 2 GB de RAM, Disco Duro de 320 GB

de antemano gracias por su tiempo y espero respuesta

Hola @alexisdorian1768

Prueba desinstalar Avira con su herramienta especifica.

No lo reinstales aun.

Luego realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. [size=1] >> Como saber si mi Windows es de 32 o 64 bits.?[/size]

• Ejecuta FRST.exe.
• En el mensaje de la ventana del Disclaimer, pulsamos Yes
• En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
• Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Hola @SanMar

buenas noches, agradezco tu tiempo y tu molestia de responderme y perdón por la demora, no es que haya abandona el tema, sino que se me atravesaron otras cuestiones y no le pude dedicar tiempo al foro, sin mas que decir te agradezco de antemano y que tengas buen día, pego el primero de los logs:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-10-2019
Ran by MiniCyber (administrator) on MINICYBER-PC (HP-Pavilion RZ444AA-ABM a6010la) (25-10-2019 20:04:18)
Running from C:\Users\MiniCyber\Documents\Farbar Recovery Scan Tool
Loaded Profiles: MiniCyber (Available Profiles: MiniCyber)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: 

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Driver Information Technology Co., Ltd. -> Driver-Soft Inc.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe
(Google Inc -> Google LLC) C:\Program Files\Google\Update\1.3.35.302\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Mega Limited -> Mega Limited) C:\Users\MiniCyber\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PING.EXE
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Tonec Inc. -> Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Tonec Inc.) [File not signed] C:\Program Files\Internet Download Manager\IDMan.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\ASHelper.exe
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Run: [Adobe Flash PlayerHTML5] => C:\backupsys\window3.vbs [91 2018-11-14] () [File not signed]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Run: [Google Chrome64bits] => C:\backupsys\window4.vbs [90 2018-11-14] () [File not signed]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3948600 2018-07-10] (Tonec Inc.) [File not signed]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\MountPoints2: {8ec75f50-8c6f-11e9-ad98-806e6f6e6963} - E:\wubi.exe
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2616320 2010-11-20] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-24] (Google LLC -> Google LLC)
Startup: C:\Users\MiniCyber\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-06-26]
ShortcutTarget: MEGAsync.lnk -> C:\Users\MiniCyber\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
BootExecute: autocheck autochk *  

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {015CDB33-8C8B-40B0-BE9F-A30C3E6F42B5} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1903984 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {238722C4-38AB-4E44-821D-A95C1A9F3B3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [156968 2019-03-10] (Google Inc -> Google Inc.)
Task: {24CDCB54-F092-440A-B555-FE442A7033E2} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [40112 2018-11-26] (Microsoft Corporation -> Microsoft)
Task: {30E54CC9-011B-4454-BFA7-A4CC08B67C96} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1333616 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {46B407B2-1494-4341-8AB4-68D8E5DD1FCA} - System32\Tasks\{7690DF6B-B154-4A60-8EDE-F62FF00A77E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0 32 bits.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {5659906E-46A6-43E2-B54C-757596C93308} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [124632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C0D2EA8-8909-4E0B-BF9C-AD6A1325FB42} - System32\Tasks\apagar refrigerador de la cucaracha
Task: {5F35CCB1-8F6A-4773-B109-B6976D6705D7} - System32\Tasks\{FDBD31EA-B4DF-4B8E-83E7-9868C4D0D850} => C:\Program Files\Google\Google Earth Pro\client\googleearth.exe
Task: {72723DB1-4A25-4965-890F-51B92A6415FF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {74C4D83E-4867-4619-8835-750E00503F5B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2093232 2018-11-26] (Microsoft Corporation -> Microsoft)
Task: {755C4324-1A7C-4AB4-8ECF-A54B2385521D} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1903984 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {76F637D6-E473-4163-B115-49A0763F88C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {7BF8385F-CD8E-49F9-AD93-232CA67AD092} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe
Task: {82C07D71-4EF1-4670-A380-27E37B8E7169} - System32\Tasks\GlaryUpdate 5 => C:\Program Files\Glary Utilities 5\CheckUpdate.exe [43512 2019-06-23] (Glarysoft LTD -> Glarysoft Ltd)
Task: {8325DB6B-221C-4115-9B1D-88C6695F18CC} - System32\Tasks\Opera scheduled Autoupdate 1567628773 => C:\Users\MiniCyber\AppData\Local\Programs\Opera\launcher.exe [1348632 2019-10-04] (Opera Software AS -> Opera Software)
Task: {8484E510-FF8F-43FB-9DAE-1B55CB4D0A6A} - System32\Tasks\{7A76999C-80C2-4E02-883F-E83F9412DE11} => C:\Windows\system32\pcalua.exe -a C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86\spinstall.exe -d C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86
Task: {88C4A013-AAFF-47A0-915D-73A172114BC4} - System32\Tasks\Desconectar tablet
Task: {8A0EFD87-FD4E-4D6E-9246-AAEAA5CFEDE0} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1333616 2018-11-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {90368B02-9128-437E-9464-497ED0099A0A} - System32\Tasks\desconecta el alcatel we
Task: {9083EF52-EAE5-4D8B-A520-396F3242F008} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-766847690-1059452082-3536449659-1000 => C:\Users\MiniCyber\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-09-16] (Mega Limited -> Mega Limited)
Task: {94FD3EA7-7554-47EA-90CB-6C5A333BA471} - \Microsoft\Windows Defender\MP Scheduled Scan -> No File <==== ATTENTION
Task: {9CC760F3-8E9D-4DC0-984C-B7DB52A0A3DF} - System32\Tasks\Google Chrome32 => C:\backupsys\window3.vbs [91 2018-11-14] () [File not signed] <==== ATTENTION
Task: {A03F9C16-AC16-46CE-A23B-8DF5507459F9} - System32\Tasks\apagar el agua
Task: {A3045E57-6BDB-49CB-849D-68D33E2F00EB} - System32\Tasks\Desconecta la linterna we
Task: {B843F652-4AD2-42B5-B0E8-B013C2CC7E5B} - System32\Tasks\Driver Genius Scheduler => C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe [2349696 2019-03-20] (Driver Information Technology Co., Ltd. -> Driver-Soft Inc.)
Task: {BC8569E5-0C52-4DA0-88F9-6150DFD4ECE7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\2016\Office16\msoia.exe [314544 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C474FEA7-A08B-4D88-9C10-F89C01D9380C} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [File not signed]
Task: {CB73117D-B140-4543-9949-C207E43E848B} - System32\Tasks\{EB8A16B8-BAB6-4159-B03A-5781587121B0} => C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 3.5.exe [242743296 2019-05-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {D57C8451-FB54-49FD-955C-A96CBBD1CD6D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [156968 2019-03-10] (Google Inc -> Google Inc.)
Task: {DD1C2B9F-3031-4A88-A8F0-49B4959ED922} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {DDDA3FAB-4F45-4AC5-94F1-1851F9B02B54} - System32\Tasks\{28B80130-D117-4EE0-BBCF-F8DF97C64A05} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 3.5.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {E1C02DCC-9F26-48C7-A9F0-90F47B3A493C} - System32\Tasks\Driver Genius Skip UAC => C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe [2349696 2019-03-20] (Driver Information Technology Co., Ltd. -> Driver-Soft Inc.)
Task: {E4E55009-361B-4E15-A3CF-46ECBF9EE33B} - System32\Tasks\Tomate el arroz con leche we
Task: {FB1A73B2-528A-4CA5-99F2-2BBF0C5243F9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\2016\Office16\msoia.exe [314544 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE455680-FA82-4CEC-81F9-AEF2CD3F5A9D} - System32\Tasks\{627F4BF0-E864-45C3-A0C8-AD065E4331B5} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{023AFA79-93A5-4F91-B244-1FE2DF94E0FB}: [DhcpNameServer] 192.168.100.1

Internet Explorer:
==================
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.mx/?gws_rd=ssl
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2018-06-19] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\JDK 8.0.201\bin\ssv.dll [2019-03-12] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\2016\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\JDK 8.0.201\bin\jp2ssv.dll [2019-03-12] (Oracle America, Inc. -> Oracle Corporation)
BHO: KeepVid Pro 4.10.0 -> {F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} -> C:\Program Files\Wondershare\AllMyTube\BrowserPlugin\KVBrowserAppMgr.dll [2019-01-16] () [File not signed]
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\2016\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\2016\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 -  No File

FireFox:
========
FF DefaultProfile: sxsylfsy.default
FF ProfilePath: C:\Users\MiniCyber\AppData\Roaming\Mozilla\Firefox\Profiles\sxsylfsy.default [2019-09-04]
FF ProfilePath: C:\Users\MiniCyber\AppData\Roaming\Mozilla\Firefox\Profiles\w48gculz.default-release [2019-10-06]
FF DownloadDir: C:\Users\MiniCyber\Documents\CURPS
FF Homepage: Mozilla\Firefox\Profiles\w48gculz.default-release -> hxxps://www.google.com.mx/
FF Extension: (Image Picka) - C:\Users\MiniCyber\AppData\Roaming\Mozilla\Firefox\Profiles\w48gculz.default-release\Extensions\[email protected] [2019-08-06]
FF Extension: (No Name) - C:\Users\MiniCyber\AppData\Roaming\Mozilla\Firefox\Profiles\w48gculz.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Wondershare\AllMyTube\BrowserPlugin\[email protected]_xpi
FF Extension: (KeepVid Pro) - C:\Program Files\Wondershare\AllMyTube\BrowserPlugin\[email protected]_xpi [2019-10-23] [Legacy]
FF HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files\Internet Download Manager\idmmzcc3.xpi [2018-06-25] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]
FF HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\MiniCyber\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\MiniCyber\AppData\Roaming\IDM\idmmzcc5 [2019-06-26] [Legacy] [not signed]
FF HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\JDK 8.0.201\bin\dtplugin\npDeployJava1.dll [2019-03-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\JDK 8.0.201\bin\plugin2\npjp2.dll [2019-03-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\2016\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-16] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.com.mx/webhp?tab=rw
CHR StartupUrls: Default -> "hxxps://www.google.com.mx/"
CHR Profile: C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default [2019-10-25]
CHR Extension: (Presentaciones) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-10]
CHR Extension: (Documentos) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-11]
CHR Extension: (Google Drive) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-11]
CHR Extension: (YouTube) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-11]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-24]
CHR Extension: (Visual Inspector) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaejpgmekdkcngpbghnpcmbpbngoclc [2019-06-11]
CHR Extension: (Hojas de cálculo) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-10]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-11]
CHR Extension: (Minijuegos.com - Juegos Gratis) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmdigodnlhofkojgehfeefbnmfnaodk [2019-10-15]
CHR Extension: (IDM Integration Module) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-10-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-19]
CHR Extension: (Chrome Media Router) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR Profile: C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-27]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2018-07-10]
CHR HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx

Opera: 
=======
OPR DownloadDir: C:\Users\MiniCyber\Documents\CURPS
OPR StartupUrls: "hxxps://www.google.com.mx/"
OPR Extension: (Super Auto Refresh) - C:\Users\MiniCyber\AppData\Roaming\Opera Software\Opera Stable\Extensions\ghjaeanhfafkigkehjgapnlobfhefkme [2019-09-04]
OPR Extension: (IDM Integration Module) - C:\Users\MiniCyber\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-09-18]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5247944 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [99240 2019-07-01] (Alcorlink Corp. -> )
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [25864 2019-07-03] (Glarysoft LTD -> Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2019-07-01] (Martin Malik - REALiX -> REALiX(tm))
S4 IObitUnlocker; C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [41456 2017-06-19] (IObit Information Technology -> IObit)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [23040 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2017-02-22] (AnchorFree Inc -> Anchorfree Inc.)
R3 VSTHWBS2; C:\Windows\System32\DRIVERS\VSTBS23.SYS [266752 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
R3 VST_DPV; C:\Windows\System32\DRIVERS\VSTDPV3.SYS [980992 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
R3 winachsf; C:\Windows\System32\DRIVERS\VSTCNXT3.SYS [661504 2009-07-13] (Microsoft Windows -> Conexant Systems, Inc.)
S3 udsbus; system32\DRIVERS\udsbus.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\MINICY~1\AppData\Local\Temp\bin\tools\openhardwaremonitor\OpenHardwareMonitor.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-25 20:04 - 2019-10-25 20:05 - 000000000 ____D C:\FRST
2019-10-25 20:02 - 2019-10-25 20:04 - 000000000 ____D C:\Users\MiniCyber\Documents\Farbar Recovery Scan Tool
2019-10-25 19:30 - 2019-10-25 19:30 - 000000000 ____H C:\ProgramData\rebootpending.txt
2019-10-23 21:14 - 2019-10-23 21:14 - 000001195 _____ C:\Users\Public\Desktop\Wondershare AllMyTube.lnk
2019-10-23 21:14 - 2019-10-23 21:14 - 000001195 _____ C:\ProgramData\Desktop\Wondershare AllMyTube.lnk
2019-10-23 20:04 - 2019-10-23 22:09 - 000000000 ____D C:\Users\MiniCyber\Documents\Winbugs Difender
2019-10-17 20:59 - 2019-10-24 21:22 - 000010567 _____ C:\Users\MiniCyber\Documents\Juganando Jumex Folios.xlsx
2019-10-15 20:26 - 2019-10-15 20:26 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\Wondershare
2019-10-15 20:25 - 2019-10-24 20:58 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\Wondershare
2019-10-15 20:23 - 2019-10-23 21:13 - 000000000 ____D C:\Program Files\Wondershare
2019-10-15 20:23 - 2019-10-15 20:26 - 000000000 ____D C:\ProgramData\Wondershare
2019-10-14 22:53 - 2019-10-25 16:59 - 000000354 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2019-10-14 22:53 - 2019-10-14 22:53 - 000002726 _____ C:\Windows\system32\Tasks\DriverToolkit Autorun
2019-10-14 22:50 - 2019-10-14 22:50 - 000000000 _____ C:\Users\MiniCyber\Desktop\desinstalar al traidor de avira y ejecutar la herramienta de forospyware, luego probar avast.txt
2019-10-14 22:02 - 2019-10-14 22:43 - 000000000 ____D C:\Users\MiniCyber\Documents\Driver Toolkit
2019-10-11 21:58 - 2019-10-11 22:00 - 000000000 ____D C:\Users\MiniCyber\Documents\Driver Magician
2019-10-11 17:25 - 2019-10-23 17:12 - 000000000 ____D C:\Users\MiniCyber\Documents\Driver Reviver
2019-10-10 21:56 - 2019-10-10 22:03 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\DriverHub
2019-10-10 21:56 - 2019-10-10 21:56 - 000000981 _____ C:\Users\MiniCyber\Desktop\DriverHub.lnk
2019-10-10 21:56 - 2019-10-10 21:56 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DriverHub
2019-10-10 21:54 - 2019-10-10 21:54 - 000000000 ____D C:\Users\MiniCyber\Documents\DriverHub
2019-10-10 18:07 - 2019-10-10 18:07 - 000000000 ____D C:\Users\Public\Documents\Downloaded Installers
2019-10-10 18:07 - 2019-10-10 18:07 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\AVAST Software
2019-10-10 18:07 - 2019-10-10 18:07 - 000000000 ____D C:\ProgramData\Documents\Downloaded Installers
2019-10-10 17:45 - 2019-10-10 20:02 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater
2019-10-09 22:25 - 2019-10-10 17:45 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater 2
2019-10-08 20:03 - 2019-10-08 20:12 - 000000000 ____D C:\Users\MiniCyber\Documents\WinZip Driver Updater
2019-10-08 18:32 - 2019-10-08 19:07 - 000000000 ____D C:\Users\MiniCyber\Documents\Slim Drivers
2019-10-07 20:03 - 2019-10-07 20:06 - 000000000 ____D C:\Users\MiniCyber\Documents\Driver Easy
2019-10-07 18:17 - 2019-10-07 18:17 - 000003668 _____ C:\Windows\system32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000003118 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000003092 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000003090 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_itype_exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000003062 _____ C:\Windows\system32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000003060 _____ C:\Windows\system32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2019-10-07 18:17 - 2019-10-07 18:17 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centro de Mouse y Teclado de Microsoft.lnk
2019-10-07 18:16 - 2019-10-07 18:16 - 000000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2019-10-07 17:45 - 2019-10-07 18:13 - 000000000 ____D C:\Users\MiniCyber\Documents\Drivers Cloud
2019-10-06 21:01 - 2014-09-10 11:14 - 000163480 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000660120 _____ (Microsoft Corporation) C:\Windows\system32\mscomct2.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000617896 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000416408 _____ (Microsoft Corporation ) C:\Windows\system32\comct332.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000218776 _____ (Microsoft Corporation) C:\Windows\system32\dblist32.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000212112 _____ (Microsoft Corporation) C:\Windows\system32\mci32.ocx
2019-10-06 21:01 - 2013-11-25 08:27 - 000170920 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx
2019-10-06 21:01 - 2011-01-12 14:36 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\MFC71u.dll
2019-10-06 21:01 - 2011-01-12 14:25 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\MFC71DEU.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\MFC71ITA.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\MFC71FRA.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\MFC71ESP.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\MFC71ENU.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\MFC71KOR.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\MFC71JPN.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\MFC71CHT.DLL
2019-10-06 21:01 - 2011-01-12 14:25 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\MFC71CHS.DLL
2019-10-06 21:01 - 2011-01-12 14:19 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.dll
2019-10-06 21:01 - 2011-01-12 13:53 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\atl71.dll
2019-10-06 21:01 - 2008-04-15 07:00 - 001355776 _____ (Microsoft Corporation) C:\Windows\system32\msvbvm50.dll
2019-10-06 21:01 - 2006-08-25 15:28 - 001017344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70u.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ita.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70fra.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70esp.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70deu.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70enu.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70kor.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70jpn.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc70cht.dll
2019-10-06 21:01 - 2006-08-25 15:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc70chs.dll
2019-10-06 21:01 - 2006-08-25 15:07 - 001024000 _____ (Microsoft Corporation) C:\Windows\system32\mfc70.dll
2019-10-06 21:01 - 2006-08-25 14:17 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\atl70.dll
2019-10-06 16:40 - 2019-10-09 16:19 - 000007597 _____ C:\Users\MiniCyber\AppData\Local\Resmon.ResmonCfg
2019-10-05 21:53 - 2019-10-05 21:53 - 000004122 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1567628773
2019-10-04 19:29 - 2019-10-04 19:30 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\Microsoft Games
2019-10-03 10:03 - 2019-10-03 10:03 - 000001294 _____ C:\Users\MiniCyber\Desktop\Computer Management.lnk

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-25 19:30 - 2019-07-30 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-25 18:55 - 2019-05-28 21:25 - 000000000 ____D C:\Users\MiniCyber\Documents\CURPS
2019-10-25 18:29 - 2019-03-01 20:36 - 000000000 ____D C:\Users\MiniCyber\Documents\Avira
2019-10-25 17:07 - 2009-07-13 23:34 - 000014528 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-10-25 17:07 - 2009-07-13 23:34 - 000014528 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-10-25 01:22 - 2009-07-13 23:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-24 22:30 - 2019-05-20 16:20 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\Dexpot
2019-10-24 21:19 - 2019-02-21 06:57 - 001704916 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-24 21:19 - 2009-07-14 03:48 - 000756832 _____ C:\Windows\system32\perfh00A.dat
2019-10-24 21:19 - 2009-07-14 03:48 - 000164038 _____ C:\Windows\system32\perfc00A.dat
2019-10-24 21:19 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\inf
2019-10-24 21:17 - 2019-06-14 19:11 - 000037888 ___SH C:\Users\MiniCyber\Documents\Thumbs.db
2019-10-24 18:13 - 2019-03-10 10:44 - 000002128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-24 18:13 - 2019-03-10 10:44 - 000002087 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-24 18:13 - 2019-03-10 10:44 - 000002087 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-10-23 17:52 - 2019-03-02 22:59 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2019-10-23 17:51 - 2019-03-02 22:55 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-23 17:15 - 2019-02-23 20:26 - 000000000 ____D C:\Users\MiniCyber
2019-10-23 17:13 - 2019-07-30 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
2019-10-23 17:13 - 2019-07-30 23:07 - 000000000 ____D C:\Program Files\Driver Identifier
2019-10-23 17:13 - 2019-07-30 22:35 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\DriverTalent
2019-10-23 17:13 - 2019-07-30 22:35 - 000000000 ____D C:\ProgramData\DriverTalent
2019-10-23 17:13 - 2019-06-10 19:55 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\IrfanView
2019-10-23 17:13 - 2019-05-22 03:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2019-10-23 17:13 - 2019-03-02 15:51 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2019-10-23 17:13 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\AppCompat
2019-10-23 17:12 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\registration
2019-10-23 17:05 - 2019-06-26 16:20 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\DMCache
2019-10-14 21:30 - 2019-02-28 00:01 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\Adobe
2019-10-13 21:49 - 2019-03-14 02:25 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\ElevatedDiagnostics
2019-10-12 16:24 - 2019-06-28 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-10-09 22:03 - 2009-07-13 21:04 - 000000541 _____ C:\Windows\win.ini
2019-10-09 21:47 - 2019-07-28 21:57 - 000000000 ____D C:\Users\MiniCyber\Documents\TweakBit PCSuite
2019-10-08 20:35 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\system32\NDF
2019-10-08 18:37 - 2019-06-26 17:06 - 000000000 ___RD C:\Users\MiniCyber\Documents\MEGA
2019-10-08 16:18 - 2009-07-13 23:33 - 000438616 _____ C:\Windows\system32\FNTCACHE.DAT
2019-10-07 22:41 - 2019-07-30 23:02 - 000000000 ____D C:\Users\MiniCyber\Documents\Driver Identifier
2019-10-07 21:26 - 2019-02-23 21:42 - 000112624 _____ C:\Users\MiniCyber\AppData\Local\GDIPFONTCACHEV1.DAT
2019-10-07 17:35 - 2019-03-10 10:38 - 000003460 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-07 17:34 - 2019-03-10 10:38 - 000003332 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-07 17:34 - 2019-03-10 10:38 - 000000000 ____D C:\Program Files\Google
2019-10-06 22:00 - 2019-06-29 15:25 - 000000000 ____D C:\Users\MiniCyber\AppData\LocalLow\Mozilla
2019-10-06 21:02 - 2019-07-27 16:54 - 000000000 ____D C:\Users\MiniCyber\AppData\Roaming\DRPSu
2019-10-06 21:01 - 2009-07-13 21:37 - 000000000 ____D C:\Windows\system
2019-10-06 20:32 - 2019-09-17 20:05 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\File Renamer Basic
2019-10-03 11:29 - 2019-08-12 13:51 - 000003204 _____ C:\Windows\system32\Tasks\Desconectar tablet
2019-10-03 09:58 - 2019-08-03 12:54 - 000109127 _____ C:\Users\MiniCyber\Documents\starburn.txt
2019-09-29 17:50 - 2019-07-30 19:29 - 000003750 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2019-09-29 17:50 - 2019-07-30 19:29 - 000003310 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2019-09-26 19:38 - 2019-08-27 11:38 - 000003304 _____ C:\Windows\system32\Tasks\desconecta el alcatel we
2019-09-26 16:18 - 2019-08-15 18:38 - 000003280 _____ C:\Windows\system32\Tasks\Desconecta la linterna we

==================== Files in the root of some directories ================

2019-08-15 22:10 - 2019-08-22 17:00 - 000000132 _____ () C:\Users\MiniCyber\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-08-28 17:40 - 2019-08-28 17:40 - 000001456 _____ () C:\Users\MiniCyber\AppData\Local\Adobe Guardar para Web 11.0 Prefs
2019-10-06 16:40 - 2019-10-09 16:19 - 000007597 _____ () C:\Users\MiniCyber\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-10-20 19:32
==================== End of FRST.txt ============================

aqui el otro

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-10-2019
Ran by MiniCyber (25-10-2019 20:06:55)
Running from C:\Users\MiniCyber\Documents\Farbar Recovery Scan Tool
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) (2019-02-24 01:26:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-766847690-1059452082-3536449659-500 - Administrator - Disabled)
ASPNET (S-1-5-21-766847690-1059452082-3536449659-1004 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-766847690-1059452082-3536449659-1002 - Limited - Enabled)
Invitado (S-1-5-21-766847690-1059452082-3536449659-501 - Limited - Disabled)
MiniCyber (S-1-5-21-766847690-1059452082-3536449659-1000 - Administrator - Enabled) => C:\Users\MiniCyber

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7+ Taskbar Tweaker v5.5 (HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\7 Taskbar Tweaker) (Version: 5.5 - RaMMicHaeL)
Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20048 - Adobe Systems Incorporated)
Avira (HKLM\...\{e2be50eb-5ea7-469b-9805-e29b51000bb6}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG)
Avira (HKLM\...\{F3986A03-518F-4860-B372-1ACD7773DD99}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG) Hidden
Backup and Sync from Google (HKLM\...\{92359A7F-3E5D-4005-AF6A-5F23CBDD2211}) (Version: 3.46.7395.1225 - Google, Inc.)
Centro de Mouse y Teclado de Microsoft (HKLM\...\{38693783-8BD1-4DA8-A2E5-693F40DB7013}) (Version: 11.1.137.0 - Microsoft Corporation) Hidden
Centro de Mouse y Teclado de Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation)
Cyotek WebCopy version 1.7.0.600 (HKLM\...\{D5FAF1F8-C903-41b2-AC66-2682A02A78CB}_is1) (Version: 1.7.0.600 - Cyotek Ltd)
Dexpot (HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Dexpot) (Version: 1.6.14 - Dexpot GbR)
Driver Genius (HKLM\...\Driver Genius_is1) (Version: 18.0 - Driver-Soft Inc.)
DriverHub (HKLM\...\DriverHub) (Version: 1.1.2.1563 - ROSTPAY LTD)
DriverIdentifier 5.2 (HKLM\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version:  - DriverIdentifier)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
File Renamer - Basic (HKLM\...\File Renamer - Basic) (Version: 6.3 - Sherrod Computers)
Free Driver Scout (HKLM\...\{63ae9970-596c-47f5-858b-954224608203}) (Version: 1.0.0.0 - Covus Freemium)
FreeCommander XE (HKLM\...\FreeCommander XE_is1) (Version:  - Marek Jasinski)
GeoSetter 3.5.0 (HKLM\...\GeoSetter_is1) (Version:  - Friedemann Schmidt)
Glary Utilities PRO 5.122 (HKLM\...\Glary Utilities 5) (Version: 5.122.0.147 - Glarysoft Ltd)
Google Chrome (HKLM\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
IObit Unlocker (HKLM\...\IObit Unlocker_is1) (Version: 1.1.2.1 - IObit)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
Java 8 Update 201 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java SE Development Kit 8 Update 201 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180201}) (Version: 8.0.2010.9 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MEGAsync (HKLM\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.6.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 68.0.2 (x86 es-MX) (HKLM\...\Mozilla Firefox 68.0.2 (x86 es-MX)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2.7164 - Mozilla)
My Drivers 3.22 (HKLM\...\My Drivers_is1) (Version:  - Huntersoft)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201610071157) (Version: 8.2 - NetBeans.org)
Node.js (HKLM\...\{98594A9B-5D17-4DBD-8607-66D09A4F3EC0}) (Version: 12.10.0 - Node.js Foundation)
Opera Stable 63.0.3368.107 (HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Opera 63.0.3368.107) (Version: 63.0.3368.107 - Opera Software)
Photoshop CS5 Extended 12.0 (HKLM\...\Photoshop CS5 Extended 12.0) (Version:  - )
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Revo Uninstaller Pro 4.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.1.5 - VS Revo Group, Ltd.)
SHARP AL-2021/2031/2041,MX-B200 Series MFP Driver (HKLM\...\SHARP AL-2021 2031 2041,MX-B200 Series MFP Driver) (Version: 1.00.000 - SHARP)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1038 - SUPERAntiSpyware.com)
Update for Skype for Business 2016 (KB4462114) 32-Bit Edition (HKLM\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{C8F90D92-DE58-4C46-B39E-B21F758EA66E}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4462114) 32-Bit Edition (HKLM\...\{90160000-012B-0C0A-0000-0000000FF1CE}_Office16.PROPLUS_{C8F90D92-DE58-4C46-B39E-B21F758EA66E}) (Version:  - Microsoft)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/27/2012 7.0.0000.00001) (HKLM\...\8F9C586770119C5E2691CBF69E16EE1E8513B728) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports  (05/30/2011 1.1123.0) (HKLM\...\9F57DFB5B4E90E617CAF60510F56318C1F80CC8C) (Version: 05/30/2011 1.1123.0 - MediaTek Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports  (11/15/2007 5.1.2600.0) (HKLM\...\1C5CFF9BD49397D32DDD8D47E3AC26557809E1C5) (Version: 11/15/2007 5.1.2600.0 - MediaTek Inc.)
WinRAR 5.70 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wondershare AllMyTube(Build 7.4.1.1) (HKLM\...\AllMyTube_is1) (Version: 7.4.1.1 - Wondershare)
Wondershare Filmora(Build 7.8.6) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.3 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [			IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2018-05-12] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-10-10] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-10-10] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-10-10] (Google LLC -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-10-10] (Google LLC -> Google)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-10-10] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MiniCyber\AppData\Local\MEGAsync\ShellExtX32.dll [2019-09-16] (Mega Limited -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2014-03-14] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2014-03-14] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\MiniCyber\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\6935d9b9763ce2f9\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2019-08-04 13:18 - 2013-11-20 20:08 - 001295360 _____ (Clever Components) [File not signed] C:\Program Files\Driver-Soft\DriverGenius\clmultidx7.ocx
2008-05-29 03:11 - 2008-05-29 03:11 - 000126976 _____ (SHARP CORPORATION) [File not signed] C:\Windows\System32\SD3BLMON.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qgif.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000033280 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qicns.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000027648 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qico.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000245760 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qjpeg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qsvg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000020992 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qtga.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000316416 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qtiff.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000019968 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qwbmp.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000322560 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\imageformats\qwebp.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 001010688 _____ (The Qt Company Ltd) [File not signed] C:\Users\MiniCyber\AppData\Local\MEGAsync\platforms\qwindows.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => 
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => 
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => 
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => 
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => 

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-07-07 15:53 - 2019-08-04 13:23 - 000001071 ____R C:\Windows\system32\drivers\etc\hosts

127.0.0.1	license.superantispyware.com	127.0.0.1	platform.wondershare.com
0.0.0.0                   keystone.mwbsys.com
0.0.0.0                   telemetry.malwarebytes.com
127.0.0.1 http://www.driver-soft.com
127.0.0.1 www.driver-soft.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\nodejs\
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MiniCyber\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D7ED9173-D84C-4405-9F88-727168979B7D}] => (Allow) C:\Program Files\Microsoft Office\2016\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D12264D3-C2EB-470E-91E5-5E41113111F8}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{55663BEE-82A6-4F03-8C8B-6481CC72B287}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [UDP Query User{E01A2694-B59A-491F-9E57-78B99B56B1FA}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [TCP Query User{78189292-A4E5-4DAF-8BC7-0ADB7D4CB611}C:\users\minicyber\documents\snappy driver\snappy driver installer 1.19.4 (r1904) final portable\sdi_r1904.exe] => (Allow) C:\users\minicyber\documents\snappy driver\snappy driver installer 1.19.4 (r1904) final portable\sdi_r1904.exe (www.SamLab.ws) [File not signed]
FirewallRules: [UDP Query User{A15246F1-DFF2-444F-91E3-EDCE5C0560B0}C:\users\minicyber\documents\snappy driver\snappy driver installer 1.19.4 (r1904) final portable\sdi_r1904.exe] => (Allow) C:\users\minicyber\documents\snappy driver\snappy driver installer 1.19.4 (r1904) final portable\sdi_r1904.exe (www.SamLab.ws) [File not signed]
FirewallRules: [{86CBD63C-F1F7-45C5-B416-51070539F13B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DriverTalent.exe No File
FirewallRules: [{EB98048F-C137-4469-911B-AF5D0F4A4533}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\LDrvSvc.dll No File
FirewallRules: [{C6C63D63-C0FD-4D9B-AD74-87494015A17C}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe No File
FirewallRules: [{FAD042C7-30C9-4478-BA8F-6CC45FD1D52B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DTLService.exe No File
FirewallRules: [{9785642B-EACF-4C69-B2F4-071C8950D64A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5B7E1149-3603-412D-9EC0-AFB5C8FEF74A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{798D5740-E750-480B-AC4A-82D6163AA369}] => (Allow) C:\Users\MiniCyber\AppData\Local\Programs\Opera\63.0.3368.94\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{7CA39D0C-1CD5-4179-86EF-BD2EDE321DA5}] => (Allow) C:\Users\MiniCyber\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DFBA779F-140C-4805-B819-49BD51A1FC69}] => (Allow) C:\Users\MiniCyber\Documents\DriverPack\bin\tools\aria2c.exe () [File not signed]
FirewallRules: [{75DB53FC-86ED-443D-903F-35F14D1C2411}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{86564386-1366-4E76-A742-9CB93372FEF4}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{E0079087-A132-4CA2-877E-A56126AA7662}] => (Allow) LPort=1688
FirewallRules: [{E1EBFA78-0410-4884-9771-3DE7F4F2D636}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]
FirewallRules: [{360EE979-098B-4F3A-9D3D-0C7BA6C85F3C}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]
FirewallRules: [{7764F7FB-BD22-44F1-9C8A-EAA134822AED}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

15-10-2019 17:11:04 Revo Uninstaller Pro's restore point - Wondershare AllMyTube(Build 7.4.1.1)
15-10-2019 17:43:59 Revo Uninstaller Pro's restore point - Wondershare AllMyTube(Build 7.4.1.1)
21-10-2019 19:07:36 Operación de restauración
22-10-2019 17:14:57 restauracion 22 de octubre 2019
23-10-2019 16:46:58 Operación de restauración
25-10-2019 17:15:49 restauracion 251019
25-10-2019 19:28:08 Revo Uninstaller Pro's restore point - Avira Antivirus

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/25/2019 07:28:07 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {b70cb3b6-e1e4-4d7f-a455-eed925850c6c}

Error: (10/25/2019 05:36:02 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (10/24/2019 06:44:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (10/23/2019 10:03:16 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Users\MiniCyber\Documents\Office\32 bits\LLAAAL32\Activador\KMS Tools Portable\Programs\KMSAuto Lite Portable v1.4.8\KMSAuto x64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (10/23/2019 06:17:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (10/23/2019 05:01:07 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Error no especificado durante Restaurar sistema: (restauracion 22 de octubre 2019). Información adicional: 0x80070005.

Error: (10/22/2019 06:36:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "c:\program files\glary utilities 5\DPInst64.exe".
No se encontró el ensamblado dependiente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (10/22/2019 04:53:38 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Error no especificado durante Restaurar sistema: (Removed Avast Driver Updater). Información adicional: 0x80070005.


System errors:
=============
Error: (10/25/2019 07:46:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Avira Service Host se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/24/2019 10:30:39 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {B8FB4AD7-EA4A-4B47-BFDC-BFC94160A8EA} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (10/24/2019 09:22:52 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 80.

Error: (10/24/2019 09:22:52 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 80.

Error: (10/24/2019 09:22:52 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (10/24/2019 09:22:52 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (10/24/2019 07:29:24 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio lmhosts.

Error: (10/23/2019 10:26:46 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Avira Programador se cerró con el error específico de servicio Función incorrecta.
.


CodeIntegrity:
===================================

Date: 2019-10-25 19:01:47.207
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 19:01:47.176
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.981
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.950
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.918
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.887
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.856
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2019-10-25 17:35:41.825
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\Avira\Antivirus\avirasecuritycenteragent.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info =========================== 

BIOS: Phoenix Technologies, LTD 5.12 06/11/2007
Motherboard: ECS Nettle
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3600+
Percentage of memory in use: 87%
Total physical RAM: 1918.46 MB
Available physical RAM: 244.9 MB
Total Virtual: 3836.92 MB
Available Virtual: 701.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:291.5 GB) (Free:96.32 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:6.49 GB) (Free:0.84 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive j: (ADATA UFD) (Removable) (Total:3.61 GB) (Free:0.65 GB) FAT32
Drive l: (SEAGATEBARRACUDA) (Fixed) (Total:931.51 GB) (Free:800.78 GB) NTFS

\\?\Volume{38e97d84-35ce-11e9-b8f1-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=291.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=6.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CDDB2302)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 6 (Size: 3.6 GB) (Disk ID: 04DD5721)
Partition 1: (Active) - (Size=3.6 GB) - (Type=0B)

==================== End of Addition.txt ============================

Hola @alexisdorian1768

*Desinstala con Revo Uninstaller en su Modo Avanzado:

• Los productos de Iobit

Manual de Revo Uninstaller.

Ya no son recomendables.

Ejecutaste FRST desde un lugar incorrecto:

• Running from C:\Users\MiniCyber\Documents\Farbar Recovery Scan Tool

Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.

Luego sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

• Descarga DelFix en el escritorio de Windows.
• Clic Derecho, “Ejecutar como Administrador”.
• En la ventana principal, marca solamente la casilla “Create Registry Backup”.
• Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:

Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\ASHelper.exe
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\MountPoints2: {8ec75f50-8c6f-11e9-ad98-806e6f6e6963} - E:\wubi.exe
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2616320 2010-11-20] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Task: {46B407B2-1494-4341-8AB4-68D8E5DD1FCA} - System32\Tasks\{7690DF6B-B154-4A60-8EDE-F62FF00A77E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0 32 bits.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {72723DB1-4A25-4965-890F-51B92A6415FF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {7BF8385F-CD8E-49F9-AD93-232CA67AD092} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe
Task: {8484E510-FF8F-43FB-9DAE-1B55CB4D0A6A} - System32\Tasks\{7A76999C-80C2-4E02-883F-E83F9412DE11} => C:\Windows\system32\pcalua.exe -a C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86\spinstall.exe -d C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86
Task: {94FD3EA7-7554-47EA-90CB-6C5A333BA471} - \Microsoft\Windows Defender\MP Scheduled Scan -> No File <==== ATTENTION
Task: {9CC760F3-8E9D-4DC0-984C-B7DB52A0A3DF} - System32\Tasks\Google Chrome32 => C:\backupsys\window3.vbs [91 2018-11-14] () [File not signed] <==== ATTENTION
Task: {DD1C2B9F-3031-4A88-A8F0-49B4959ED922} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {DDDA3FAB-4F45-4AC5-94F1-1851F9B02B54} - System32\Tasks\{28B80130-D117-4EE0-BBCF-F8DF97C64A05} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 3.5.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {FE455680-FA82-4CEC-81F9-AEF2CD3F5A9D} - System32\Tasks\{627F4BF0-E864-45C3-A0C8-AD065E4331B5} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.mx/?gws_rd=ssl
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 -  No File
CHR Extension: (Chrome Media Router) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
S3 udsbus; system32\DRIVERS\udsbus.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\MINICY~1\AppData\Local\Temp\bin\tools\openhardwaremonitor\OpenHardwareMonitor.sys [X] <==== ATTENTION
2019-10-10 18:07 - 2019-10-10 18:07 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\AVAST Software
2019-10-10 17:45 - 2019-10-10 20:02 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater
2019-10-09 22:25 - 2019-10-10 17:45 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater 2
2019-10-25 19:30 - 2019-07-30 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-25 18:29 - 2019-03-01 20:36 - 000000000 ____D C:\Users\MiniCyber\Documents\Avira
Avira (HKLM\...\{e2be50eb-5ea7-469b-9805-e29b51000bb6}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG)
Avira (HKLM\...\{F3986A03-518F-4860-B372-1ACD7773DD99}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG) Hidden
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"
C:\Program Files\Avira
FirewallRules: [TCP Query User{55663BEE-82A6-4F03-8C8B-6481CC72B287}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [UDP Query User{E01A2694-B59A-491F-9E57-78B99B56B1FA}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [{86CBD63C-F1F7-45C5-B416-51070539F13B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DriverTalent.exe No File
FirewallRules: [{EB98048F-C137-4469-911B-AF5D0F4A4533}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\LDrvSvc.dll No File
FirewallRules: [{C6C63D63-C0FD-4D9B-AD74-87494015A17C}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe No File
FirewallRules: [{FAD042C7-30C9-4478-BA8F-6CC45FD1D52B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DTLService.exe No File
FirewallRules: [{75DB53FC-86ED-443D-903F-35F14D1C2411}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{86564386-1366-4E76-A742-9CB93372FEF4}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END

• Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

• Ejecutas Frst.exe.
• Presionas el botón Fix y aguardas a que termine.
• La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
• Lo pegas en tu próxima respuesta.

Luego de reiniciar antes de reinstalar el traidor de Avira o probar con Avast, te recomiendo pruebes si no lo has hecho Kaspersky Free.

Nos comentas.

Salu2.

Hola @SanMar

buenas noches, agradezco nuevamente tu tiempo y tu molestia de responderme, dejo aquí el log:

Fix result of Farbar Recovery Scan Tool (x86) Version: 29-10-2019
Ran by MiniCyber (29-10-2019 18:43:38) Run:1
Running from C:\Users\MiniCyber\Desktop
Loaded Profiles: MiniCyber (Available Profiles: MiniCyber)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\ASHelper.exe
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\MountPoints2: {8ec75f50-8c6f-11e9-ad98-806e6f6e6963} - E:\wubi.exe
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2616320 2010-11-20] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Task: {46B407B2-1494-4341-8AB4-68D8E5DD1FCA} - System32\Tasks\{7690DF6B-B154-4A60-8EDE-F62FF00A77E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0 32 bits.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {72723DB1-4A25-4965-890F-51B92A6415FF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {7BF8385F-CD8E-49F9-AD93-232CA67AD092} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe
Task: {8484E510-FF8F-43FB-9DAE-1B55CB4D0A6A} - System32\Tasks\{7A76999C-80C2-4E02-883F-E83F9412DE11} => C:\Windows\system32\pcalua.exe -a C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86\spinstall.exe -d C:\Users\MiniCyber\Documents\Huawei\Driver_Windows_MTK_SoLuci0nesH\AutoInstalacion\SmartPhoneDriver\x86
Task: {94FD3EA7-7554-47EA-90CB-6C5A333BA471} - \Microsoft\Windows Defender\MP Scheduled Scan -> No File <==== ATTENTION
Task: {9CC760F3-8E9D-4DC0-984C-B7DB52A0A3DF} - System32\Tasks\Google Chrome32 => C:\backupsys\window3.vbs [91 2018-11-14] () [File not signed] <==== ATTENTION
Task: {DD1C2B9F-3031-4A88-A8F0-49B4959ED922} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\MiniCyber\Documents\Eset\esetonlinescanner_esl.exe [7986200 2019-07-30] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {DDDA3FAB-4F45-4AC5-94F1-1851F9B02B54} - System32\Tasks\{28B80130-D117-4EE0-BBCF-F8DF97C64A05} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 3.5.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: {FE455680-FA82-4CEC-81F9-AEF2CD3F5A9D} - System32\Tasks\{627F4BF0-E864-45C3-A0C8-AD065E4331B5} => C:\Windows\system32\pcalua.exe -a "C:\Users\MiniCyber\Documents\Microsoft NET Framework\v 2.0.exe" -d "C:\Users\MiniCyber\Documents\Microsoft NET Framework"
Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.mx/?gws_rd=ssl
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
SearchScopes: HKU\S-1-5-21-766847690-1059452082-3536449659-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D073119-N0400AB747CC590BEC44CD91F&form=CONBDF&conlogo=CT3330962&q={searchTerms}
Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 -  No File
CHR Extension: (Chrome Media Router) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
S3 udsbus; system32\DRIVERS\udsbus.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\MINICY~1\AppData\Local\Temp\bin\tools\openhardwaremonitor\OpenHardwareMonitor.sys [X] <==== ATTENTION
2019-10-10 18:07 - 2019-10-10 18:07 - 000000000 ____D C:\Users\MiniCyber\AppData\Local\AVAST Software
2019-10-10 17:45 - 2019-10-10 20:02 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater
2019-10-09 22:25 - 2019-10-10 17:45 - 000000000 ____D C:\Users\MiniCyber\Documents\Avast Driver Updater 2
2019-10-25 19:30 - 2019-07-30 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-25 18:29 - 2019-03-01 20:36 - 000000000 ____D C:\Users\MiniCyber\Documents\Avira
Avira (HKLM\...\{e2be50eb-5ea7-469b-9805-e29b51000bb6}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG)
Avira (HKLM\...\{F3986A03-518F-4860-B372-1ACD7773DD99}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG) Hidden
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"
C:\Program Files\Avira
FirewallRules: [TCP Query User{55663BEE-82A6-4F03-8C8B-6481CC72B287}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [UDP Query User{E01A2694-B59A-491F-9E57-78B99B56B1FA}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe No File
FirewallRules: [{86CBD63C-F1F7-45C5-B416-51070539F13B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DriverTalent.exe No File
FirewallRules: [{EB98048F-C137-4469-911B-AF5D0F4A4533}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\LDrvSvc.dll No File
FirewallRules: [{C6C63D63-C0FD-4D9B-AD74-87494015A17C}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe No File
FirewallRules: [{FAD042C7-30C9-4478-BA8F-6CC45FD1D52B}] => (Allow) C:\Program Files\OSTotoSoft\DriverTalent\DTLService.exe No File
FirewallRules: [{75DB53FC-86ED-443D-903F-35F14D1C2411}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{86564386-1366-4E76-A742-9CB93372FEF4}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Wondershare Helper Compact.exe" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully.
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ec75f50-8c6f-11e9-ad98-806e6f6e6963} => removed successfully.
"HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => removed successfully.
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SPReview" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{46B407B2-1494-4341-8AB4-68D8E5DD1FCA}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46B407B2-1494-4341-8AB4-68D8E5DD1FCA}" => removed successfully.
C:\Windows\System32\Tasks\{7690DF6B-B154-4A60-8EDE-F62FF00A77E6} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7690DF6B-B154-4A60-8EDE-F62FF00A77E6}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{72723DB1-4A25-4965-890F-51B92A6415FF}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72723DB1-4A25-4965-890F-51B92A6415FF}" => removed successfully.
C:\Windows\System32\Tasks\EOSv3 Scheduler onTime => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onTime" => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BF8385F-CD8E-49F9-AD93-232CA67AD092} => not found
"C:\Windows\System32\Tasks\DriverToolkit Autorun" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverToolkit Autorun => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8484E510-FF8F-43FB-9DAE-1B55CB4D0A6A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8484E510-FF8F-43FB-9DAE-1B55CB4D0A6A}" => removed successfully.
C:\Windows\System32\Tasks\{7A76999C-80C2-4E02-883F-E83F9412DE11} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A76999C-80C2-4E02-883F-E83F9412DE11}" => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94FD3EA7-7554-47EA-90CB-6C5A333BA471} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Defender\MP Scheduled Scan" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9CC760F3-8E9D-4DC0-984C-B7DB52A0A3DF}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CC760F3-8E9D-4DC0-984C-B7DB52A0A3DF}" => removed successfully.
C:\Windows\System32\Tasks\Google Chrome32 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Google Chrome32" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DD1C2B9F-3031-4A88-A8F0-49B4959ED922}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD1C2B9F-3031-4A88-A8F0-49B4959ED922}" => removed successfully.
C:\Windows\System32\Tasks\EOSv3 Scheduler onLogOn => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onLogOn" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDDA3FAB-4F45-4AC5-94F1-1851F9B02B54}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDDA3FAB-4F45-4AC5-94F1-1851F9B02B54}" => removed successfully.
C:\Windows\System32\Tasks\{28B80130-D117-4EE0-BBCF-F8DF97C64A05} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{28B80130-D117-4EE0-BBCF-F8DF97C64A05}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE455680-FA82-4CEC-81F9-AEF2CD3F5A9D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE455680-FA82-4CEC-81F9-AEF2CD3F5A9D}" => removed successfully.
C:\Windows\System32\Tasks\{627F4BF0-E864-45C3-A0C8-AD065E4331B5} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{627F4BF0-E864-45C3-A0C8-AD065E4331B5}" => removed successfully.
"C:\Windows\Tasks\DriverToolkit Autorun.job" => not found
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
"HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKLM\Software\Classes\PROTOCOLS\Handler\WSKVAllmytubechrome => removed successfully.
CHR Extension: (Chrome Media Router) - C:\Users\MiniCyber\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25] => Error: No automatic fix found for this entry.
HKLM\System\CurrentControlSet\Services\udsbus => removed successfully.
udsbus => service removed successfully.
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully.
WinRing0_1_2_0 => service removed successfully.
C:\Users\MiniCyber\AppData\Local\AVAST Software => moved successfully
C:\Users\MiniCyber\Documents\Avast Driver Updater => moved successfully
C:\Users\MiniCyber\Documents\Avast Driver Updater 2 => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira => moved successfully
C:\Users\MiniCyber\Documents\Avira => moved successfully
Avira (HKLM\...\{e2be50eb-5ea7-469b-9805-e29b51000bb6}) (Version: 1.2.137.23068 - Avira Operations GmbH & Co. KG) => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F3986A03-518F-4860-B372-1ACD7773DD99}\\SystemComponent" => removed successfully.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Avira SystrayStartTrigger => removed successfully.
"C:\Program Files\Avira" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{55663BEE-82A6-4F03-8C8B-6481CC72B287}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E01A2694-B59A-491F-9E57-78B99B56B1FA}C:\users\minicyber\appdata\local\temp\wondershare\mobilego\mobilegoservice.exe" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86CBD63C-F1F7-45C5-B416-51070539F13B}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB98048F-C137-4469-911B-AF5D0F4A4533}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6C63D63-C0FD-4D9B-AD74-87494015A17C}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FAD042C7-30C9-4478-BA8F-6CC45FD1D52B}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75DB53FC-86ED-443D-903F-35F14D1C2411}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86564386-1366-4E76-A742-9CB93372FEF4}" => removed successfully.

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de  rea local* 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::7459:a623:9b18:ad2b%10
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.100.62
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : fe80::1%10
                                       192.168.100.1

Adaptador de t£nel isatap.{023AFA79-93A5-4F91-B244-1FE2DF94E0FB}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.{5A4E3B2A-D011-4F34-98D0-2C7B8D97BA25}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Teredo Tunneling Pseudo-Interface:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {88DC14C1-F157-4514-A62F-D14F1FBCEA03}.
0 out of 1 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.
"HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\S-1-5-21-766847690-1059452082-3536449659-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43849018 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 117824369 B
Edge => 0 B
Chrome => 467426317 B
Firefox => 1171550090 B
Opera => 400815671 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 198413 B
LocalService => 330657 B
NetworkService => 401541 B
MiniCyber => 434696328 B

RecycleBin => 0 B
EmptyTemp: => 2.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:48:44 ====

Hola @alexisdorian1768

El Fixlog perfecto.

Sobre:

Falto tu comentario sobre lo que deseas hacer.

Para eliminar las herramientas utilizadas:

Descargas/Ejecutas >> Delfix, desde tu escritorio.

• Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >> “Ejecutar como Administrador”)
• Marca las casilla Remove disinfection tools y Purgue Sistem Restore
• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Nos comentas.

Salu2.