Ayuda pc lenta

Buenas tardes, mi pc esta lenta y me desactivan los antivirus. Espero ayuda. Saludos

Hola @Pablo_Vallejos

Cuantos y cuales antivirus tienes??


Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.

  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes

  • No olvides actualizarlo.
  • Lee detenidamente su Manual
  • Realiza un Análisis Personalizado marcando todas las unidades
  • Pulsa en “Eliminar Seleccionados” para enviar lo encontrado a la cuarentena.
  • Reinicias el Sistema.
  • En el apartado del manual “Historial” >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta.

4.- Nota Importante:

En tu próxima respuesta debes pegar los reportes de AdwCleaner , ZHPCleaner y Malwarebytes.

Guía: ¿Como Pegar reportes en el Foro?

Nos comentas.

Salu2

Buenas ahi va,

~ ZHPCleaner v2019.8.7.118 by Nicolas Coolman (2019/08/07)
~ Run by Rolando (Administrator)  (08/08/2019 18:37:35)
~ Web: htps://www.nicolascoolman.com
~ Blog: htps://nicolascoolman.eu/
~ Facebook : htts://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Reparar
~ Report : C:\Users\Rolando\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\Rolando\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601)

---\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados. (ADS)

---\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados. (Servicio)

---\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados. (Navegador)

---\  Hosts carpeta (1)
~ El archivo hosts es legítimo (22)

---\  Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados. (Tarea)

---\  Explorador ( Archivos, Carpetas ) (0)
~ No malintencionados o innecesarios artículos encontrados. (Explorer)

---\  Registro ( Claves, Valores, Datos) (3)
BORRADOS clave*: HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman]  =>PUP.Optional.Camec
BORRADOS clave*: HKLM\SOFTWARE\Classes\bi [bi]  =>Adware.FilesFrog
BORRADOS valor: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_B501AD29EAAAEA29F5BE2250F4F3EF86 ['C:\Program Files\Google\Chrome\Application\chrome]  =>PUP.Optional.MyBrowser

---\  Resumen de elementos en su estación de trabajo (3)
htps://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Camec
ttps://nicolascoolman.eu/2017/10/13/adware-filesfrog/  =>Adware.FilesFrog
ttps://nicolascoolman.eu/2017/11/01/adware-mybrowser/  =>PUP.Optional.MyBrowser

---\ Limpieza adicional. (2)
~ Clave de registro Tracing borrados (2)
~ Quitar los antiguos informes de ZHPCleaner. (0)

---\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ falta este navegador! (Mozilla Firefox)
~ falta este navegador! (Opera Software)

---\ STATISTIQUES
~ Items escaneado : 442
~ Items encontrado : 0
~ artículos cancelados : 0
~ Items opciones : 6/13
~ Ahorro de espacio (bytes) : 0
~ End of clean in 00h00mn06s

---\  Reporte (2)
ZHPCleaner-[S]-08082019-18_21_06.txt
ZHPCleaner-[R]-08082019-18_37_41.txt


--

# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build:    07-23-2019
# Database: 2019-08-08.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    08-08-2019
# Duration: 00:00:57
# OS:       Windows 7 Professional
# Cleaned:  7
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\drpsu

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.SamsungSmartSwitch


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1349 octets] - [08/08/2019 12:31:16]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########



-------------------------------------------------------------------------------------------------------------

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 8/8/19
Hora del análisis: 18:42
Archivo de registro: 65bf1c6c-ba25-11e9-8cfd-74d4351b9c2f.json

-Información del software-
Versión: 3.8.3.2965
Versión de los componentes: 1.0.613
Versión del paquete de actualización: 1.0.11922
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x86
Sistema de archivos: NTFS
Usuario: ROLANDO1\Rolando

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 161355
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 2 min, 42 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

NOTA: funciona mejor , pero no tengo anticirus

SALUDOS

Hola @Pablo_Vallejos

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Aqui va

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-08-2019 02
Ran by Rolando (08-08-2019 19:41:43)
Running from C:\Users\Rolando\Desktop
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2017-09-04 01:47:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1645975853-1618061702-513004773-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1645975853-1618061702-513004773-1002 - Limited - Enabled)
Invitado (S-1-5-21-1645975853-1618061702-513004773-501 - Limited - Enabled)
Rolando (S-1-5-21-1645975853-1618061702-513004773-1000 - Administrator - Enabled) => C:\Users\Rolando

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: AVG Antivirus (Disabled - Up to date) {C50510DE-367A-330C-FD5C-556ACFB11243}
AS: AVG Antivirus (Disabled - Up to date) {7E64F13A-1040-3C82-C7EC-6E18B43658FE}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 10 ActiveX (HKLM\...\{406A89D6-09E6-4550-B370-8D376DDB56BE}) (Version: 10.1.82.76 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM\...\{012CE096-06BA-4f46-8E89-0B4F900E7479}) (Version: 10.1.82.76 - Adobe Systems Incorporated)
Adobe Reader 9.3.4 - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-A93000000001}) (Version: 9.3.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM\...\{3B834B54-EC4B-48E2-BFC6-03FF5DA06F62}) (Version: 11.5.8.612 - Adobe Systems, Inc)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 18.4.3056 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
ChromePlayerPlugin (HKLM\...\{B528BAE7-A48E-40F4-B7F7-63668EDEB61C}) (Version: 3.26.2 - MinervaNetworks Inc.)
Compresor WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
Desinstalar impresora EPSON L395 Series (HKLM\...\EPSON L395 Series) (Version:  - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM\...\{922E2D91-9314-45AA-9AEF-E585F93B59A9}) (Version: 2.6.1.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM\...\{006C8256-3855-43BF-8BA5-4B4C40F41F71}) (Version: 3.10.0065 - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM\...\{9ABD2971-9B8B-4958-9100-4EAFCC32A86D}) (Version: 3.0.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM\...\Epson Scan 2) (Version:  - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.01 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM\...\{6DBD132B-7F42-4594-BBE7-0BB677EB2926}) (Version: 4.4.2 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM\...\{0CB4EF8E-EE5B-49F6-8376-A702C222D6DA}) (Version: 3.1.3.0 - SEIKO EPSON Corporation)
gen_msn_adv 1.1 (HKLM\...\gen_msn_adv) (Version: 1.1 - Homesoft Programming Group)
Google Chrome (HKLM\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3345 - Intel Corporation)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Manual Epson L395 (HKLM\...\UsersGuideManual Epson L395_is1) (Version: 1.0 - Epson America, Inc.)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox (3.6.10) (HKLM\...\Mozilla Firefox (3.6.10)) (Version: 3.6.10 (es-ES) - Mozilla)
Samsung Kies (HKLM\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
VLC media player 1.1.4 (HKLM\...\VLC media player) (Version: 1.1.4 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.581  - Nullsoft, Inc)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Wondershare MirrorGo(Version 1.9.0) (HKLM\...\{EE843B49-D9BC-4A9E-A8A7-B9F14C0381C7}_is1) (Version: 1.9.0 - Wondershare)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2018-05-16] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\Winrar\rarext.dll [2010-03-15] () [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\Winrar\rarext.dll [2010-03-15] () [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-10-28] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-08-06] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2018-05-16] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\Winrar\rarext.dll [2010-03-15] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2017-09-03 22:50 - 2010-03-15 11:28 - 000141824 _____ () [File not signed] C:\Program Files\Winrar\rarext.dll
2015-05-13 19:42 - 2010-06-29 15:15 - 000225280 _____ (Hewlett-Packard ) [File not signed] C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006C.DLL
2015-05-13 19:42 - 2010-06-29 15:15 - 000086528 _____ (Hewlett-Packard ) [File not signed] C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006L.DLL
2015-05-13 19:42 - 2010-06-29 15:15 - 001251840 _____ (Hewlett-Packard ) [File not signed] C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006U.DLL
2018-03-29 19:07 - 2010-06-29 15:15 - 000293888 _____ (Hewlett-Packard ) [File not signed] C:\Windows\system32\spool\PRTPROCS\W32X86\HP1006S.DLL
2018-03-27 19:48 - 2018-03-27 19:48 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l1-2-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l2-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-localization-l1-2-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-processthreads-l1-1-1.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-synch-l1-2-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-timezone-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000022320 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-convert-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-environment-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000020272 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-filesystem-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-heap-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-locale-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000028968 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-math-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000026416 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-multibyte-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000022832 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-runtime-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-stdio-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-string-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-time-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-utility-l1-1-0.dll
2018-03-27 19:48 - 2018-03-27 19:48 - 001142064 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\ucrtbase.DLL
2018-06-07 10:56 - 2015-02-27 10:35 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files\Wondershare\WAF\2.4.3.227\Newtonsoft.Json.dll
2016-05-09 09:20 - 2016-05-09 09:20 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files\EPSON Software\Event Manager\LcMgr.dll
2015-12-24 13:41 - 2015-12-24 13:41 - 000385024 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enppmon.dll
2018-06-07 10:56 - 2017-06-21 09:24 - 000087552 _____ (Wondershare) [File not signed] C:\Program Files\Wondershare\WAF\2.4.3.227\WsAppCollect.dll
2018-06-07 10:56 - 2017-06-21 09:24 - 000198144 _____ (Wondershare) [File not signed] C:\Program Files\Wondershare\WAF\2.4.3.227\WsAppCommon.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1645975853-1618061702-513004773-1000\...\bancogalicia.com.ar -> hxxps://wsec06.bancogalicia.com.ar

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2017-09-03 22:56 - 000000864 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 validation.sls.microsoft.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1645975853-1618061702-513004773-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rolando\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.49.130.44 - 200.42.4.204
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{9B6A5885-A14F-46AF-B2A9-DC17916800F8}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{BD1BB94E-13F1-48C4-8D7B-F98ABB709B0D}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{34258D12-DED7-4081-ADDE-AB2E1FB43CBD}C:\windows\system32\sndvol.exe] => (Allow) C:\windows\system32\sndvol.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{A0475B2A-5386-401B-8DE0-D48D2F6481C7}C:\windows\system32\sndvol.exe] => (Allow) C:\windows\system32\sndvol.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{201D56DB-0A72-4C42-8AF5-E5739ADC9F31}C:\windows\system32\wuauclt.exe] => (Allow) C:\windows\system32\wuauclt.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{3F02E627-34C7-4094-AE97-F1562C1BEEB4}C:\windows\system32\wuauclt.exe] => (Allow) C:\windows\system32\wuauclt.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{A5284399-B9C8-4144-AB3D-F5BF165580B7}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{7187F2AE-F06D-4F71-A328-782FB3A75C9E}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{67FDBD4C-437F-4459-9B52-2DC63C3B1FA1}] => (Allow) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{30740116-EADC-4937-A0B0-6C7BC0FEBA87}] => (Allow) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{461A2071-B477-4D27-BC7E-79F2106D70AA}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE (Software 2000 Limited) [File not signed]
FirewallRules: [{3C7BF92A-9B48-4E9B-B06A-C62D25380E05}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\HP1006MC.EXE (Software 2000 Limited) [File not signed]
FirewallRules: [TCP Query User{371B5FE3-966F-418E-9898-67AA661B6D60}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{72100E9F-A9B3-49C1-8071-67EF2A7CAF8E}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{4B2FDF00-C23B-4D7F-8F95-1121143EEA50}C:\program files\wondershare\mirrorgo\mirrorgo.exe] => (Allow) C:\program files\wondershare\mirrorgo\mirrorgo.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{74831C46-0C5D-4F9C-9BB3-3FDC479F3267}C:\program files\wondershare\mirrorgo\mirrorgo.exe] => (Allow) C:\program files\wondershare\mirrorgo\mirrorgo.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{6ACB516C-327F-4376-B3C6-691C7EDF00AA}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{DB9A86FA-7B84-4D9F-883C-D05C9A9A1CB9}C:\windows\system32\dwm.exe] => (Block) C:\windows\system32\dwm.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{26848D8B-EB21-400D-A6EA-DC2A7376DEFB}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{C7C2832C-465D-4421-93B2-F9C4FFB52941}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D7916D9F-7CFD-4734-9211-5111F4C24AB7}C:\windows\system32\taskhost.exe] => (Block) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{592F2B16-C8D3-4BED-AD8D-CF12398C0491}C:\windows\system32\taskhost.exe] => (Block) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{54AE2B25-0508-4A39-B85B-8DBE860E8072}C:\programdata\minervanetworks\chromeplayerplugin\browserpluginhelper.exe] => (Allow) C:\programdata\minervanetworks\chromeplayerplugin\browserpluginhelper.exe () [File not signed]
FirewallRules: [UDP Query User{BF92E1D5-3297-4191-93F3-89A96F756F83}C:\programdata\minervanetworks\chromeplayerplugin\browserpluginhelper.exe] => (Allow) C:\programdata\minervanetworks\chromeplayerplugin\browserpluginhelper.exe () [File not signed]
FirewallRules: [{1BAD6B69-E13C-40E0-8A05-0E78BE692CF9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

27-07-2019 09:03:55 Punto de control programado
03-08-2019 09:34:42 Punto de control programado
03-08-2019 21:09:35 Windows Update
08-08-2019 18:36:57 ZHPcleaner

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/08/2019 05:40:01 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: No se puede inicializar el índice.

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/08/2019 05:40:01 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: No se puede inicializar la aplicación.

Contexto: aplicación Windows

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/08/2019 05:40:01 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: No se puede inicializar el objeto Recopilador.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/08/2019 05:40:01 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.TripoliIndexer>.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	No se ha encontrado el elemento.  (HRESULT : 0x80070490) (0x80070490)

Error: (08/08/2019 05:39:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.JetPropStore>.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/08/2019 05:39:43 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: El servicio Windows Search no puede cargar la información del almacén de propiedades.

Contexto: aplicación Windows, catálogo SystemIndex

Detalles:
	La base de datos del índice de contenido está dañada.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (08/08/2019 05:39:37 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: El servicio Windows Search se está deteniendo porque hay un problema con el indizador: The catalog is corrupt.

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/08/2019 05:39:35 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: El servicio de búsqueda detectó archivos de datos dañados en el índice {id=4700}. Este servicio intentará corregir este problema automáticamente mediante la nueva generación del índice.

Detalles:
	El catálogo del índice de contenido está dañado.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (08/08/2019 07:40:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Servicio de compatibilidad de programas se cerró con el siguiente error: 
No se puede encontrar el módulo especificado.

Error: (08/08/2019 07:38:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:38 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:36 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:33 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:30 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:27 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.

Error: (08/08/2019 07:38:24 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk1\DR1, tiene un bloque defectuoso.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. F2 NN 09/11/2013
Motherboard: Gigabyte Technology Co., Ltd. Q77M-D2H
Processor: Intel(R) Core(TM) i5-3570S CPU @ 3.10GHz
Percentage of memory in use: 84%
Total physical RAM: 3486.84 MB
Available physical RAM: 533.82 MB
Total Virtual: 6972.05 MB
Available Virtual: 3472.48 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:78.17 GB) (Free:45.56 GB) NTFS
Drive d: () (Fixed) (Total:72.31 GB) (Free:65.4 GB) NTFS
Drive e: () (Fixed) (Total:315.18 GB) (Free:314.69 GB) NTFS
Drive f: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: () (Fixed) (Total:23.48 GB) (Free:22.77 GB) NTFS
Drive h: () (Fixed) (Total:79.19 GB) (Free:57.39 GB) NTFS
Drive i: () (Fixed) (Total:195.31 GB) (Free:187.25 GB) NTFS

\\?\Volume{7b029ddd-9130-11e7-a076-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 24142413)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=79.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=23.5 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C540F880)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=78.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=72.3 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=315.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Te quiero poner el otro pero dice que usuarios nuevos pueden mencionar a 2 usuarios solamente

Hola @Pablo_Vallejos

Revisa el Metodo 4 de ¿Como Pegar Reportes en el Foro?

Salu2

Ahi va

FRST.txt (31,0 KB)

Tienes dos antivirus a falta de uno, y parece parte del bloqueo que tienes en el equipo.

Desinstala ambos (Avast y AVG), cada uno con su herramienta especifica., deberas reiniciar despues de cada uno.

Luego que los desinstales, vuelves a ejecutar FRST y nos traes reportes frescos.

Nota Importante: Por el momento no instales ningún Antivirus.

Salu2

Ahi va el reporte

Addition.txt (27,6 KB)

FRST.txt (23,5 KB)

Hola @Pablo_Vallejos

Ejecutaste FRST desde un lugar incorrecto:

  • Running from C:\Users\Rolando\Downloads

Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.


Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8E58B9ED-A6E9-4E41-8EF7-9E97AFF3099F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Program Files\AVAST Software
Task: {A77F7092-3EB6-4E5A-9085-E0113DCDD296} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
C:\Program Files\Common Files\AVAST Software
Task: {B1B55E9B-9F16-45C1-B9C1-EF663191CAF6} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files\AVG
Task: {C12F0B7F-0C82-4919-9B8E-B2036FB703FE} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe
C:\Program Files\Common Files\AVG
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.0.1,-1]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Rolando\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-08-07]
CHR Extension: (Avast Online Security) - C:\Users\Rolando\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-08-07]
CHR Extension: (AVG SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Rolando\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2019-06-05]
CHR HKLM\...\Chrome\Extension: [bdlhpbalhdjobabgbacbgclpjjelainj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
2019-08-10 11:44 - 2019-08-10 11:53 - 011018472 _____ (AVAST Software) C:\Users\Rolando\Downloads\avastclear.exe
2019-08-10 10:57 - 2019-08-10 10:58 - 012767776 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Rolando\Downloads\avgclear.exe
2019-08-07 08:56 - 2019-08-07 08:56 - 000000000 _____ C:\unp18694826.tmp
2019-08-06 12:14 - 2019-08-06 12:14 - 000000000 ___HD C:\$AV_ASW
2019-08-06 11:53 - 2019-08-10 12:01 - 000000000 ____D C:\ProgramData\AVAST Software
2019-08-06 11:53 - 2019-08-06 11:53 - 000230080 _____ (AVAST Software) C:\Users\Rolando\Downloads\avast_free_antivirus_setup_online.exe
2019-08-10 11:12 - 2018-03-27 19:49 - 000000000 ____D C:\Users\Rolando\AppData\Local\AVG
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

4.- Luego de reiniciar:

Descarga Hard Disk Sentinel

  • Selecciona la versión portable.

  • Descomprime el zip a una carpeta o ubicación de fácil acceso (como por ejemplo el escritorio) y ejecútalo.
  • Adjunta en tu próxima respuesta una captura de pantalla, donde se aprecie la pantalla principal de este programa, es decir, abre el programa y captura la primera pantalla que te dé. No des clic en ninguna opción dentro de él.

Como subir imágenes al Foro?

Nos comentas .

Salu2.