Buenas amigos. Tengo mi PC que inicia pero se queda colgada. Pueden pasar 2 horas y no se puede hacer nada en ella. Cabe acotar que con Modo Seguro si puedo ingresar y es así como he podido enviar este mensaje =/ Me gustaría saber si me pueden ayudar con este log de Hijackthis:
HiJackThis.txt (26,4 KB)
Hola @dislorth Bienvenido al nuevo Foro!!!
Por el momento no utilices FRST hasta que yo no te lo indique.
Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden, hazlos en modo seguro, ya que no puedes en modo normal:
1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.
2) Descarga AdwCleaner | InfoSpyware en el escritorio.
3) Descarga CCleaner
Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.
¿Cómo pegar reportes en el foro?
Un saludo
Adjunto el reporte de Malwarebytes:
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 7/3/20
Hora del análisis: 18:23
Archivo de registro: 3c625bba-60c2-11ea-99b1-eca86b9904a2.json
-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.835
Versión del paquete de actualización: 1.0.20362
Licencia: Prueba
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x86
Sistema de archivos: NTFS
Usuario: DISLORTH-WORK\Disloth
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 302594
Amenazas detectadas: 70
Amenazas en cuarentena: 70
Tiempo transcurrido: 42 min, 9 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 1
RiskWare.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MinerGate, En cuarentena, 850, 726324, , , ,
Valor del registro: 2
RiskWare.BitCoinMiner, HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MinerGateGui, En cuarentena, 850, 726324, , , ,
PUP.Optional.Imali.Generic, HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|hijfkjphpcbbabdnpkmgcdnpfhjldbhm, En cuarentena, 4576, 443118, , , ,
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 12
RiskWare.BitCoinMiner, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\MINERGATE, En cuarentena, 850, 411852, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\USERS\DISLOTH\APPDATA\LOCAL\MINERGATE, En cuarentena, 850, 411853, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\imageformats, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\platforms, En cuarentena, 850, 726324, , , ,
PUP.Optional.Imali.Generic, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sustituido, 4576, 443118, , , ,
PUP.Optional.Imali.Generic, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HIJFKJPHPCBBABDNPKMGCDNPFHJLDBHM, En cuarentena, 4576, 443118, 1.0.20362, , ame,
PUP.Optional.Funmoods, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 334, 455241, , , ,
PUP.Optional.SearchModule, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 303, 458372, , , ,
Adware.Elex.ShrtCln, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 298, 454717, , , ,
Adware.Elex.ShrtCln, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 298, 454717, , , ,
PUP.Optional.Funmoods, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 334, 455241, , , ,
Archivo: 55
RiskWare.BitCoinMiner, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinerGate\MinerGate.lnk, En cuarentena, 850, 411852, , , ,
RiskWare.BitCoinMiner, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinerGate\Uninstall.lnk, En cuarentena, 850, 411852, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\aeon.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\bcn.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\bcn.log.old, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\dsh.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\fcn.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\minergate.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\minergate.log.old, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\log\xmr.log, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\.achievements, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\.achievements.bak, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\.lock, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\.miners_lock, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\[email protected], En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\[email protected], En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\miners.ini, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\miners.ini.IK2336, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Users\Disloth\AppData\Local\minergate\pools.config, En cuarentena, 850, 411853, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\imageformats\qico.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\platforms\qwindows.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\libeay32.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\minergate.exe, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\OpenCL.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Qt5Core.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Qt5Gui.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Qt5Network.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Qt5WebSockets.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Qt5Widgets.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\ssleay32.dll, En cuarentena, 850, 726324, , , ,
RiskWare.BitCoinMiner, C:\Program Files\MinerGate\Uninstall.exe, En cuarentena, 850, 726324, , , ,
PUP.Optional.Imali.Generic, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, 4576, 443118, , , ,
PUP.Optional.Imali.Generic, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, 4576, 443118, , , ,
PUP.Optional.Imali.Generic, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HIJFKJPHPCBBABDNPKMGCDNPFHJLDBHM\0.8_0\REDIRECT.JS, En cuarentena, 4576, 443118, 1.0.20362, , ame,
PUP.Optional.Cgminer, C:\USERS\DISLOTH\DOWNLOADS\CGMINER-3.7.2-WINDOWS.ZIP, En cuarentena, 10872, 45746, 1.0.20362, , ame,
RiskWare.BitCoinMiner.VMP, C:\USERS\DISLOTH\DOWNLOADS\CLAYMORE'S DUAL ETHEREUM+DECRED_SIACOIN_LBRY_PASCAL_BLAKE2S_KECCAK AMD+NVIDIA GPU MINER V12.0 - CATALYST 15.12-18.X - CUDA 8.0_10.0_9.1_7.5_6.5.ZIP, En cuarentena, 7803, 616646, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\USERS\DISLOTH\DOWNLOADS\CLAYMORE'S DUAL ETHEREUM+DECRED_SIACOIN_LBRY_PASCAL_BLAKE2S_KECCAK AMD+NVIDIA GPU MINER V14.5 BETA.ZIP, En cuarentena, 850, 685990, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\USERS\DISLOTH\DOWNLOADS\MINERGATE-5.22-WIN32.EXE, En cuarentena, 850, 472639, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\USERS\DISLOTH\DOWNLOADS\XMR-STAK-WIN64.ZIP, En cuarentena, 850, 497806, 1.0.20362, , ame,
RiskWare.BitCoinMiner, C:\USERS\DISLOTH\DESKTOP\RIG\ESCRITORIO MINA\V9.8.ZIP, En cuarentena, 850, 556050, 1.0.20362, , ame,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000007.ldb, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000009.ldb, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000010.log, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000011.ldb, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, En cuarentena, 334, 455241, , , ,
PUP.Optional.Funmoods, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 334, 455241, 1.0.20362, , ame,
PUP.Optional.SearchModule, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 303, 458372, 1.0.20362, , ame,
Adware.Elex.ShrtCln, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 298, 454717, 1.0.20362, , ame,
Adware.Elex.ShrtCln, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 298, 454717, 1.0.20362, , ame,
PUP.Optional.Funmoods, C:\USERS\DISLOTH\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 334, 455241, 1.0.20362, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)Adjunto el reporte de AdwCleaner:
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-02.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-07-2020
# Duration: 00:00:05
# OS: Windows 7 Ultimate
# Cleaned: 20
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files\minergate
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\Users\Disloth\AppData\Roaming\Tencent
***** [ Files ] *****
Deleted C:\Users\Disloth\AppData\Roaming\Mozilla\Firefox\Profiles\eu0q8ksl.default\searchplugins\yahoo-lavasoft.xml
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|AndroidServer.exe
Deleted HKLM\Software\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
Deleted NeoBux AdAlert - oaepeijninfcgjdnighjnlgdkkgpnaen
***** [ Chromium URLs ] *****
Deleted AVG Secure Search
Deleted Softonic ES
Deleted claro.com.pa
Deleted nabble.com
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.SamsungSmartSwitch File C:\Users\Disloth\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smart Switch.lnk
Deleted Preinstalled.SamsungSmartSwitch File C:\Users\Public\Desktop\Smart Switch.lnk
Deleted Preinstalled.SamsungSmartSwitch Folder C:\Program Files\SAMSUNG\SMART SWITCH PC
Deleted Preinstalled.SamsungSmartSwitch Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAMSUNG\SMART SWITCH PC
Deleted Preinstalled.SamsungSmartSwitch Folder C:\Users\Disloth\AppData\Roaming\SAMSUNG\SMART SWITCH PC
Deleted Preinstalled.SamsungSmartSwitch Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
Deleted Preinstalled.SamsungSmartSwitch Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3100 octets] - [07/03/2020 19:11:19]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-02.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-07-2020
# Duration: 00:00:19
# OS: Windows 7 Ultimate
# Scanned: 31902
# Detected: 20
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.BitCoinMiner C:\Program Files\minergate
PUP.Optional.Legacy C:\Users\Disloth\AppData\Roaming\Tencent
PUP.Optional.WebCompanion C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
***** [ Files ] *****
PUP.Optional.Legacy C:\Users\Disloth\AppData\Roaming\Mozilla\Firefox\Profiles\eu0q8ksl.default\searchplugins\yahoo-lavasoft.xml
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|AndroidServer.exe
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
PUP.Optional.Legacy NeoBux AdAlert - oaepeijninfcgjdnighjnlgdkkgpnaen
***** [ Chromium URLs ] *****
PUP.Optional.Legacy AVG Secure Search
PUP.Optional.Legacy claro.com.pa
PUP.Optional.Legacy nabble.com
PUP.Optional.SofTonicAssistant Softonic ES
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.SamsungSmartSwitch File C:\Users\Disloth\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smart Switch.lnk
Preinstalled.SamsungSmartSwitch File C:\Users\Public\Desktop\Smart Switch.lnk
Preinstalled.SamsungSmartSwitch Folder C:\Program Files\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch Folder C:\Users\Disloth\AppData\Roaming\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
Preinstalled.SamsungSmartSwitch Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########Análisis de JRT:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Ultimate x86
Ran by Disloth (Limited) on 07/03/2020 at 19:15:42,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 50
Successfully deleted: C:\ProgramData\thunder network (Folder)
Successfully deleted: C:\Users\Public\thunder network (Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39K6NT06 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3YFWWOAI (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4BZR4RSA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8KDO4KVJ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\99VP6F8J (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BFHJKD6T (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CMM3IHRA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DTB926MP (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E6T2KQP5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E8RQSL2F (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPJDLQ72 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J1V6ADWT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J6ABACN0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L28YLZVL (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LSZMZFJF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OMF3XDFI (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PGARD5JQ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q3BDFMKX (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QKQ1PG6X (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QQSFN1ZN (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TP4IPJTM (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VDVJJFN6 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X8MP6JUT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Disloth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XKYIBEEP (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39K6NT06 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3YFWWOAI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4BZR4RSA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8KDO4KVJ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\99VP6F8J (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BFHJKD6T (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CMM3IHRA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DTB926MP (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E6T2KQP5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E8RQSL2F (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPJDLQ72 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J1V6ADWT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J6ABACN0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L28YLZVL (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LSZMZFJF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OMF3XDFI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PGARD5JQ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q3BDFMKX (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QKQ1PG6X (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QQSFN1ZN (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TP4IPJTM (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VDVJJFN6 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X8MP6JUT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XKYIBEEP (Temporary Internet Files Folder)
Registry: 2
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_4F5040AEE09E803C5969C89766380771 (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07/03/2020 at 19:16:50,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Análisis FRST:
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 07-03-2020
Ejecutado por Disloth (administrador) sobre DISLORTH-WORK (ECS H61H2-CM) (07-03-2020 19:18:59)
Ejecutado desde C:\Users\Disloth\Downloads
Perfiles cargados: Disloth (Perfiles disponibles: Disloth)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: Chrome)
Modo de Inicio: Safe Mode (with Networking)
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5088456 2014-10-01] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5011504 2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Creative WebCam Tray] => C:\Program Files\Creative\WebCam Control\CAMTRAY.EXE [18944 1999-04-27] (Creative Technology Ltd) [Archivo no firmado]
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2622520 2019-05-19] (Adobe Inc. -> Adobe Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [443640 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited)
HKLM\...\Run: [RIM PeerManager] => C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe [4730616 2015-05-26] (BlackBerry Ltd. -> BlackBerry Limited)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [262456 2018-07-06] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3998832 2016-11-24] (Tonec Inc. -> Tonec Inc.)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5553712 2019-12-17] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [49703256 2018-08-01] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe [2132320 2018-05-29] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Run: [GoogleChromeAutoLaunch_4F5040AEE09E803C5969C89766380771] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d18-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d1e-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {33d2eac1-d126-11e7-b402-eca86b9904a2} - G:\Driver.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566834be-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566835a3-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {9c2ae915-3266-11e7-8ce2-eca86b9904a2} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {d861b20b-cc78-11e7-9b2f-eca86b9904a2} - F:\setup.exe -a
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-08] (Google LLC -> Google LLC)
GroupPolicy: Restricción ? <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {08B37D58-C737-4DB7-ABD6-D6AF3F93F9BF} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {114A217D-157D-4E67-A4DA-13C77DD20812} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {16A452F3-9526-4C35-99DE-89A391599B6F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {29F8E803-F58D-4356-9442-F020193C1F09} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4ED2ECCF-AC4F-4845-AD4E-58AA184D4379} - System32\Tasks\Motorola Device Manager Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {50ADF1F6-B759-49AB-87CD-5B3497DAE694} - System32\Tasks\G2MUpdateTask-S-1-5-21-838994074-81632765-970354094-1000 => C:\Users\Disloth\AppData\Local\GoToMeeting\16474\g2mupdate.exe [32256 2020-01-16] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {511CB2DF-0851-4F45-8108-4B3F40441323} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {51A59023-BCC7-4D90-98A9-59D939B90295} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6377648C-2987-466B-8299-2C6F49845F1C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18929952 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B15EF00-00E2-4F48-8A4F-D5D46060BC79} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {73A220FD-F6C6-47FC-B36D-AAC4A073CF15} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-01-12] (Google Inc -> Google Inc.)
Task: {79871FB4-8896-408A-9038-EA704FEEFAAE} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {8F66D7F2-FFEC-41FD-87B7-E166D67E8C4E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {A4C46399-5A9B-4555-A354-8D3990C74AA8} - System32\Tasks\AdobeAAMUpdater-1.0-Disloth-Work-Disloth => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {A9DF361B-92CE-4260-901D-5C44D4B95826} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-01-12] (Google Inc -> Google Inc.)
Task: {AA5A9064-7DAB-43A8-938D-4311FCF02FC9} - System32\Tasks\{775FBE19-22A4-46E0-B179-60247ADE9914} => C:\Falcon Box\FMM\Mtk.exe [59531264 2017-10-07] (Falcon Team) [Archivo no firmado]
Task: {B185C931-8302-4C53-8A53-E80A9CEFA69E} - System32\Tasks\{A6ABA1CB-B1AD-452E-8BA6-4910A3235564} => C:\Windows\system32\pcalua.exe -a "C:\Users\Disloth\Downloads\MTK_Driver_Auto_Installer\MTK Driver Auto Installer\FeaturePhoneDriver\v1.1032.1\InstallDriver.exe" -d "C:\Users\Disloth\Downloads\MTK_Driver_Auto_Installer\MTK Driver Auto Installer"
Task: {C7BF6173-4932-4CEE-BF88-0CDCA373B558} - System32\Tasks\{F05B24F7-7FD1-4CF2-8D3C-12BA3E373059} => C:\Windows\system32\pcalua.exe -a "C:\Users\Disloth\Downloads\Compressed\MTK_USB_Driver_v1.0948.0\MTK USB Driver_v1.0948.0\InstallDriver.exe" -d "C:\Users\Disloth\Downloads\Compressed\MTK_USB_Driver_v1.0948.0\MTK USB Driver_v1.0948.0"
Task: {D72EDF42-AACC-4E62-9685-5C62206ECD5F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18929952 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {E274AA65-1B6A-4C9C-9C92-EC299FB7A30C} - System32\Tasks\{0AD87CE2-64A9-4FDA-BE95-329BA154047E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Disloth\Documents\Cajas\Falcon Box\Card Reader\Card Reader\CardReader_PKey\Card-Reader_PKey_XP.exe" -d "C:\Users\Disloth\Documents\Cajas\Falcon Box\Card Reader\Card Reader\CardReader_PKey"
Task: {F68E05CE-FB82-4CE3-A687-97C8F1394CF6} - System32\Tasks\G2MUploadTask-S-1-5-21-838994074-81632765-970354094-1000 => C:\Users\Disloth\AppData\Local\GoToMeeting\16474\g2mupload.exe [32256 2020-01-16] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {FB96D472-1B96-4AB6-981D-5799CAC13BAB} - System32\Tasks\iToolsDaemon => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe
Task: C:\Windows\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-838994074-81632765-970354094-1000.job => C:\Users\Disloth\AppData\Local\GoToMeeting\16474\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-838994074-81632765-970354094-1000.job => C:\Users\Disloth\AppData\Local\GoToMeeting\16474\g2mupload.exe
Task: C:\Windows\Tasks\iToolsDaemon.job => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.207.131.8 8.8.8.8
Tcpip\..\Interfaces\{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}: [DhcpNameServer] 89.207.131.8 8.8.8.8
Tcpip\..\Interfaces\{74916749-E5CF-4A33-9BF7-5AC861E124A2}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{92051B92-EEF7-43FC-8321-E9B8A1712CA6}: [NameServer] 8.8.8.8,8.8.4.4
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-01-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: eu0q8ksl.default
FF ProfilePath: C:\Users\Disloth\AppData\Roaming\Mozilla\Firefox\Profiles\eu0q8ksl.default [2020-03-07]
FF NewTab: Mozilla\Firefox\Profiles\eu0q8ksl.default -> hxxps://ve.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__171026__yaff
FF Notifications: Mozilla\Firefox\Profiles\eu0q8ksl.default -> hxxps://twitter.com; hxxps://www.facebook.com; hxxps://vivirensalud.site; hxxps://voice.google.com
FF Extension: (Hoxx VPN Proxy) - C:\Users\Disloth\AppData\Roaming\Mozilla\Firefox\Profiles\eu0q8ksl.default\Extensions\@hoxx-vpn.xpi [2019-11-06]
FF Extension: (Proxy VPN gratis Hotspot Shield: desbloqueo de sitios) - C:\Users\Disloth\AppData\Roaming\Mozilla\Firefox\Profiles\eu0q8ksl.default\Extensions\[email protected] [2018-03-08]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16] [Heredado]
FF HKU\S-1-5-21-838994074-81632765-970354094-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\Disloth\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Disloth\AppData\Roaming\IDM\idmmzcc5 [2020-03-07] [Heredado] [no firmado]
FF HKU\S-1-5-21-838994074-81632765-970354094-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-05-22] (Research In Motion -> )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-18] (Google LLC -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-18] (Google LLC -> Google LLC)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-05-19] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-838994074-81632765-970354094-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Disloth\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-09-27] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default [2020-03-07]
CHR HomePage: Default -> hxxp://www.google.co.ve/
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://google.com/"
CHR Extension: (Presentaciones) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documentos) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-12]
CHR Extension: (DownAlbum) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2020-03-07]
CHR Extension: (Hojas de cálculo) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-05]
CHR Extension: (Newtab-TV) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hijfkjphpcbbabdnpkmgcdnpfhjldbhm [2020-03-07]
CHR Extension: (ySense Addon) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjnhcgkngeeahimbfhejeaiijecekhba [2019-12-16]
CHR Extension: (NeoBux AdAlert) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpkdcghgfeaccigdjnibpkopebncakc [2018-02-14]
CHR Extension: (DotVPN — a Better way to VPN) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-03-07]
CHR Extension: (Mass follow for Twitter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmanfkmmgfigbnjibfemdnnfjboficn [2020-03-07]
CHR Extension: (Linkclump) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2019-12-05]
CHR Extension: (Hangouts de Google) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-05-22]
CHR Extension: (IDM Integration Module) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-03-07]
CHR Extension: (MetaMask) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2020-03-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (NeoBux AdAlert) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen [2020-03-07]
CHR Extension: (Cometdocs PDF Converter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\olgfoomjdkeijllelookodfgiogbdoch [2018-02-18]
CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2020-03-07]
CHR Extension: (vidIQ Vision for YouTube) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2020-03-07]
CHR Extension: (Gmail) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19]
CHR Profile: C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-07]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-11-25]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
S2 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-05-19] (Adobe Inc. -> Adobe Inc.)
S2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited)
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7278352 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [280680 2015-06-04] (Intel Corporation - pGFX -> Intel Corporation)
S2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1349576 2014-10-01] (ESET, spol. s r.o. -> ESET)
S3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation -> Intel Corporation)
S2 KingoSoftService; C:\Users\Disloth\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\checkupdate.exe [367592 2017-03-17] (FingerPower Digital Technology Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-03-07] (Malwarebytes Inc -> Malwarebytes)
S2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility Inc. -> Motorola Mobility LLC)
S3 npggsvc; C:\Windows\system32\GameMon.des [5707232 2016-09-27] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Archivo no firmado]
S2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Archivo no firmado]
S2 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-05-26] (BlackBerry Ltd. -> Apple Inc.)
S2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1355000 2015-05-26] (BlackBerry Ltd. -> BlackBerry Limited)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH)
S2 UDisk Monitor Driver; C:\Program Files\Froyo_Android_Driver\Bin\MonServiceUDisk.exe [577536 2012-09-29] () [Archivo no firmado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [1426784 2018-05-29] (Sony Mobile Communications AB -> Sony)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 androidusb; C:\Windows\System32\Drivers\ssadadb.sys [30312 2011-05-13] (MCCI Internal Testing Software -> Google Inc)
S3 apf005; C:\Windows\system32\apf005.sys [14160 2017-01-15] (Beijing Apex Weifeng Technology Co.,Ltd. -> )
S3 BTCFilterService; C:\Windows\System32\DRIVERS\motfilt.sys [6272 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc)
S3 cmnxusbser; C:\Windows\System32\DRIVERS\cmnxusbser.sys [130296 2015-11-24] (西安博汇电子科技有限公司 -> Wireless Data Device)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 diagswitchdrv; C:\Windows\System32\DRIVERS\diagswitchdrv.sys [102912 2012-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET, spol. s r.o. -> ESET)
S1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET, spol. s r.o. -> ESET)
S2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [123424 2014-10-10] (ESET, spol. s r.o. -> ESET)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [96464 2016-10-04] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [74864 2016-10-04] (Future Technology Devices International Ltd -> )
S3 Generalusbserialser20679; C:\Windows\System32\DRIVERS\CT_U_USBSER.sys [108544 2011-05-24] (Microsoft Windows Hardware Compatibility Publisher -> Incorporated)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [27264 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 HTCAND32; C:\Windows\System32\Drivers\ANDROIDUSB.sys [25088 2009-10-26] (HTC, Corporation) [Archivo no firmado]
S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [23040 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV32.sys [105984 2009-10-27] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 HWHandSetProLine; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [199680 2016-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_ctrlfakedev; C:\Windows\System32\DRIVERS\hw_ctrlfakedev.sys [101376 2013-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 KC02US_mdm; C:\Windows\System32\DRIVERS\KC02US_mdm.sys [93144 2014-05-23] (Kyocera Corporation -> KYOCERA Corporation)
S3 KC02US_serd; C:\Windows\System32\DRIVERS\KC02US_serd.sys [66056 2013-05-09] (KcLocalTest -> KYOCERA Corporation)
S3 massfilter_hs; C:\Windows\System32\DRIVERS\massfilter_hs.sys [15896 2012-06-05] (ZTE CORPORATION -> HandSet Incorporated)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [178952 2020-03-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-03-07] (Malwarebytes Inc -> Malwarebytes)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 motccgp; C:\Windows\System32\DRIVERS\motccgp.sys [21376 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 motmodem; C:\Windows\System32\DRIVERS\motmodem.sys [24960 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 MotoSwitchService; C:\Windows\System32\DRIVERS\motswch.sys [6656 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola)
S3 Motousbnet; C:\Windows\System32\DRIVERS\Motousbnet.sys [23936 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18944 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 netr28; C:\Windows\System32\DRIVERS\netr28.sys [2144456 2014-03-07] (Mediatek Inc. -> Ralink Technology, Corp.)
S3 P1001VID; C:\Windows\System32\DRIVERS\P1001Vid.sys [311684 2002-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 PSMNBUS; C:\Windows\System32\DRIVERS\PSMNBUS.sys [84480 2011-10-07] (Pantech Inc. -> DEVGURU Co., LTD.)
S3 PSMNMDM; C:\Windows\System32\DRIVERS\PSMNMDM.sys [169088 2011-10-07] (Pantech Inc. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 PSMNOBEX; C:\Windows\System32\DRIVERS\PSMNOBEX.sys [169216 2011-10-07] (Pantech Inc. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 PSMNVSP; C:\Windows\System32\DRIVERS\PSMNVSP.sys [169088 2011-10-07] (Pantech Inc. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 qcfilter; C:\Windows\System32\DRIVERS\qcusbfilter.sys [31232 2014-05-23] (USBHostDriver(Test003) -> QUALCOMM Incorporated)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [206336 2014-08-08] (USBHostDriver(Test003) -> QUALCOMM Incorporated)
S3 qcusbwwan; C:\Windows\System32\DRIVERS\qcusbwwan.sys [421376 2014-05-23] (USBHostDriver(Test003) -> QUALCOMM Incorporated)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb.sys [69120 2015-01-14] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-05-26] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 sprd_acm_modem; C:\Windows\System32\DRIVERS\sprd_acm.sys [67712 2011-08-22] (SpreadTrum) [Archivo no firmado]
S3 sprd_enum; C:\Windows\System32\DRIVERS\sprd_enum.sys [84224 2011-08-22] (SpreadTrum) [Archivo no firmado]
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [147072 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 SzCCID; C:\Windows\System32\DRIVERS\SzCCID.sys [27648 2012-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Generic)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13184 2016-02-18] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [20864 2016-02-18] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [25216 2016-02-18] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2013-02-11] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-08-16] (NGO -> MBB)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [113688 2012-06-05] (ZTE CORPORATION -> ZTE Incorporated)
S3 zghsmdm; C:\Windows\System32\DRIVERS\zghsmdm.sys [113688 2012-06-05] (ZTE CORPORATION -> ZTE Incorporated)
S3 zghsnmea; C:\Windows\System32\DRIVERS\zghsnmea.sys [113688 2012-06-05] (ZTE CORPORATION -> ZTE Incorporated)
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
Error(1) reading file: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SK Telecom ÅëÇÕ USB µå¶óÀ̹ö "
2020-03-07 20:59 - 2020-03-07 20:59 - 000000000 __SHD C:\found.016
2020-03-07 19:18 - 2020-03-07 19:20 - 000036437 _____ C:\Users\Disloth\Downloads\FRST.txt
2020-03-07 19:18 - 2020-03-07 19:20 - 000000000 ____D C:\FRST
2020-03-07 19:17 - 2020-03-07 19:17 - 000008877 _____ C:\Users\Disloth\Desktop\Junkware Removal Tool.txt
2020-03-07 19:16 - 2020-03-07 19:16 - 000008877 _____ C:\Users\Disloth\Desktop\JRT.txt
2020-03-07 19:14 - 2020-03-07 19:15 - 002007552 _____ (Farbar) C:\Users\Disloth\Downloads\FRST.exe
2020-03-07 19:12 - 2020-03-07 19:12 - 000000292 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-03-07 19:09 - 2020-03-07 19:12 - 000000000 ____D C:\AdwCleaner
2020-03-07 19:07 - 2020-03-07 19:09 - 000010611 _____ C:\Users\Disloth\Desktop\Malwarebytes.txt
2020-03-07 18:20 - 2020-03-07 18:20 - 000000000 ____D C:\Users\Disloth\AppData\Local\mbam
2020-03-07 18:20 - 2020-03-07 18:20 - 000000000 ____D C:\Users\Disloth\AppData\Local\cache
2020-03-07 18:19 - 2020-03-07 18:19 - 000178952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-03-07 18:19 - 2020-03-07 18:19 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-07 18:19 - 2020-03-07 18:19 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-03-07 18:19 - 2020-03-07 18:19 - 000000250 _____ C:\Windows\ntbtlog.txt
2020-03-07 18:19 - 2020-03-07 18:19 - 000000000 ____D C:\Users\Disloth\AppData\Local\mbamtray
2020-03-07 18:19 - 2020-03-07 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-03-07 18:18 - 2020-03-07 18:18 - 000213912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-03-07 18:18 - 2020-03-07 18:18 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-03-07 18:18 - 2020-03-07 18:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-03-07 18:16 - 2020-03-07 18:17 - 002007552 _____ (Farbar) C:\Users\Disloth\Downloads\Sin confirmar 525112.crdownload
2020-03-07 18:13 - 2020-03-07 18:13 - 000000000 ____D C:\Program Files\Malwarebytes
2020-03-07 18:11 - 2020-03-07 18:11 - 000057324 _____ C:\Users\Disloth\Documents\cc_20200307_181109.reg
2020-03-07 18:11 - 2020-03-07 18:11 - 000000360 _____ C:\Users\Disloth\Documents\cc_20200307_181123.reg
2020-03-07 17:50 - 2020-03-07 17:50 - 000000961 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-03-07 17:50 - 2020-03-07 17:50 - 000000961 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-03-07 17:50 - 2020-03-07 17:50 - 000000300 ____H C:\Windows\Tasks\CCleaner Update.job
2020-03-07 17:46 - 2020-03-07 17:49 - 022195736 _____ (Piriform Software Ltd) C:\Users\Disloth\Downloads\ccsetup564.exe
2020-03-07 17:46 - 2020-03-07 17:47 - 008199856 _____ (Malwarebytes) C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe
2020-03-07 17:46 - 2020-03-07 17:46 - 001928352 _____ (Malwarebytes) C:\Users\Disloth\Downloads\MBSetup.exe
2020-03-07 17:44 - 2020-03-07 17:45 - 001790024 _____ (Malwarebytes) C:\Users\Disloth\Downloads\JRT.exe
2020-03-07 17:33 - 2020-03-07 17:33 - 000027030 _____ C:\Users\Disloth\Desktop\HiJackThis.txt
2020-03-07 17:22 - 2020-03-07 17:23 - 007241296 _____ (Stanislav Polshyn & Trend Micro Inc.) C:\Users\Disloth\Downloads\HiJackThis.exe
2020-02-11 20:16 - 2020-02-11 20:16 - 000000000 ____D C:\$WINDOWS.~BT
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-03-07 19:12 - 2017-10-25 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-03-07 19:12 - 2017-01-22 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2020-03-07 19:12 - 2017-01-22 18:54 - 000000000 ____D C:\Users\Disloth\AppData\Roaming\Samsung
2020-03-07 19:12 - 2017-01-22 18:54 - 000000000 ____D C:\Program Files\Samsung
2020-03-07 18:18 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\inf
2020-03-07 18:10 - 2017-01-23 19:57 - 000000000 ____D C:\Users\Disloth\AppData\Roaming\IDM
2020-03-07 18:10 - 2017-01-12 11:05 - 000000000 ____D C:\Users\Disloth\AppData\Roaming\TeamViewer
2020-03-07 18:10 - 2017-01-12 11:05 - 000000000 ____D C:\Program Files\TeamViewer
2020-03-07 17:58 - 2017-05-01 20:41 - 000000000 ____D C:\Windows\Minidump
2020-03-07 17:58 - 2017-02-28 16:38 - 000000000 ____D C:\Users\Disloth\AppData\Local\CrashDumps
2020-03-07 17:58 - 2009-07-13 22:37 - 000000000 ____D C:\Windows\ModemLogs
2020-03-07 17:50 - 2017-07-29 19:20 - 000000000 ____D C:\Program Files\CCleaner
2020-03-07 17:05 - 2020-01-20 07:14 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2020-03-07 17:05 - 2020-01-20 07:14 - 000000000 ___HD C:\ProgramData\Documents\AdobeGC
2020-03-07 17:03 - 2017-03-07 21:32 - 000000310 _____ C:\Windows\Tasks\iToolsDaemon.job
2020-03-07 17:03 - 2009-07-14 00:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-11 20:16 - 2017-08-10 09:08 - 000002544 _____ C:\Windows\diagwrn.xml
2020-02-11 20:16 - 2017-08-10 09:08 - 000001890 _____ C:\Windows\diagerr.xml
2020-02-10 00:28 - 2018-04-24 22:40 - 000000000 ____D C:\Users\Disloth\Downloads\vroot-download
2020-02-10 00:10 - 2018-04-24 21:54 - 000000000 ____D C:\Users\Disloth\Downloads\iRoot_171024
2020-02-09 21:11 - 2017-04-22 08:12 - 000000000 ____D C:\Users\Disloth\Documents\Cracks
2020-02-09 18:20 - 2017-01-11 22:07 - 000000000 ____D C:\Users\Disloth
==================== Archivos en la raíz de algunos directorios ========
2017-01-14 13:29 - 2017-01-14 13:30 - 318912029 _____ () C:\Users\Disloth\AppData\Local\ACCCx3_9_5_353.zip.aamdownload
2017-01-14 13:29 - 2017-01-14 13:30 - 000003560 _____ () C:\Users\Disloth\AppData\Local\ACCCx3_9_5_353.zip.aamdownload.aamd
2018-09-28 09:23 - 2018-09-28 09:23 - 000000000 _____ () C:\Users\Disloth\AppData\Local\oobelibMkey.log
2017-05-19 11:15 - 2017-05-19 11:15 - 000000170 _____ () C:\Users\Disloth\AppData\Local\uts.ini
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-01-08 10:09
==================== Final de FRST.txt ========================Análisis Addition:
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 07-03-2020
Ejecutado por Disloth (07-03-2020 19:21:14)
Ejecutado desde C:\Users\Disloth\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2017-01-12 02:07:15)
Modo de Inicio: Safe Mode (with Networking)
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-838994074-81632765-970354094-500 - Administrator - Disabled)
Disloth (S-1-5-21-838994074-81632765-970354094-1000 - Administrator - Enabled) => C:\Users\Disloth
HomeGroupUser$ (S-1-5-21-838994074-81632765-970354094-1002 - Limited - Enabled)
Invitado (S-1-5-21-838994074-81632765-970354094-501 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
3uTools (HKLM\...\3uTools) (Version: 2.16.011 - ShangHai ZhangZheng Network Technology Co., Ltd.)
Adobe Acrobat DC (HKLM\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Audition CS6 (HKLM\...\{30FD541D-3C9D-41C4-B240-A994EE4E0231}) (Version: 5.0.2 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 4.8.2.476 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (32 Bit) (HKLM\...\{2614BC86-757D-4293-9E25-E4E16F370A9E}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Alcor Micro Smart Card Reader Driver (HKLM\...\{F24F876B-7D71-4BD6-88E9-614D3BB84228}) (Version: 1.7.28.0 - Alcor Micro Corp.) Hidden
Alcor Micro Smart Card Reader Driver (HKLM\...\SZCCID) (Version: 1.7.28.0 - Alcor Micro Corp.)
Android USB Driver (HKLM\...\Android USB Driver_is1) (Version: - )
Apple Application Support (32 bits) (HKLM\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B19FCC39-7914-4BBC-80EE-1D606BD8C686}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bisq (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\{io.bisq.gui.app}}_is1) (Version: 0.6.3 - Bisq)
bl (HKLM\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
BlackBerry 10 Desktop Software (Blend, Link, Drivers) (HKLM\...\{c33e77db-89b5-4abf-a1d1-97f8b35347e1}) (Version: 1.2.0.52 - BlackBerry)
BlackBerry Blend (HKLM\...\{1DA42C01-4ED2-4B4E-B90C-18FCBA12FC41}) (Version: 1.2.0.50 - BlackBerry Ltd.) Hidden
BlackBerry Communication Drivers (HKLM\...\{46CD5A63-0C1F-45C3-B643-CA87A17275C0}) (Version: 8.0.0.143 - BlackBerry Ltd.) Hidden
BlackBerry Device Drivers (HKLM\...\{3FB73D51-669B-4AC0-9410-CF0C451E58BF}) (Version: 8.0.0.143 - BlackBerry Ltd.) Hidden
BlackBerry Link (HKLM\...\{C42468F9-9812-4550-A54B-5DDB062EB10F}) (Version: 1.2.4.39 - BlackBerry) Hidden
BlackBerry Link Remover (HKLM\...\{44D65CAB-1BC8-47B7-BF5B-3EB8B6BB0276}) (Version: 1.2.4.0 - BlackBerry Ltd.) Hidden
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Camtasia Studio 8 (HKLM\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version: 8.6.0.2079 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
Creative WebCam Control (HKLM\...\Creative WebCam Control) (Version: - )
Creative WebCam Driver (1.02.08.0807) (HKLM\...\Creative WebCam) (Version: - )
DFS 17.10.02.00 (HKLM\...\{EE1682E1-FCE1-4422-BEEC-0DA05D39960C}_is1) (Version: 17.10.02.00 - Telecom Logic)
Dogecoin Core (32-bit) (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Dogecoin Core (32-bit)) (Version: 1.10.0 - Dogecoin Core project)
Emergency Download Driver (HKLM\...\{3F0F5AB4-C9CE-4226-8393-E9CFF8369D9D}) (Version: 1.1.16.1526 - Microsoft)
ESET NOD32 Antivirus (HKLM\...\{0926665A-244C-4BA4-909D-F9BA98F7266A}) (Version: 8.0.304.1 - ESET, spol s r. o.)
Falcon Box (HKLM\...\{BD99807C-66DA-4C0E-9897-F1EFF8FE5750}_is1) (Version: 4.4 - Falcon Team, Inc.)
Falcon Box (Htc Pack) versión 2.1 (HKLM\...\{1D6DFB7D-934C-4B9A-BA71-69CE23BB31D0}_is1) (Version: 2.1 - Falcon Team 2017)
Falcon Box (Moto Pack) versión 2.0 (HKLM\...\{6F3E2611-6E04-4111-9B1F-CFC9F343E646}_is1) (Version: 2.0 - Falcon Team)
Falcon Box Qualcomm Module versión 3.2 (HKLM\...\{CCF44990-3E19-4D5A-B7B7-70889780E4BD}_is1) (Version: 3.2 - Falcon Team, Inc.)
Falcon Frp Tool versión 1.6 (HKLM\...\{2A41AB1D-ABB0-4DB4-9368-0CEB44A3EC66}_is1) (Version: 1.6 - Falcon Team 2018)
Falcon Lg Module versión 1.1 (HKLM\...\{06CAFACF-6705-4B96-B1FB-B2C29C8F2F87}_is1) (Version: 1.1 - Falcon Team 2018)
Falcon Mtk Module versión 1.3 (HKLM\...\{D0D057DF-52B5-4E64-91B6-163D18E13E3F}_is1) (Version: 1.3 - Falcon Team 2017)
Falcon Samsung Tool versión 2.0 (HKLM\...\{2749C242-12D3-481C-A4B3-C17545AB520B}_is1) (Version: 2.0 - Falcon Team)
Flashtool (HKLM\...\Flashtool) (Version: 0.9.18.6 - Androxyde)
Google Chrome (HKLM\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GoTo Opener (HKLM\...\{351B54B2-1AFC-42A7-A8C0-9E05C26F0D1E}) (Version: 1.0.470 - LogMeIn, Inc.)
GoToMeeting 10.6.1.16474 (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\GoToMeeting) (Version: 10.6.1.16474 - LogMeIn, Inc.)
GunboundLS (HKLM\...\GunboundLS_is1) (Version: - Softnyx co.,Ltd.)
Handset WinDriver 1.02.03.00 (HKLM\...\Handset WinDriver) (Version: 1.02.03.00 - Huawei technologies Co., Ltd.)
Herramienta de descarga USB/DVD de Windows 7 (HKLM\...\{266F443F-A296-406F-9EE8-DF4A1061C6CE}) (Version: 1.0.30 - Microsoft Corporation)
HFSExplorer 0.23.1 (HKLM\...\HFSExplorer) (Version: 0.23.1 - Catacombae Software)
HTC Driver Installer (HKLM\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.1.0.001 - HTC Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.)
IPTInstaller (HKLM\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iRoot (HKLM\...\{1295E43F-382A-4CB2-9E0F-079C0D7401BB}_is1) (Version: 1.8.9.21144 - SING)
iTunes (HKLM\...\{68A44604-5DBA-4DC1-8B4A-87881671374C}) (Version: 12.8.0.150 - Apple Inc.)
Java 8 Update 161 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Join Me (HKLM\...\{E1151E0D-366E-4045-835F-B46769E11FF7}) (Version: 1.0.0 - ZTE)
Kingo ROOT version 1.5.8.3353 (HKLM\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.5.8.3353 - Kingosoft Technology Ltd.)
KingRoot version 3.5.0.1157 (HKLM\...\{FA3B7324-9EB4-4ADC-84D0-5461BE113832}_is1) (Version: 3.5.0.1157 - KingRoot)
KYOCERA USB Modem KC02US Driver (HKLM\...\{E2C3C89F-23CC-4C39-A900-6139F65B1557}) (Version: 3.13.0000 - KYOCERA Corporation)
LG Mobile Driver (HKLM\...\{3F490D0E-3131-438C-BCF9-7549CB88DF41}) (Version: 4.2.0 - LG Electronics)
LG PC Suite (HKLM\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics)
Litecoin Core (32-bit) (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Litecoin Core (32-bit)) (Version: 0.13.2 - Litecoin Core project)
Lumia UEFI Blue Driver (HKLM\...\{9D2A75FE-8CE1-4297-AEC1-A097D47BACE9}) (Version: 1.1.10.1526 - Microsoft)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Manual de Creative WebCam (Español) (HKLM\...\Manual de Creative WebCam Spanish) (Version: - )
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Profesional 2016 - es-es (HKLM\...\ProfessionalRetail - es-es) (Version: 16.0.12325.20288 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
mIRC (HKLM\...\mIRC) (Version: 7.49 - mIRC Co. Ltd.)
Motorola Device Manager (HKLM\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{BA562260-B4FA-4D87-ADC5-963783028C68}) (Version: 6.4.0 - Motorola Mobility LLC)
Mozilla Firefox 70.0.1 (x86 es-CL) (HKLM\...\Mozilla Firefox 70.0.1 (x86 es-CL)) (Version: 70.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1.7242 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Mu (HKLM\...\{F57CEB84-3D22-4657-8EDA-F8CD5217B83E}) (Version: 0.68.0000 - Webzen)
NCK MTK Module Crack 8.00 (HKLM\...\NCK MTK Module Crack 8.00) (Version: 8.00 - Nokia Firmware)
Octoplus Suite 1.4.6 (HKLM\...\Octoplus Suite_is1) (Version: 1.4.6 - Octoplus team)
Octoplus/Octopus box LG software 2.8.6 (HKLM\...\Octoplus box LG software_is1) (Version: - Octoplus team)
Octopus Box Samsung software 1.1.9 (HKLM\...\Octoplus Shell Software_is1) (Version: - Octopus team)
Octopus Box Samsung software 2.7.0 (HKLM\...\Octoplus Box Samsung software_is1) (Version: - Octoplus team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.12325.20280 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Pantech Android USB Driver Ver1 (HKLM\...\{19E88D03-44D4-46aa-9F3C-D6CFC035BFE6}) (Version: 1.1.0.0 - Pantech)
Pantech PC Suite (HKLM\...\Pantech PC Suite) (Version: 1.1.1.3437 - MobileLeader)
Paquete de controladores de Windows - Falcon Box Driver Package - Bus/D2XX Driver (07/12/2013 2.08.30) (HKLM\...\6D4465D63F77E5A0ED6C7BDD6C7B21E0FCF4B939) (Version: 07/12/2013 2.08.30 - Falcon Box)
Paquete de controladores de Windows - Falcon Box Driver Package - Bus/D2XX Driver (07/12/2013 2.08.30) (HKLM\...\91DCC801A36555174693AD38B21669F82069BEA3) (Version: 07/12/2013 2.08.30 - Falcon Box)
Paquete de controladores de Windows - Falcon Box Driver Package - VCP Driver (07/12/2013 2.08.30) (HKLM\...\FC98ADD79C12B0B7ABFFD6E5DE6D4818DC9D079A) (Version: 07/12/2013 2.08.30 - Falcon Box)
Paquete de controladores de Windows - FTDI CDM Driver Package - Bus/D2XX Driver (04/10/2012 2.08.24) (HKLM\...\4C8545EEB6143B6AD3858B5D1E0AEE76040B1435) (Version: 04/10/2012 2.08.24 - FTDI)
Paquete de controladores de Windows - FTDI CDM Driver Package - VCP Driver (04/10/2012 2.08.24) (HKLM\...\6849F67BACD4DA5A5B9D46803E6850D0BE8B3826) (Version: 04/10/2012 2.08.24 - FTDI)
Paquete de controladores de Windows - Ralink Technology, Corp. (netr28) Net (03/05/2014 5.00.44.0000) (HKLM\...\89434C77795A9252D18E0A26450A63EBB35446D5) (Version: 03/05/2014 5.00.44.0000 - Ralink Technology, Corp.)
Paquete de controladores de Windows - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Peerunity (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Peerunity) (Version: 0.2.2.0 - Peerunity project)
ph (HKLM\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Photo Express 4.0 Mi Edicion Personalizada (HKLM\...\{21BCE515-D5A3-11D4-8E33-0010B53EC668}) (Version: - )
Primecoin (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Primecoin) (Version: 0.1.2 - Primecoin project)
QPST 2.7 (HKLM\...\{90BA4578-EE5C-47A3-AB5D-2254708AB111}) (Version: 2.7.425 - Qualcomm)
Qualcomm USB Drivers For Windows (HKLM\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.00.25 - QUALCOMM Incorporated)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
ROCKEY200 Driver (Remove only) (HKLM\...\B3DE3DBF-7F64-47b5-B25B-9842D2B1A045_Rockey200std) (Version: - )
Samsung Kies3 (HKLM\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung Tool PRO 35.2 (HKLM\...\44676886-FD7F-4C53-B188-BC86EED9BBC1_is1) (Version: - z3x-team)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SCR3xxx Smart Card Reader (HKLM\...\{983980FC-66FB-4ECC-A5D8-4565BE217733}) (Version: 8.28 - SCM Microsystems)
Servicio Xperia Companion (HKLM\...\{15BAF400-C4AC-45CD-86D4-986DD7EBF14A}) (Version: 2.1.12.0 - Sony) Hidden
SK Telecom ÅëÇÕ USB µå¶óÀ̹ö (HKLM\...\{628E1400-4191-48D4-9F71-69D12EC541A0}) (Version: 3.1.1.0 - SK Telecom)
SK Telecom ÅëÇÕ USB µå¶óÀ̹ö ÇÁ·Î±×·¥ (HKLM\...\SK Telecom ÅëÇÕ USB µå¶óÀ̹ö ÇÁ·Î±×·¥) (Version: 3.1.1.0 - )
Skype versión 8.27 (HKLM\...\Skype_is1) (Version: 8.27 - Skype Technologies S.A.)
Smart-Clip 2 (HKLM\...\{92454DC8-025A-42DA-A53E-22F3ECC4F817}) (Version: 1.29.05 - SMART-~1|Smart-Clip 2)
Sony Mobile Software Update Drivers (HKLM\...\{2FE9AC2F-8FF6-41E3-9D37-1BA6A7A0AA33}) (Version: 3.2.0.3 - Sony Mobile Communications)
Sony Mobile Update Engine (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\Update Engine) (Version: 2.18.9.201806291355 - Sony Mobile Communications Inc.)
Sony刷机驱动安装程序 version 1.2 (HKLM\...\{DCF4A01A-4ED7-4E60-8D4B-4B3F59CF3DE0}_is1) (Version: 1.2 - 北京众晶锐驰科技有限公司)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.1.3937 - TeamViewer)
Telegram Desktop version 1.7.14 (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.7.14 - Telegram Messenger LLP)
TransMac version 11.9 (HKLM\...\TransMac_is1) (Version: 11.9 - Acute Systems)
USB CCID Smartcard Reader - Version 1.2.1.2 (HKLM\...\{939913F9-F134-4E9E-B879-BE6755B69952}) (Version: 3.0.0.1 - USB CCID)
WebCam Monitor (HKLM\...\Creative WebCam Monitor) (Version: - )
Windows Device Recovery Tool 3.14.07501 (HKLM\...\{a8ef6d85-8556-4ab8-9e84-f935f5582d43}) (Version: 3.14.7501 - Microsoft)
Windows Driver Package - Spreadtrum (SciCmpst) Ports (02/15/2011 1.5.6.1) (HKLM\...\B6AAE7158C952C97E77091B70DAAAC12A9554D3E) (Version: 02/15/2011 1.5.6.1 - Spreadtrum)
Windows Driver Package - SpreadTrum (sprd_enum) USB (02/11/2012 2.4.0.27) (HKLM\...\3E13462B4D2FE32916015DDA53F5A1DC2BAC9B11) (Version: 02/11/2012 2.4.0.27 - SpreadTrum)
WinRAR 5.21 beta 1 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.1 - win.rar GmbH)
WinUsb CoInstallers (HKLM\...\{9755918A-CDF8-4F1E-8453-6359CF1A330A}) (Version: 1.1.12.1526 - Microsoft)
WinUSB Compatible ID Drivers (HKLM\...\{A4A0B236-6046-4CAB-8177-1EAF61112C75}) (Version: 1.1.11.1526 - Microsoft)
WinUSB Drivers ext (HKLM\...\{29BAAF65-09E5-4F52-8D15-2FAF2E23A8DC}) (Version: 1.1.24.1544 - Microsoft)
WinUSB Drivers x86 (HKLM\...\{66E61920-3CC7-469A-BBB5-FDC7BD4EFB99}) (Version: 2011.44.1.182 - Nokia)
Xperia Companion (HKLM\...\{0785ee9f-59ca-46b1-861d-edbe859a85c9}) (Version: 2.1.12.0 - Sony)
Xperia Companion (HKLM\...\{AF8E220D-5B8C-4F8C-B1D9-487D27E2202F}) (Version: 2.1.12.0 - Sony) Hidden
Youtube Downloader HD v. 2.9.9.30 (HKLM\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
z3x shell 4.7.3 (HKLM\...\z3x shell_is1) (Version: - z3x-team)
Zoom (HKU\S-1-5-21-838994074-81632765-970354094-1000\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)
ZTE Driver USB del dispositivo (HKLM\...\{D2D77DC2-8299-11D1-8949-444553540000}_is1) (Version: 5.2088.1.A01B04 - ZTE Corporation)
ZTE Handset USB Driver (HKLM\...\{01D42BF0-ED08-463f-8A28-99EB6FEE962B}) (Version: - ZTE Corporation)
zZKey_Suite versión 1.1.0 (HKLM\...\{D6509A48-48A2-48BE-B591-FF72D783B55C}_is1) (Version: 1.1.0 - zZ-Key Team)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-838994074-81632765-970354094-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2014-10-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-01-09] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2014-10-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2015-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Common Files\Adobe\CoreSyncExtension\CoreSync_x86.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2014-10-01] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-01-09] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\system32\tsccvid.dll [602624 2014-11-11] (TechSmith Corporation) [Archivo no firmado]
HKLM\...\Drivers32: [vidc.tsc2] => C:\Windows\system32\tsc2_codec32.dll [234496 2014-08-27] (TechSmith Corporation) [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Módulos cargados (Lista blanca) =============
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-838994074-81632765-970354094-1000\...\localhost -> localhost
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-13 22:04 - 2017-01-21 10:59 - 000002072 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\OpenCL SDK\2.0\bin\x86
HKU\S-1-5-21-838994074-81632765-970354094-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Disloth\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{54255FEB-E413-466E-B806-3161A1A76D2A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D0018DBA-55C1-47E7-B8A4-7A27843B32F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{67C76574-878C-48F0-94F5-6655DC80ECEC}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{453B31D4-BE3D-4F3E-888B-C5499A5D353C}C:\game\softnyxgame\gunboundls\gunbound.gme] => (Allow) C:\game\softnyxgame\gunboundls\gunbound.gme (Softnyx) [Archivo no firmado]
FirewallRules: [UDP Query User{695568AD-45A4-4809-85A6-5EFC511E286A}C:\game\softnyxgame\gunboundls\gunbound.gme] => (Allow) C:\game\softnyxgame\gunboundls\gunbound.gme (Softnyx) [Archivo no firmado]
FirewallRules: [{18EFC5E8-F676-45EF-AE10-0312C04C4F84}] => (Allow) LPort=8317
FirewallRules: [{1C308942-BA27-4C48-92CD-4CAE839524A1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B7BDBE5A-C12B-453B-B449-E39B4CD8E4BE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{ADDA0CD1-E9EE-4725-8537-4DCCB2CE00EE}C:\program files\pantech\pantech pc suite\nata.exe] => (Block) C:\program files\pantech\pantech pc suite\nata.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{3D4031DC-E85F-46DF-A918-B5C1A25262BB}C:\program files\pantech\pantech pc suite\nata.exe] => (Block) C:\program files\pantech\pantech pc suite\nata.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{730123D6-D423-4EB0-834B-C1FE0F535FF0}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{D01AD824-08C1-4047-8A28-32053F644E72}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{18121331-728B-4BC3-8730-A86571C6FF73}C:\program files\peerunity\peerunity.exe] => (Allow) C:\program files\peerunity\peerunity.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{9FAD0704-3B99-4DD3-868F-53A1477D600B}C:\program files\peerunity\peerunity.exe] => (Allow) C:\program files\peerunity\peerunity.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{27DD50EE-95D2-4F80-B71B-6DEC442B66C3}C:\program files\mirc\mirc.exe] => (Allow) C:\program files\mirc\mirc.exe (mIRC Co. Ltd. -> mIRC Co. Ltd.)
FirewallRules: [UDP Query User{8AA78F1F-6640-4CD8-8D87-1A449AC097DF}C:\program files\mirc\mirc.exe] => (Allow) C:\program files\mirc\mirc.exe (mIRC Co. Ltd. -> mIRC Co. Ltd.)
FirewallRules: [{076AC4C6-CF9F-4B67-A86B-A870BF68E3CE}] => (Allow) C:\Program Files\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{ADC40AA5-1957-47A1-A396-24EC211B624B}] => (Allow) C:\Program Files\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{E24AC8AA-7482-4C47-946B-B52A097E4B08}] => (Allow) LPort=80
FirewallRules: [{3DA3379E-536D-4F97-B729-7CBE4EFEB444}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{DCEDC9AC-3BD2-45B8-BC0A-F5FE0E106B13}C:\users\disloth\appdata\local\bisq\bisq.exe] => (Allow) C:\users\disloth\appdata\local\bisq\bisq.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{EB8C48B0-5309-433C-B2C6-0CE0353B03F5}C:\users\disloth\appdata\local\bisq\bisq.exe] => (Allow) C:\users\disloth\appdata\local\bisq\bisq.exe () [Archivo no firmado]
FirewallRules: [{C52DE4B0-60BF-4690-B0B1-E22316BFA3BA}] => (Allow) tunmgr.exe Ningún archivo
FirewallRules: [{25E5A161-87E9-429F-A93F-4E962BBAC7D3}] => (Allow) tunmgr.exe Ningún archivo
FirewallRules: [{4CB5EBBC-491A-40B5-AA8D-852BB9BEF176}] => (Allow) mDNSResponder.exe Ningún archivo
FirewallRules: [{E32181B1-85A7-4427-8209-FBE35604DC25}] => (Allow) mDNSResponder.exe Ningún archivo
FirewallRules: [{8796F60C-365A-4CA3-A216-1F29B5072F60}] => (Allow) C:\Program Files\Common Files\Research In Motion\nginx\nginx.exe (BlackBerry Ltd. -> )
FirewallRules: [{95803C47-0105-4B84-B5C9-2A83F924B26E}] => (Allow) C:\Program Files\Common Files\Research In Motion\tunnel manager\PeerManager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [{7DF50480-FD73-45DB-9CDC-8AA6B555175E}] => (Allow) C:\Program Files\BlackBerry\BlackBerry Blend\desktopinvokeproxy.exe (BlackBerry Ltd. -> BlackBerry Limited. All rights reserved)
FirewallRules: [{F7D7C1D3-8DE2-44D3-B147-002D13B051E3}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [TCP Query User{34A7F6E7-F15E-4840-A44C-B7D44BF19FE4}C:\programdata\sony mobile\update engine\{f26dc4de-0193-4592-9a99-6569eea65820}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{f26dc4de-0193-4592-9a99-6569eea65820}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [UDP Query User{8E30FADC-D5B4-44B8-AEC2-917A178D610F}C:\programdata\sony mobile\update engine\{f26dc4de-0193-4592-9a99-6569eea65820}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{f26dc4de-0193-4592-9a99-6569eea65820}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [{45EEE4F5-4E17-4C6E-BFC9-4960297E207F}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D50647E7-73E5-44C6-A99A-1E208ACBA474}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3409050D-82F4-42A2-B50A-A6EF99380403}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{300A80B1-9314-4406-B519-794ED2AA983E}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ningún archivo
FirewallRules: [UDP Query User{5636768A-13ED-49CF-8917-8D4878A38490}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ningún archivo
FirewallRules: [{A3A1C06E-3558-42F6-9616-23D3A84776E1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DD5E4B3F-832A-4354-8C0E-5E21BDEA350E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{56C3370D-05CA-431F-85DD-F961F46BBF02}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E541F459-6589-415C-98E9-22307E5B5B42}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{718C4B1D-1433-4932-8AD8-19A03ACE0F37}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D54DECD1-D549-46BA-8ACD-BD494AA14A10}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
==================== Puntos de Restauración =========================
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: ehdrv
Description: ehdrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ehdrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (03/07/2020 07:17:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (03/07/2020 07:15:42 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\Disloth\AppData\Local\Temp\jrt\CreateRestorePoint.exe "JRT Pre-Junkware Removal"; descripción = JRT Pre-Junkware Removal; error = 0x8007043c).
Error: (03/07/2020 07:12:43 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe ; descripción = AdwCleaner_BeforeCleaning_07/03/2020_19:12:43; error = 0x8007043c).
Error: (03/07/2020 07:11:27 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (03/07/2020 07:11:26 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (03/07/2020 07:09:16 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (03/07/2020 06:19:44 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Error: (03/07/2020 06:13:44 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.
Errores del sistema:
=============
Error: (03/07/2020 07:21:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:21:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:21:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:18:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:18:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:18:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:18:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Error: (03/07/2020 07:18:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Examinador de equipos depende del servicio Servidor, el cual no pudo iniciarse debido al siguiente error:
No se puede iniciar el servicio o grupo de dependencia.
Windows Defender:
===================================
Date: 2019-10-20 12:15:04.290
Description:
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.305.2.0
Versión de firma anterior:1.303.1794.0
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.16500.1
Versión de motor anterior:1.1.16500.1
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control.
Date: 2019-10-20 12:09:48.875
Description:
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.305.2.0
Versión de firma anterior:1.303.1794.0
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.16500.1
Versión de motor anterior:1.1.16500.1
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control.
Date: 2019-10-20 11:05:03.824
Description:
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.305.2.0
Versión de firma anterior:1.303.1794.0
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.16500.1
Versión de motor anterior:1.1.16500.1
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control.
Date: 2019-10-20 10:59:42.538
Description:
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.305.2.0
Versión de firma anterior:1.303.1794.0
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.16500.1
Versión de motor anterior:1.1.16500.1
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control.
Date: 2019-10-19 20:53:01.086
Description:
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.305.2.0
Versión de firma anterior:1.303.1794.0
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.16500.1
Versión de motor anterior:1.1.16500.1
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control.
==================== Información de la memoria ===========================
BIOS: American Megatrends Inc. 4.6.4 07/03/2012
Placa base: ECS H61H2-CM
Procesador: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Porcentaje de memoria en uso: 86%
RAM física total: 3018.64 MB
RAM física disponible: 417.15 MB
Virtual total: 6035.64 MB
Virtual disponible: 3330.09 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:52.9 GB) NTFS
\\?\Volume{9f6d01db-d838-11e6-a668-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 000CDDCC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Final Addition.txt =======================Luego de haber pasado todas estas aplicaciones, la PC sigue igual =/ El Windows carga, pero se queda iniciando y solo puedo mover el Mouse No puedo abrir nada, ya que se queda como colgado =/ Solo puedo ingresar en modo seguro con funciones de red para poder utilizarla sin problemas. Pero en modo normal, se queda pegada iniciando.
Adjunto análisis de Rkill:
Rkill 2.9.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2020 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 03/07/2020 08:02:15 PM in x86 mode. (Safe Mode)
Windows Version: Windows 7 Ultimate Service Pack 1
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* No malware processes found to kill.
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
* No issues found.
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* HOSTS file entries found:
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.comHola
Has utilizado programas que no te he indicado, FRST no lo has descargado y ejecutado desde el escritorio que es desde donde debe hacerse.
No realices más pasos por tu cuenta mientras reviso los reportes.
Un saludo
Muchas gracias Daniela
Disculpa por no haber esperado a tus instrucciones 
Espero que me puedas ayudar.
Muchas gracias de antemano.
Quedo atento a tus recomendaciones.
Un saludo.
Hola
Descarga, instala y ejecuta Revo Uninstaller
Mueve FRST al escritorio si no fallará el paso siguiente.
MUY Importante 
Realiza una copia de seguridad del registro :
Para hacerlo descarga DelFix.exe( en tu escritorio).
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
A continuación 
con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d18-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d1e-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {33d2eac1-d126-11e7-b402-eca86b9904a2} - G:\Driver.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566834be-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566835a3-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {9c2ae915-3266-11e7-8ce2-eca86b9904a2} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {d861b20b-cc78-11e7-9b2f-eca86b9904a2} - F:\setup.exe -a
GroupPolicy: Restricción ? <==== ATENCIÓN
Task: {FB96D472-1B96-4AB6-981D-5799CAC13BAB} - System32\Tasks\iToolsDaemon => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
Task: C:\Windows\Tasks\iToolsDaemon.job => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe
Tcpip\Parameters: [DhcpNameServer] 89.207.131.8 8.8.8.8
Tcpip\..\Interfaces\{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}: [DhcpNameServer] 89.207.131.8 8.8.8.8
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
FF NewTab: Mozilla\Firefox\Profiles\eu0q8ksl.default -> hxxps://ve.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__171026__yaff
CHR Extension: (Newtab-TV) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hijfkjphpcbbabdnpkmgcdnpfhjldbhm [2020-03-07]
CHR Extension: (ySense Addon) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjnhcgkngeeahimbfhejeaiijecekhba [2019-12-16]
CHR Extension: (NeoBux AdAlert) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpkdcghgfeaccigdjnibpkopebncakc [2018-02-14]
CHR Extension: (Mass follow for Twitter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmanfkmmgfigbnjibfemdnnfjboficn [2020-03-07]
CHR Extension: (Cometdocs PDF Converter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\olgfoomjdkeijllelookodfgiogbdoch [2018-02-18]
CHR Extension: (Chrome Media Router) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2020-03-07 19:12 - 2020-03-07 19:12 - 000000292 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-03-07 17:03 - 2017-03-07 21:32 - 000000310 _____ C:\Windows\Tasks\iToolsDaemon.job
2018-09-28 09:23 - 2018-09-28 09:23 - 000000000 _____ () C:\Users\Disloth\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Ningún archivo
FirewallRules: [{C52DE4B0-60BF-4690-B0B1-E22316BFA3BA}] => (Allow) tunmgr.exe Ningún archivo
FirewallRules: [{25E5A161-87E9-429F-A93F-4E962BBAC7D3}] => (Allow) tunmgr.exe Ningún archivo
FirewallRules: [{4CB5EBBC-491A-40B5-AA8D-852BB9BEF176}] => (Allow) mDNSResponder.exe Ningún archivo
FirewallRules: [{E32181B1-85A7-4427-8209-FBE35604DC25}] => (Allow) mDNSResponder.exe Ningún archivo
FirewallRules: [TCP Query User{300A80B1-9314-4406-B519-794ED2AA983E}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ningún archivo
FirewallRules: [UDP Query User{5636768A-13ED-49CF-8917-8D4878A38490}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ningún archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
ENDGuárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
Y ahora inicia en modo seguro, para trabajar desde ese modo de windows.
Pega el contenido de este fichero en tu próxima respuesta.
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Un saludo
La aplicación Revo Uninstaller no me dejó desinstalar Java, me da un error, adjunto 2 imágenes con el error que da:
Adjunto el log de FRST:
Resultados de la corrección de Farbar Recovery Scan Tool (x86) Versión: 08-03-2020
Ejecutado por Disloth (12-03-2020 21:05:56) Run:1
Ejecutado desde C:\Users\Disloth\Desktop
Perfiles cargados: Disloth (Perfiles disponibles: Disloth)
Modo de Inicio: Safe Mode (with Networking)
==============================================
fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d18-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {1c3e7d1e-9a48-11e8-a973-0230d2b18701} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {33d2eac1-d126-11e7-b402-eca86b9904a2} - G:\Driver.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566834be-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {566835a3-e444-11e7-a95a-eca86b9904a2} - F:\AutoRun.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {9c2ae915-3266-11e7-8ce2-eca86b9904a2} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-838994074-81632765-970354094-1000\...\MountPoints2: {d861b20b-cc78-11e7-9b2f-eca86b9904a2} - F:\setup.exe -a
GroupPolicy: Restricci�n ? <==== ATENCI�N
Task: {FB96D472-1B96-4AB6-981D-5799CAC13BAB} - System32\Tasks\iToolsDaemon => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
Task: C:\Windows\Tasks\iToolsDaemon.job => C:\Program Files\ThinkSky\iTools 3\iToolsDaemon.exe
Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\Disloth\Downloads\adwcleaner_8.0.3.exe
Tcpip\Parameters: [DhcpNameServer] 89.207.131.8 8.8.8.8
Tcpip\..\Interfaces\{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}: [DhcpNameServer] 89.207.131.8 8.8.8.8
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
FF NewTab: Mozilla\Firefox\Profiles\eu0q8ksl.default -> hxxps://ve.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__171026__yaff
CHR Extension: (Newtab-TV) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hijfkjphpcbbabdnpkmgcdnpfhjldbhm [2020-03-07]
CHR Extension: (ySense Addon) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjnhcgkngeeahimbfhejeaiijecekhba [2019-12-16]
CHR Extension: (NeoBux AdAlert) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpkdcghgfeaccigdjnibpkopebncakc [2018-02-14]
CHR Extension: (Mass follow for Twitter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmanfkmmgfigbnjibfemdnnfjboficn [2020-03-07]
CHR Extension: (Cometdocs PDF Converter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\olgfoomjdkeijllelookodfgiogbdoch [2018-02-18]
CHR Extension: (Chrome Media Router) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2020-03-07 19:12 - 2020-03-07 19:12 - 000000292 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-03-07 17:03 - 2017-03-07 21:32 - 000000310 _____ C:\Windows\Tasks\iToolsDaemon.job
2018-09-28 09:23 - 2018-09-28 09:23 - 000000000 _____ () C:\Users\Disloth\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Ning�n archivo
FirewallRules: [{C52DE4B0-60BF-4690-B0B1-E22316BFA3BA}] => (Allow) tunmgr.exe Ning�n archivo
FirewallRules: [{25E5A161-87E9-429F-A93F-4E962BBAC7D3}] => (Allow) tunmgr.exe Ning�n archivo
FirewallRules: [{4CB5EBBC-491A-40B5-AA8D-852BB9BEF176}] => (Allow) mDNSResponder.exe Ning�n archivo
FirewallRules: [{E32181B1-85A7-4427-8209-FBE35604DC25}] => (Allow) mDNSResponder.exe Ning�n archivo
FirewallRules: [TCP Query User{300A80B1-9314-4406-B519-794ED2AA983E}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ning�n archivo
FirewallRules: [UDP Query User{5636768A-13ED-49CF-8917-8D4878A38490}D:\windowsviewer.exe] => (Allow) D:\windowsviewer.exe Ning�n archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c3e7d18-9a48-11e8-a973-0230d2b18701} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c3e7d1e-9a48-11e8-a973-0230d2b18701} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{33d2eac1-d126-11e7-b402-eca86b9904a2} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{566834be-e444-11e7-a95a-eca86b9904a2} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{566835a3-e444-11e7-a95a-eca86b9904a2} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9c2ae915-3266-11e7-8ce2-eca86b9904a2} => eliminado correctamente
HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d861b20b-cc78-11e7-9b2f-eca86b9904a2} => eliminado correctamente
C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FB96D472-1B96-4AB6-981D-5799CAC13BAB}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB96D472-1B96-4AB6-981D-5799CAC13BAB}" => eliminado correctamente
C:\Windows\System32\Tasks\iToolsDaemon => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iToolsDaemon" => eliminado correctamente
C:\Windows\Tasks\iToolsDaemon.job => movido correctamente
C:\Windows\Tasks\AdwCleaner_onReboot.job => movido correctamente
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer" => eliminado correctamente
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}\\DhcpNameServer" => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{47833539-D0C5-4125-9FA8-0819E2EAAC93}" => eliminado correctamente
"HKLM\Software\Classes\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93}" => eliminado correctamente
"Firefox newtab" => eliminado correctamente
CHR Extension: (Newtab-TV) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hijfkjphpcbbabdnpkmgcdnpfhjldbhm [2020-03-07] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (ySense Addon) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjnhcgkngeeahimbfhejeaiijecekhba [2019-12-16] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (NeoBux AdAlert) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpkdcghgfeaccigdjnibpkopebncakc [2018-02-14] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (Mass follow for Twitter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmanfkmmgfigbnjibfemdnnfjboficn [2020-03-07] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (Cometdocs PDF Converter) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\olgfoomjdkeijllelookodfgiogbdoch [2018-02-18] => Error: Ninguna corrección automática encontrada para esta entrada.
CHR Extension: (Chrome Media Router) - C:\Users\Disloth\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19] => Error: Ninguna corrección automática encontrada para esta entrada.
HKLM\System\CurrentControlSet\Services\AndNetDiag => eliminado correctamente
AndNetDiag => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ANDNetModem => eliminado correctamente
ANDNetModem => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\VGPU => eliminado correctamente
VGPU => servicio eliminado correctamente
"C:\Windows\Tasks\AdwCleaner_onReboot.job" => no encontrado
"C:\Windows\Tasks\iToolsDaemon.job" => no encontrado
C:\Users\Disloth\AppData\Local\oobelibMkey.log => movido correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C52DE4B0-60BF-4690-B0B1-E22316BFA3BA}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25E5A161-87E9-429F-A93F-4E962BBAC7D3}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4CB5EBBC-491A-40B5-AA8D-852BB9BEF176}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E32181B1-85A7-4427-8209-FBE35604DC25}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{300A80B1-9314-4406-B519-794ED2AA983E}D:\windowsviewer.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5636768A-13ED-49CF-8917-8D4878A38490}D:\windowsviewer.exe" => eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03122020205653016\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03122020205653016\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03122020210000439\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-838994074-81632765-970354094-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03122020210000439\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final 1 RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final 1 CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local 5 mientras los medios
est‚n desconectados.
Adaptador de t£nel Conexi¢n de rea local 5:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de Ethernet Conexi¢n de rea local:
Sufijo DNS espec¡fico para la conexi¢n. . :
V¡nculo: direcci¢n IPv6 local. . . : fe80::6cac:e287:d231:7cec%12
Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.2
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : 192.168.1.1
Adaptador de t£nel isatap.{079F6FFF-A4DF-4F91-83C1-250753CC6A6A}:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel isatap.{2D036926-EE4A-4BB8-9884-622A28262ACC}:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= Final 1 CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= Final 1 CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.
========= Final 1 CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= Final 1 CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= Final 1 CMD: =========
========= netsh int ipv4 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final 1 CMD: =========
========= netsh int ipv6 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final 1 CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4214311 B
Java, Flash, Steam htmlcache => 40971614 B
Windows/system/drivers => 3623323 B
Edge => 0 B
Chrome => 81170263 B
Firefox => 30926860 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 66228 B
ProgramData => 66228 B
systemprofile => 132316 B
LocalService => 198544 B
NetworkService => 268788 B
Disloth => 20243731 B
RecycleBin => 0 B
EmptyTemp: => 181.5 MB datos temporales Eliminados.
================================
El sistema necesita reiniciarse.
==== Final Fixlog 21:08:10 ====La PC sigue igual, inicia y se queda colgada en el inicio… cargan todos los iconos del escritorio pero se queda allí, si intento hacer algo, se queda el mouse dando vueltas como cargando… lo único que puedo hacer es mover el mouse 
esperé 20 minutos y nada. Me tocó reiniciar e ingresar nuevamente en Modo Seguro con Funciones de Red 
Por qué seguirá con el mismo error? 
¿Alguna sugerencia con este ultimo log?
Hola
Perdona, no me llegó aviso de tu respuesta 
Tienes el disco del sistema operativo por si hiciera falta volver a instalarlo?
Vamos a realizar un par de análisis más para ver si hay infecciones.
Análisis del PC con Eset Online Scaner : Manual de Uso lee las instrucciones para salvar el reporte.
Análisis del PC con Kasperky Virus Removal Tool: Manual de Uso
Comenta como sigue.
Un saludo
Le pasé el de ESET pero no me dejó guardar el log y no se donde buscarlo… consiguió 33 amenazas y las neutralizó correctamente… pude ver en la descripción que eran archivos de unos programas de minado que tengo… nada de real peligro … hay manera de que pueda ver el log de ESET?
Voy a reiniciar la pc a ver que tal va 
Hola
Para localizar el reporte de EsetOnline sigue esta ruta:
C\Usuarios\ Tu Nombre de Usuario\AppData\Local\Temp\ Log.txt
Para poder ver esa ubicación, debe Mostrar archivos ocultos
Comenta como sigue el problema.
Un saludo
