Hola @LookazR
Aun se ve activo Eset en tu equipo.
Descarga su Herramienta de desinstalación especifica, la ejecutas , reinicias.
Ejecutaste FRST desde un lugar incorrecto:
- Running from C:\Users\Lucas\ Downloads
Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.
Luego sigue estos pasos:
1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.
- Descarga DelFix en el escritorio de Windows.
- Clic Derecho, “Ejecutar como Administrador”.
- En la ventana principal, marca solamente la casilla “Create Registry Backup”.
- Clic en Run.
Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…
2.- Desactiva Temporalmente tu antivirus.
3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:
Start
CloseProcesses:
CreateRestorePoint:
Task: {81C94904-8AA8-416C-8554-6DF3C68618B9} - System32\Tasks\MandarinBrowserUpdateTaskMachineCore => C:\Program Files (x86)\MandarinBrowser\Update\MandarinUpdate.exe
Task: {A1FBEB30-1117-4CBB-930C-E47BF101EF88} - System32\Tasks\MandarinBrowserUpdateTaskMachineUA => C:\Program Files (x86)\MandarinBrowser\Update\MandarinUpdate.exe
C:\Program Files (x86)\MandarinBrowser
Task: {26BC8035-9AAD-454D-A228-D6288A8E61A0} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Lucas\Downloads\ESETOnlineScanner_ESL.exe [8166712 2019-11-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {478A3714-B690-4162-B135-747B4B424FC2} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Lucas\Downloads\ESETOnlineScanner_ESL.exe [8166712 2019-11-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-07-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.d.mandarin-browser.com/MandarinBrowser Update;version=3 -> C:\Program Files (x86)\MandarinBrowser\Update\1.3.109.0\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.d.mandarin-browser.com/MandarinBrowser Update;version=9 -> C:\Program Files (x86)\MandarinBrowser\Update\1.3.109.0\npGoogleUpdate3.dll [No File]
S4 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [X]
S4 NVHDA; system32\drivers\nvhda64v.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-11-07 11:59 - 2019-11-07 12:02 - 173250488 _____ (AO Kaspersky Lab) C:\Users\Lucas\Downloads\KVRT (1).exe
2019-11-07 11:58 - 2019-11-07 11:58 - 000000000 ____D C:\KVRT_Data
2019-11-07 07:01 - 2019-11-07 07:01 - 000003716 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2019-11-07 07:01 - 2019-11-07 07:01 - 000003276 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2019-11-06 22:30 - 2019-11-06 22:30 - 008166712 _____ (ESET spol. s r.o.) C:\Users\Lucas\Downloads\ESETOnlineScanner_ESL.exe
2019-11-04 16:45 - 2019-11-06 21:03 - 000000000 ____D C:\Users\Lucas\Desktop\Kit Alter Principiante
2019-10-10 01:39 - 2019-10-12 22:38 - 000545568 _____ (TENCENT) C:\Windows\system32\TesSafe.sys
2019-10-10 01:39 - 2019-10-10 01:39 - 000432840 _____ (TENCENT) C:\Windows\system32\Drivers\tesrsdt.sys
2019-10-10 01:14 - 2019-10-10 01:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
S3 tesrsdt; C:\Windows\system32\drivers\tesrsdt.sys [432840 2019-10-10] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\Windows\system32\TesSafe.sys [545568 2019-10-12] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
R2 aow_drv; C:\Program Files\TxGameAssistant\UI\aow_drv_x64.sys [862880 2019-09-27] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S4 QMEmulatorService; C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [148840 2019-09-30] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
2019-10-10 01:14 - 2019-10-10 01:19 - 000000000 ____D C:\Program Files\txgameassistant
2019-10-10 01:14 - 2019-10-10 01:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2019-11-07 11:54 - 2019-09-20 14:06 - 000000744 _____ C:\Users\Lucas\Desktop\ESET Online Scanner.lnk
2019-11-06 20:14 - 2019-07-03 00:25 - 000000000 ____D C:\Users\Lucas\AppData\Roaming\IObit
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\2052
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1055
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1049
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1046
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1045
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1042
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1041
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1040
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1036
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1031
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1029
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\SysWOW64\1028
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\2052
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1055
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1049
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1046
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1045
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1042
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1041
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1040
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1036
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1031
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1029
2019-10-23 21:21 - 2019-07-04 15:21 - 000000000 ____D C:\Windows\system32\1028
2019-10-23 21:21 - 2019-07-04 15:17 - 000000000 ____D C:\Windows\SysWOW64\3082
2019-10-23 21:21 - 2019-07-04 15:17 - 000000000 ____D C:\Windows\SysWOW64\1033
2019-10-23 21:21 - 2019-07-04 15:17 - 000000000 ____D C:\Windows\system32\3082
2019-10-23 21:21 - 2019-07-04 15:17 - 000000000 ____D C:\Windows\system32\1033
CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
AlternateDataStreams: C:\Windows\System32:tdsrset.gfc [5846]
FirewallRules: [{47B674AF-EF91-4AB0-BE29-1C0E521C288E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{0DF43F6B-ADF9-4F66-8D01-64D0448F2CB6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{4C864805-3D5A-4A85-8669-1B2722A5A25B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe No File
FirewallRules: [UDP Query User{41360E6A-DC7F-4D17-BC97-C8FD97494AFC}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe No File
FirewallRules: [TCP Query User{92F78679-A21A-4707-A68C-245634A76663}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe
FirewallRules: [UDP Query User{E1EA10D9-8678-4CCF-A02C-0C081B460958}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe
FirewallRules: [TCP Query User{9C5A975C-82C1-4A24-AFDA-570571CB013D}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe No File
FirewallRules: [UDP Query User{C92B90A0-EC3D-4272-84F4-5BBDB315711A}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe No File
FirewallRules: [TCP Query User{D05AFC44-6E6D-4EA0-AC59-99F7254A3BF9}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe No File
FirewallRules: [UDP Query User{FC363BD6-1B91-4A5C-A6DB-BF7B338A3647}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe No File
FirewallRules: [{9DE9DAD3-83AE-499F-B0F3-B2DC8A2BBA7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe No File
FirewallRules: [{FDCC1559-0916-4705-BE45-57D7FC62FB65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe No File
FirewallRules: [{0FC542BB-62FD-4B2E-B4E9-08C1E36BA76F}] => (Allow) C:\Users\Lucas\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{041553D0-8BA8-4A4B-9771-57FFDA9F4350}] => (Allow) C:\Users\Lucas\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{A2511A5E-F6F8-4F00-BFDE-24D4B9C50FE8}] => (Allow) c:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{19D4A994-8650-49C3-87A1-BD3818CD8759}] => (Allow) c:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B6ACFBE9-BF59-494A-977D-55BD5A0143E5}] => (Allow) c:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{7D605A57-2BF6-40DB-A6B9-81709DBC5E9F}] => (Allow) c:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{4A0E2ED7-62A8-4947-9F63-2C3C4703446E}] => (Allow) c:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{AE5DE6AA-A2DB-4696-A0A9-420BEBA82765}] => (Allow) c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8D579E22-03BD-4304-82B4-D13440FC3FEA}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{EB74A56A-CB61-405C-A863-FBF804958552}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{62B2083F-D432-482F-AD15-EEA74973AC3E}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BAF929DC-F300-466B-BE9B-8DEBB5ECF1EF}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{4824033C-1D06-4CD0-A7A8-7A59E8288ABB}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{5CE41CD1-64CE-4CDE-82C0-B00B0109CA12}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{3ECD0BAE-E901-4D4D-8220-9E8514A1AC4C}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{24C9458B-BCC2-4B48-9874-18EDCEC4285F}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{098F0589-C1E5-4264-859F-59F329510098}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{444E64FB-6FCD-4885-9F86-ABC359E518F1}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
c:\program files\txgameassistant
FirewallRules: [{B4E4FD72-5108-4F5D-9BF1-6664F0F43B12}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{2343AE35-44A2-4989-A915-54825D4C9568}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{921DD579-53E7-4275-8F4A-B190D3ECDD4E}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [{FE16953D-1041-4CDE-871F-6AE7AC77617C}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [TCP Query User{68C846E4-CC70-4298-B2F4-65256185084D}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe
FirewallRules: [UDP Query User{8562977B-C52A-4A38-B309-06E6B1641915}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe
FirewallRules: [TCP Query User{6214792E-C697-4C36-9174-023BFAC2FBBC}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{F7ABAE95-73C4-4693-9E7E-54F547CC5865}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
- Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.
Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.
- Ejecutas Frst.exe.
- Presionas el botón Fix y aguardas a que termine.
- La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
- Lo pegas en tu próxima respuesta.
Actualizas Java a su ultima versión., ya que tenias instaladas versiones obsoletas.
Nos comentas .
Salu2.