Credenciales desconocidas

Hola,

Hace unos días abrí un hilo por una duda sobre certificados que me aparecían en Firefox. Seguí revisando partes de Windows relativas a seguridad y me encontré en las credenciales dos entradas un tanto extraña que no sé qué significan:

Credencial1

Credencial2

¿Alguna pista sobre esto? Llevo una temporada un poco alerta por la frecuencia con la que me aparecen banners un tanto “extraños”.

Gracias!

Hola @maiki_h

Si no reconoces esas paginas ni sus contraseñas (No te logueas en ellas) solo presiona en Quitar del Almacén.

Salu2

Hola @SanMar

Gracias! Como no se a qué páginas se refieren, al ser una especie de código, las he quitado como indicabas.

Los últimos hilos que he abierto con estas dudas venían todos originados por dudas con una serie de extraños banners que me aparecen recientemente, por lo que lo que te pregunto a continuación está en cierto modo relacionado, pero si crees que debería ir en un hilo nuevo, como consideréis oportuno.

He añadido la extensión ublock a Firefox y viendo el contenido que bloquea, aparte de ciertos scripts de diferentes orígenes de Google (Analytics, Tagservices, Adsense…) hay unas que aparecen como “s7.addthis. com /js…”. Alguna web lo identifica como virus/malware, ¿esto es así o puedo tener algo en el ordenador?

Hola @maiki_h

Debe ser asi.

Cuando tu vas a una pagina de Internet, no solo entras a esa pagina, sino a un montón de enlaces en la misma que dirigen a publicidades, sitios fraudulentos, script o incluso descarga directa de malwares. Todo ello con solo pinchar en una pagina.

Tu extensión, lo que hace es bloquear todo lo que tiene como malicioso en su base de datos, que por cierto para ello la has instalado.:+1:

Si no tienes mas dudas, nos comentas para cerrar el tema.

Salu2

1 me gusta

Gracias @SanMar!

Más o menos entiendo cómo funciona el proceso, sólo quería confirmar si los de “addthis” podrían ser especialmente peligrosos, ya que creo que se correspondían con esos banners “extraños” a los que me refería. Si no es así y todo entra dentro de lo normal, podemos cerrar el tema.

Hola @maiki_h

Para asegurarte controla el equipo y si los banners persisten nos dejas unos reportes:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan/Analizar y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 22-06-2020
Ejecutado por MIGUEL (administrador) sobre PC-MAIKI (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (23-06-2020 09:24:38)
Ejecutado desde C:\Users\MIGUEL\Desktop
Perfiles cargados: MIGUEL
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Inc.) C:\Program Files\Adobe\Adobe Illustrator CC 2014\Support Files\Contents\Windows\Illustrator.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files\Adobe\Adobe Photoshop CC 2014\Photoshop.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108136 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5641776 2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-06-16] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [AdobeBridge] => [X]
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-05-04] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [Archivo no firmado]
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {06DF1E32-E264-4BF6-830B-EDD6107D539D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {124F3E3C-6529-4B8B-BA91-8DDF973DF734} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2038144 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B8C8208-0693-4A8B-B99F-7D35D4700B86} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-27] (Google LLC -> Google LLC)
Task: {25091AA3-C7B0-4D20-A1E4-FEB1B100D1D1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {250AC71F-F6D0-4109-8FD9-508946608076} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {26C8D7A0-EF24-477F-99D3-8159A992D2ED} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. -> Adobe)
Task: {2B598629-5E70-4C9B-A1A1-88ABBF087F72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-27] (Google LLC -> Google LLC)
Task: {3901CB7D-F9B1-4325-A187-06D2C5C5CA69} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3314272 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
Task: {4675ADC1-1BB8-436E-8363-F9EFF173ABA9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {552F8F6D-B261-4743-978D-57283103DD73} - System32\Tasks\AdobeAAMUpdater-1.0-PC-MAIKI-MIGUEL => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {78047D76-84CD-4A77-915A-2889819BABF9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-03-07] (Avast Software s.r.o. -> Avast Software)
Task: {7A3C7D73-C423-454C-9005-62FA112535D8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {85DA4B71-8BC4-4D6A-9CEE-F588C8F4FD9F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
Task: {9C3DBD04-4234-4DBC-8CCF-7DA76189DB3B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C83D604C-D86B-4EA3-9012-15F113048D3B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D67C0E1E-5B95-459F-9025-7604FEFA5D22} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {E878AF80-D6EC-49B5-8C74-DE44E67A68E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F3EB4DE1-78D1-4FF3-9623-20A2B3251484} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{52F82FED-B934-4D96-B740-B9BD24E92833}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: uxh4ew0y.default
FF ProfilePath: C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default [2020-06-23]
FF Homepage: Mozilla\Firefox\Profiles\uxh4ew0y.default -> hxxps://www.google.es/
FF NewTab: Mozilla\Firefox\Profiles\uxh4ew0y.default -> about:newtab
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-05-01]
FF Extension: (uBlock Origin) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-06-22]
FF Extension: (Avast Online Security) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-06-18]
FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-01]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-05-03]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [Archivo no firmado]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6392728 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11111816 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-03] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-11] (Wacom Technology Corp. -> Wacom Technology, Corp.)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235088 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [506152 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462592 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322256 2020-06-16] (Avast Software s.r.o. -> AVAST Software)
S3 camfilt2; C:\Windows\System32\DRIVERS\camfilt2.sys [139264 2007-08-29] (Guillemot Corporation -> Guillemot Corporation)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [14016 2015-11-30] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [58280 2018-07-27] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-08] (Malwarebytes Inc -> Malwarebytes)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OM0530; C:\Windows\System32\Drivers\ov530vx.sys [172928 2007-07-13] (Guillemot Corporation -> OmniVision Technology Inc.)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2016-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37600 2016-02-08] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-23 09:24 - 2020-06-23 09:24 - 000029074 _____ C:\Users\MIGUEL\Desktop\FRST.txt
2020-06-23 09:24 - 2020-06-23 09:24 - 000000000 ____D C:\Users\MIGUEL\Desktop\FRST-OlderVersion
2020-06-23 09:24 - 2020-06-23 09:24 - 000000000 ____D C:\FRST
2020-06-23 08:30 - 2020-06-23 08:30 - 000000000 ___HD C:\adobeTemp
2020-06-22 11:34 - 2020-06-22 11:34 - 000000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2020.lnk
2020-06-22 11:15 - 2020-06-23 09:23 - 000000000 _____ C:\Users\MIGUEL\pslog.txt
2020-06-22 10:01 - 2020-06-22 10:01 - 000182099 _____ C:\Users\MIGUEL\Desktop\logos_Visionlab.pdf
2020-06-19 09:59 - 2020-06-19 10:00 - 000000000 ____D C:\Users\MIGUEL\Desktop\Banners
2020-06-18 14:05 - 2020-06-18 14:05 - 002643862 _____ C:\Users\MIGUEL\Downloads\mERCEDES.pdf
2020-06-18 13:36 - 2020-06-18 13:36 - 003518006 _____ C:\Users\MIGUEL\Downloads\ref_Brochure_13.pdf
2020-06-17 11:26 - 2020-06-17 11:26 - 002860032 _____ C:\Users\MIGUEL\Downloads\informe_anual.ppt
2020-06-16 15:44 - 2020-06-16 15:44 - 000001049 _____ C:\Users\MIGUEL\Desktop\Adobe Lightroom Classic.lnk
2020-06-16 15:44 - 2020-06-16 15:44 - 000001049 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk
2020-06-16 15:42 - 2020-06-16 15:42 - 000001028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-06-16 15:37 - 2020-06-16 15:37 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign 2020.lnk
2020-06-16 15:35 - 2020-06-16 15:35 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2020-06-16 12:24 - 2020-06-16 12:24 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-06-16 12:24 - 2020-06-16 12:24 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-06-16 12:24 - 2020-06-16 12:24 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-06-09 20:05 - 2020-06-09 20:05 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\OneDrive
2020-06-09 09:56 - 2020-06-09 09:56 - 000000000 ____D C:\Users\MIGUEL\Documents\Plantillas personalizadas de Office
2020-06-09 08:58 - 2020-06-18 11:26 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1072166131-4142068341-568118596-1000
2020-06-09 08:58 - 2020-06-09 20:05 - 000002201 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-06-09 08:58 - 2020-06-09 20:05 - 000000000 ___RD C:\Users\MIGUEL\OneDrive
2020-06-09 08:57 - 2020-06-09 08:57 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002329 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-09 08:56 - 2020-06-17 14:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-09 08:56 - 2020-06-09 08:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-06-09 08:47 - 2020-06-17 14:46 - 000000000 ____D C:\Program Files\Microsoft Office
2020-06-09 08:47 - 2020-06-09 08:47 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-06-09 08:38 - 2020-06-09 08:38 - 000000477 _____ C:\Users\MIGUEL\Desktop\office365.txt
2020-06-08 08:43 - 2020-06-08 12:53 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-06-05 08:48 - 2020-06-07 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-04 12:43 - 2020-06-04 12:43 - 000000000 ____D C:\Program Files (x86)\BookWright
2020-06-04 08:54 - 2020-06-05 08:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-05-28 17:01 - 2020-05-28 17:01 - 000032448 _____ C:\Users\MIGUEL\Downloads\Adjunto20200528044658611.pdf
2020-05-28 16:59 - 2020-05-28 16:59 - 000008854 _____ C:\Users\MIGUEL\Downloads\LU_GRVD197309490_C202000153796.zip
2020-05-27 10:28 - 2020-05-27 10:39 - 005622987 _____ C:\Users\MIGUEL\Desktop\Libro - 25 rutas de cicloturismo de alforjas por Asturias (Asturies ConBici).pdf
2020-05-26 22:26 - 2020-06-22 10:38 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-05-26 20:17 - 2020-06-12 19:43 - 000002477 _____ C:\Users\MIGUEL\Desktop\Illustrator CC 2020.lnk
2020-05-26 20:10 - 2020-06-04 17:00 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-05-26 20:10 - 2020-05-26 20:11 - 000002046 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-05-26 20:10 - 2020-05-26 20:10 - 000001640 _____ C:\Users\MIGUEL\Desktop\InDesign CC 2020.lnk
2020-05-26 20:10 - 2020-05-03 17:13 - 001034556 _____ C:\Windows\system32\Windows6.1-KB2999226-x64.msu
2020-05-26 20:09 - 2020-05-26 20:09 - 000001660 _____ C:\Users\MIGUEL\Desktop\Photoshop CC 2020.lnk

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-23 09:24 - 2020-05-03 18:37 - 002290176 _____ (Farbar) C:\Users\MIGUEL\Desktop\FRST64.exe
2020-06-23 09:23 - 2019-10-05 15:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-06-23 09:23 - 2019-10-05 15:53 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-06-23 09:22 - 2020-05-04 09:08 - 000000000 ____D C:\Users\MIGUEL\Desktop\Spyware
2020-06-23 08:49 - 2016-02-05 00:43 - 000000034 _____ C:\Users\MIGUEL\AppData\Roaming\AdobeWLCMCache.dat
2020-06-23 08:49 - 2016-02-03 01:12 - 000159336 _____ C:\Users\MIGUEL\AppData\Local\GDIPFONTCACHEV1.DAT
2020-06-23 08:42 - 2016-11-20 18:24 - 000000000 ____D C:\Users\MIGUEL\AppData\LocalLow\Mozilla
2020-06-23 08:38 - 2009-07-14 06:45 - 000022752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-23 08:38 - 2009-07-14 06:45 - 000022752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-23 08:33 - 2011-04-12 11:10 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2020-06-23 08:33 - 2011-04-12 11:10 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2020-06-23 08:33 - 2009-07-14 07:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-23 08:33 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-06-23 08:30 - 2018-11-23 22:08 - 000000000 ___RD C:\Users\MIGUEL\Creative Cloud Files
2020-06-23 08:30 - 2018-07-22 11:28 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\AVAST Software
2020-06-23 08:30 - 2016-02-03 01:12 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-23 08:29 - 2016-02-05 00:25 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\Adobe
2020-06-23 08:29 - 2016-02-03 01:32 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-23 08:29 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-23 08:29 - 2009-07-14 06:45 - 001112880 _____ C:\Windows\system32\FNTCACHE.DAT
2020-06-22 11:33 - 2016-02-05 00:28 - 000000000 ____D C:\Program Files\Adobe
2020-06-22 11:15 - 2016-02-03 00:38 - 000000000 ____D C:\Users\MIGUEL
2020-06-22 10:38 - 2016-02-03 01:43 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\Adobe
2020-06-18 11:55 - 2016-03-01 00:33 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\CrashDumps
2020-06-18 11:26 - 2020-05-03 18:40 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-18 11:26 - 2020-05-03 18:40 - 000002810 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-06-18 11:26 - 2020-03-27 14:39 - 000003536 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-06-18 11:26 - 2020-03-27 14:39 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-06-18 11:26 - 2020-02-01 00:42 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-06-18 11:26 - 2019-10-05 15:53 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-06-18 11:26 - 2018-03-14 22:55 - 000004494 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-18 11:26 - 2016-02-05 00:37 - 000003504 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-PC-MAIKI-MIGUEL
2020-06-18 11:26 - 2016-02-03 01:42 - 000004320 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-18 11:26 - 2016-02-03 01:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-17 14:47 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-06-16 15:35 - 2016-02-05 00:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-06-16 12:24 - 2020-04-06 16:11 - 000506152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-06-16 12:24 - 2019-01-14 22:43 - 000235088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-06-16 12:24 - 2019-01-05 15:56 - 000178768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-06-16 12:24 - 2019-01-05 15:56 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-06-16 12:24 - 2019-01-05 15:56 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-06-16 12:24 - 2018-10-19 20:09 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-06-16 12:24 - 2017-11-16 22:28 - 000205896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-06-16 12:24 - 2017-03-21 00:22 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-16 12:24 - 2016-02-03 01:13 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-06-16 12:24 - 2016-02-03 01:13 - 000462592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-06-16 12:24 - 2016-02-03 01:13 - 000322256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-06-16 12:24 - 2016-02-03 01:13 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-06-16 12:24 - 2016-02-03 01:13 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-06-15 12:57 - 2020-05-04 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-06-12 08:49 - 2020-03-11 17:07 - 000000000 ____D C:\Users\MIGUEL\Desktop\TEMP
2020-06-09 19:13 - 2016-02-03 01:42 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 19:13 - 2016-02-03 01:42 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 19:13 - 2016-02-03 01:42 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-09 19:13 - 2016-02-03 01:42 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-07 18:43 - 2016-02-03 01:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-04 12:51 - 2017-04-23 16:51 - 000000000 ____D C:\Users\MIGUEL\Documents\Blurb
2020-06-04 12:51 - 2017-04-23 16:51 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\Blurb
2020-06-03 08:31 - 2016-09-11 15:39 - 000000000 ____D C:\ProgramData\CanonIJPLM
2020-05-26 20:29 - 2020-04-14 11:55 - 000000000 ____D C:\Users\MIGUEL\aulavirtual
2020-05-26 20:11 - 2016-02-05 00:43 - 000000000 ____D C:\Users\MIGUEL\AppData\LocalLow\Adobe
2020-05-26 20:10 - 2016-02-05 00:36 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-05-26 20:10 - 2016-02-05 00:25 - 000000000 ____D C:\ProgramData\Adobe
2020-05-26 20:09 - 2016-02-05 00:45 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-05-24 12:35 - 2020-03-14 19:37 - 000000000 ____D C:\Users\MIGUEL\Desktop\MARTIN

==================== Archivos en la raíz de algunos directorios ========

2016-02-05 00:43 - 2020-06-23 08:49 - 000000034 _____ () C:\Users\MIGUEL\AppData\Roaming\AdobeWLCMCache.dat
2016-02-27 16:30 - 2016-04-10 00:30 - 000000138 _____ () C:\Users\MIGUEL\AppData\Roaming\WB.CFG
2016-02-05 00:57 - 2016-02-05 00:57 - 238720274 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload
2016-02-05 00:57 - 2016-02-05 00:57 - 000002741 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload.aamd
2016-11-09 19:17 - 2016-11-09 19:17 - 308516124 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload
2016-11-09 19:17 - 2016-11-09 19:17 - 000003455 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload.aamd
2016-11-29 00:21 - 2019-01-27 11:30 - 000001456 _____ () C:\Users\MIGUEL\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2020-04-06 18:01 - 2020-04-06 18:01 - 000328305 _____ () C:\Users\MIGUEL\AppData\Local\ars.cache
2020-04-06 18:01 - 2020-04-06 18:01 - 000947102 _____ () C:\Users\MIGUEL\AppData\Local\census.cache
2020-04-06 17:52 - 2020-04-06 17:52 - 000000036 _____ () C:\Users\MIGUEL\AppData\Local\housecall.guid.cache
2018-09-29 17:34 - 2018-09-29 17:34 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
2016-02-27 17:16 - 2016-02-27 17:19 - 000000600 _____ () C:\Users\MIGUEL\AppData\Local\PUTTY.RND
2020-05-03 21:54 - 2020-05-03 21:54 - 000007605 _____ () C:\Users\MIGUEL\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-06-16 14:22
==================== Final de FRST.txt ========================

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 22-06-2020
Ejecutado por MIGUEL (23-06-2020 09:25:06)
Ejecutado desde C:\Users\MIGUEL\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2016-02-02 22:38:26)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1072166131-4142068341-568118596-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1072166131-4142068341-568118596-1002 - Limited - Enabled)
Invitado (S-1-5-21-1072166131-4142068341-568118596-501 - Limited - Disabled)
MIGUEL (S-1-5-21-1072166131-4142068341-568118596-1000 - Administrator - Enabled) => C:\Users\MIGUEL

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_0) (Version: 15.0.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.118 - Adobe Systems Incorporated)
Adobe Bridge 2020 (HKLM-x32\...\KBRG_10_1) (Version: 10.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.9.0.504 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_2) (Version: 24.2 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_1) (Version: 15.1 - Adobe Systems Incorporated)
Adobe InDesign CC 2014 (HKLM-x32\...\{CCDCB9C4-72BA-1014-A3F8-D123F2F18BC2}) (Version: 10.2.0.069 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_3) (Version: 9.3 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_1_2) (Version: 12.1.2 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.6 64-bit (HKLM\...\{D19E99C2-6D9D-4075-B446-B4387EAF70A5}) (Version: 5.6.0 - Adobe Systems Incorporated)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtRage Lite (HKLM\...\{2EEE46F2-7258-4B4A-9EA9-84CE1D2AC45F}) (Version: 4.5.8 - Ambient Design) Hidden
ArtRage Lite (HKLM-x32\...\ArtRage Lite 4.5.8) (Version: 4.5.8 - Ambient Design)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.4.2410 - Avast Software)
Blurb Book Creator CC 2014 v2.8.0.9d20 (HKLM-x32\...\Blurb Template Creator CC 2014_is1) (Version:  - )
BookWright versión 1.3.6 (HKLM-x32\...\{C17978EB-5A2C-40E3-B351-F03A27245BF9}_is1) (Version: 1.3.6 - Blurb, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon iP7200 series On-screen Manual (HKLM-x32\...\Canon iP7200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version:  - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7041 - CDBurnerXP)
Check Point SBA (HKLM\...\{74935578-2963-4CC7-A8E6-FD56F04DF26E}) (Version: 86.6.1081 - Check Point Software Technologies Ltd.) Hidden
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
FileZilla Client 3.24.0 (HKLM-x32\...\FileZilla Client) (Version: 3.24.0 - Tim Kosse)
Google Earth Pro (HKLM\...\{B6EAFE41-5723-40EB-869B-4AF44CA17B35}) (Version: 7.3.3.7699 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
LEGO Digital Designer (HKLM-x32\...\New LEGO Digital Designer) (Version:  - LEGO A/S)
Macromedia Dreamweaver MX (HKLM-x32\...\{8B4AB829-DFD3-436D-B808-D9733D76C590}) (Version: 6.0 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12527.20720 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 77.0.1 (x64 es-ES)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.1.0 - Mozilla)
Mozilla Thunderbird 68.9.0 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 68.9.0 (x86 es-ES)) (Version: 68.9.0 - Mozilla)
NVIDIA Controlador de 3D Vision 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{EF451311-C2EC-4245-911F-4847C2294A82}) (Version: 4.13.9783 - Apache Software Foundation)
Panel de control de NVIDIA 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 355.82 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Registro de usuario de Canon iP7200 series (HKLM-x32\...\Registro de usuario de Canon iP7200 series) (Version:  - Canon Inc.‎)
Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
RoboMind version 7.0 (HKLM\...\RoboMind_is1) (Version:  - )
Scratch Desktop 3.6.0 (HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.6.0 - Scratch Foundation)
Skype versión 8.61 (HKLM-x32\...\Skype_is1) (Version: 8.61 - Skype Technologies S.A.)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1072166131-4142068341-568118596-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-16] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

2016-02-05 00:27 - 2016-02-05 00:27 - 000245760 _____ ( (Microsoft Corporation) [Archivo no firmado])  [El archivo está en uso ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
2020-05-04 02:13 - 2020-05-04 02:13 - 000010240 _____ () [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
2020-05-04 14:09 - 2020-06-09 15:53 - 001899520 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2020-05-04 14:09 - 2020-06-09 15:53 - 000115712 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2020-05-04 14:09 - 2020-06-09 15:53 - 006668800 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2020-05-04 02:13 - 2020-05-04 02:13 - 000021504 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2016-09-11 15:40 - 2012-03-28 19:00 - 000359936 _____ (CANON INC.) [Archivo no firmado] C:\Windows\System32\CNMN6PPM.DLL
2016-02-03 01:06 - 2015-06-15 10:00 - 000074752 ____R (Intel Corporation) [Archivo no firmado] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Hay 7940 más sitios.

IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123simsen.com -> www.123simsen.com

Hay 7940 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2020-05-04 16:46 - 2020-05-04 16:46 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{4359EA8A-264A-4098-ABA0-8D0D6C8C5305}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8318A8A8-2818-4516-9BD4-D687127A15F7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4A217667-BC13-46E3-B325-E07A7EDB6135}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDB8ED3B-B8BF-4EFF-97EE-3D51CBE87056}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{99841A7A-6751-4D71-BFAE-FFB07DC053EC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Puntos de Restauración =========================

22-06-2020 14:12:25 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Teclado PS/2 estándar
Description: Teclado PS/2 estándar
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Teclados estándar)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Mouse PS/2 de Microsoft
Description: Mouse PS/2 de Microsoft
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/23/2020 08:29:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/22/2020 08:36:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/19/2020 08:27:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/18/2020 11:55:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: InDesign.exe, versión: 15.1.0.25, marca de tiempo: 0x5ede80af
Nombre del módulo con errores: Public.dll, versión: 15.1.0.25, marca de tiempo: 0x5ede7f3f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000026456b
Id. del proceso con errores: 0x1ee8
Hora de inicio de la aplicación con errores: 0x01d645540e48a0ed
Ruta de acceso de la aplicación con errores: C:\Program Files\Adobe\Adobe InDesign 2020\InDesign.exe
Ruta de acceso del módulo con errores: C:\Program Files\Adobe\Adobe InDesign 2020\Public.dll
Id. del informe: d16a5a8d-b149-11ea-b15b-408d5c542155

Error: (06/18/2020 08:24:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/17/2020 02:47:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/17/2020 08:28:36 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/16/2020 08:51:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


Errores del sistema:
=============
Error: (06/23/2020 08:29:41 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/23/2020 08:29:40 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/22/2020 07:22:05 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/22/2020 06:18:13 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 20.

Error: (06/22/2020 08:37:04 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/22/2020 08:37:03 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/22/2020 08:36:55 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Enrutamiento y acceso remoto se cerró con el error específico de servicio El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.
.

Error: (06/22/2020 08:36:53 AM) (Source: RemoteAccess) (EventID: 20152) (User: )
Description: El proveedor de autenticación configurado actualmente no puede cargarse e inicializarse correctamente. El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.


CodeIntegrity:
===================================

Date: 2016-09-11 15:36:36.729
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-11 15:36:36.588
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-09 09:45:17.212
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-09 09:45:17.181
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 19:48:00.607
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 19:48:00.576
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 11:11:07.557
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 11:11:07.526
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. F5i 01/15/2016
Placa base: Gigabyte Technology Co., Ltd. Z170-HD3P-CF
Procesador: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Porcentaje de memoria en uso: 43%
RAM física total: 16333.63 MB
RAM física disponible: 9281.73 MB
Virtual total: 32665.41 MB
Virtual disponible: 24407.38 MB

==================== Unidades ================================

Drive c: (SSD 500GB) (Fixed) (Total:465.66 GB) (Free:331.37 GB) NTFS
Drive e: (SEAGATE 2TB) (Fixed) (Total:1863.02 GB) (Free:1749.74 GB) NTFS

\\?\Volume{8762aa44-c9fc-11e5-a132-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 906A83D9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final de Addition.txt =======================

Dejo pegados los reportes.

Una cosa que me pasó nada más desactivar el antivirus y ejecutar el FRST es que me saltó esta alerta del programa de correo:

Excepcion

También he notado que el icono de conexión de red unas veces está marcado con una cruz roja y otras no. Esta mañana había vuelto a tener la cruz, y tras pasar estas pruebas, ha vuelto a estar normal.

icono

Hola @maiki_h

El error de la imagen del correo, no tienes que autorizarlo.

FRST es un programa de analisis , por el momento no hecho nada con tu conexión.


Paso 1:

Desinstala tu antivirus Avast con su >>> Herramienta especifica, ya que es parte del problema.

NO instales ningún antivirus hasta que te lo diga, solo navega con precaución.

Paso 2:

Desinstala de tus navegadores toda extensión que este relacionada a Avast.

En Firefox:

Reinicias el equipo.

Paso 3:

Con mucha atención realiza lo siguiente:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga/Ejecuta DelFix desde el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

Luego ve a::

2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:

Start::
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-06-18]
2016-02-05 00:57 - 2016-02-05 00:57 - 238720274 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload
2016-02-05 00:57 - 2016-02-05 00:57 - 000002741 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload.aamd
2016-11-09 19:17 - 2016-11-09 19:17 - 308516124 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload
2016-11-09 19:17 - 2016-11-09 19:17 - 000003455 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload.aamd
2018-09-29 17:34 - 2018-09-29 17:34 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
  • Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.

3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.

  • Ejecute Frst.exe o Frst64.exe. según el caso.
  • Presione el botón Fix/Corregir y aguarde a que termine.
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
  • Reinicia y lo pega en su próxima respuesta.

Nos comentas…

Salu2

Gracias @SanMar! Voy a intentar seguir tus indicaciones lo antes posible.

Sólo un par de apuntes respecto al error del correo por si hay que tenerlo en cuenta:

  • el dominio que aparece es el de mi servidor de correo
  • el mensaje desapareció en cuanto volví a activar el antivirus, aunque no confirmé nada ¿se ha podido quedar guardada la excepción o debería revisarlo?

Pego el contenido del Fixlog.txt

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 22-06-2020
Ejecutado por MIGUEL (24-06-2020 08:41:30) Run:1
Ejecutado desde C:\Users\MIGUEL\Desktop
Perfiles cargados: MIGUEL
Modo de Inicio: Safe Mode (minimal)
==============================================

fixlist contenido:
*****************
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricci�n <==== ATENCI�N
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
CHR HKLM\SOFTWARE\Policies\Google: Restricci�n <==== ATENCI�N
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-50b319b8
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1072166131-4142068341-568118596-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-50b319b8&q={searchTerms}
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-05-01]
FF Extension: (Avast Online Security) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-06-18]
2016-02-05 00:57 - 2016-02-05 00:57 - 238720274 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload
2016-02-05 00:57 - 2016-02-05 00:57 - 000002741 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload.aamd
2016-11-09 19:17 - 2016-11-09 19:17 - 308516124 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload
2016-11-09 19:17 - 2016-11-09 19:17 - 000003455 _____ () C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload.aamd
2018-09-29 17:34 - 2018-09-29 17:34 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ning�n archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ning�n archivo
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:

*****************

Procesos cerrados correctamente.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => eliminado correctamente
HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => valor restaurado correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valor restaurado correctamente
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
"HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => eliminado correctamente
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
"C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected]" => no encontrado
"C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected]" => no encontrado
C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload => movido correctamente
C:\Users\MIGUEL\AppData\Local\ACCCx3_5_0_206.zip.aamdownload.aamd => movido correctamente
C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload => movido correctamente
C:\Users\MIGUEL\AppData\Local\ACCCx3_9_1_335.zip.aamdownload.aamd => movido correctamente
C:\Users\MIGUEL\AppData\Local\oobelibMkey.log => movido correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => eliminado correctamente
"BVTFilter" => eliminado correctamente
"BVTConsumer" => eliminado correctamente

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.



========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33342652 B
Java, Flash, Steam htmlcache => 1059 B
Windows/system/drivers => 4828658 B
Edge => 0 B
Chrome => 0 B
Firefox => 1094688716 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
MIGUEL => 444756510 B

RecycleBin => 0 B
EmptyTemp: => 1.5 GB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 08:41:43 ====

NOTA: Tras desinstalar Avast y seguir indicaciones ha vuelto a aparecer la ventana al abrir el correo y parece que no puedo actualizar correo sin confirmar.

Hola @SanMar

Como parece que nos movemos en franjas horarias diferentes, si no lo ves mal, te dejo aquí un resumen de todo lo que he ido viendo respecto a este tema para que cuando lo retomes puedas tener toda la información y evitar más intercambios de los necesarios:

  • Sobre la excepción del correo: Volvió a aparecer la ventana y contacté con la empresa de hosting. Proponen que configure el correo con otro servidor de su domino con SSL o que mantenga el que tengo con otros puertos que me indican y sin SSL. ¿La primera opción es más recomendable o hay diferencias notables entre una y otra opción en cuanto a seguridad?

  • Ahora tengo una notificación de que tengo Windows Defender desactivado. ¿Lo activo o se ha desactivado por las pruebas que estamos haciendo?

  • Si no voy a tener Avast, ¿hay alguna recomendación de antivirus que funcione bien, y si es posible, gratuito?

  • Cada cierto tiempo la publicidad que me aparece en la app YouTube del móvil también pasa de ser casi exclusivamente de TikTok o Facebook a anuncios más “raros” como comentaba de los banners del PC, incluso en la app de la TV se cuela de vez en cuando alguna recomendación también “extraña”. Tengo que borrar prácticamente toda la info de datos de la app y restablecer ID de publicidad de Google para recuperarlo ¿Puede tener algo que ver con lo que pasa en el PC? Tanto el móvil como la TV se conectan por Wifi.

  • Y por último, el motivo por el que abrí este tema, la credencial E97YiBb33i que “quité del almacén” vuelve a estar ahí.

Muchas gracias por la ayuda!

Si conoces que es el servidor de tu correo entonces deberías permitirlo, pense que era desconocido para ti.

Pues es lógico, si es el servidor de tu correo debes confirmarlo como te mencione.

Desconozco ese tema, no utilizo servidor de correo, pero lo que te recomiende tu proveedor sera lo mejor seguro.

Esto es seguramente por que quedaron restos de Avast, ya vamos por ello.

Cuando finalicemos, y NO antes te avisare para que pruebes Kaspersky FREE que es de lo mejorcito.

He estado viendo temas con publicidades extrañas de Youtube, y lo que lo soluciono es instalar la extension para Firefox >>> Ublock Origin o para Google >>> Ublock Origin

Prueba con el unos días y nos comentas como te va.

Tienes sincronizados tus dispositivos?

Ya veremos el tema de la credencial.


Como te comente seguramente quedaron restos de Avast y para eliminarlos correctamente vuelve a ejecutar FRST tal como lo hiciste la primera vez Post 6 y nos pegas sus nuevos reportes.

Salu2

FRST.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 24-06-2020
Ejecutado por MIGUEL (administrador) sobre PC-MAIKI (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (25-06-2020 07:56:51)
Ejecutado desde C:\Users\MIGUEL\Desktop
Perfiles cargados: MIGUEL
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <5>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5641776 2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-06] (Adobe Inc. -> )
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [679048 2020-06-17] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\Run: [AdobeBridge] => [X]
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-05-04] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [Archivo no firmado]
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {06DF1E32-E264-4BF6-830B-EDD6107D539D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {124F3E3C-6529-4B8B-BA91-8DDF973DF734} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2038144 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B8C8208-0693-4A8B-B99F-7D35D4700B86} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-27] (Google LLC -> Google LLC)
Task: {25091AA3-C7B0-4D20-A1E4-FEB1B100D1D1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {250AC71F-F6D0-4109-8FD9-508946608076} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {26C8D7A0-EF24-477F-99D3-8159A992D2ED} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. -> Adobe)
Task: {2B598629-5E70-4C9B-A1A1-88ABBF087F72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-27] (Google LLC -> Google LLC)
Task: {3901CB7D-F9B1-4325-A187-06D2C5C5CA69} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {4675ADC1-1BB8-436E-8363-F9EFF173ABA9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {552F8F6D-B261-4743-978D-57283103DD73} - System32\Tasks\AdobeAAMUpdater-1.0-PC-MAIKI-MIGUEL => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {78047D76-84CD-4A77-915A-2889819BABF9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {7A3C7D73-C423-454C-9005-62FA112535D8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {85DA4B71-8BC4-4D6A-9CEE-F588C8F4FD9F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
Task: {9C3DBD04-4234-4DBC-8CCF-7DA76189DB3B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C83D604C-D86B-4EA3-9012-15F113048D3B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D67C0E1E-5B95-459F-9025-7604FEFA5D22} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {E878AF80-D6EC-49B5-8C74-DE44E67A68E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F3EB4DE1-78D1-4FF3-9623-20A2B3251484} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{52F82FED-B934-4D96-B740-B9BD24E92833}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: uxh4ew0y.default
FF ProfilePath: C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default [2020-06-25]
FF Homepage: Mozilla\Firefox\Profiles\uxh4ew0y.default -> hxxps://www.google.es/
FF NewTab: Mozilla\Firefox\Profiles\uxh4ew0y.default -> about:newtab
FF Extension: (uBlock Origin) - C:\Users\MIGUEL\AppData\Roaming\Mozilla\Firefox\Profiles\uxh4ew0y.default\Extensions\[email protected] [2020-06-22]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-05-03]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [Archivo no firmado]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Archivo no firmado]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11111816 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-03] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-11] (Wacom Technology Corp. -> Wacom Technology, Corp.)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 camfilt2; C:\Windows\System32\DRIVERS\camfilt2.sys [139264 2007-08-29] (Guillemot Corporation -> Guillemot Corporation)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [14016 2015-11-30] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [58280 2018-07-27] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-06-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-24] (Malwarebytes Inc -> Malwarebytes)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OM0530; C:\Windows\System32\Drivers\ov530vx.sys [172928 2007-07-13] (Guillemot Corporation -> OmniVision Technology Inc.)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2016-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37600 2016-02-08] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-25 07:56 - 2020-06-25 07:57 - 000024621 _____ C:\Users\MIGUEL\Desktop\FRST.txt
2020-06-25 07:56 - 2020-06-25 07:56 - 000000000 ____D C:\Users\MIGUEL\Desktop\FRST-OlderVersion
2020-06-25 07:45 - 2020-06-25 07:45 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-06-24 08:40 - 2020-06-24 08:42 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-06-24 08:31 - 2020-06-24 08:41 - 000433728 _____ C:\Windows\ntbtlog.txt
2020-06-23 09:24 - 2020-06-25 07:57 - 000000000 ____D C:\FRST
2020-06-22 11:34 - 2020-06-22 11:34 - 000000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2020.lnk
2020-06-19 09:59 - 2020-06-19 10:00 - 000000000 ____D C:\Users\MIGUEL\Desktop\Banners
2020-06-18 14:05 - 2020-06-18 14:05 - 002643862 _____ C:\Users\MIGUEL\Downloads\mERCEDES.pdf
2020-06-18 13:36 - 2020-06-18 13:36 - 003518006 _____ C:\Users\MIGUEL\Downloads\ref_Brochure_13.pdf
2020-06-17 11:26 - 2020-06-17 11:26 - 002860032 _____ C:\Users\MIGUEL\Downloads\informe_anual.ppt
2020-06-16 15:44 - 2020-06-16 15:44 - 000001049 _____ C:\Users\MIGUEL\Desktop\Adobe Lightroom Classic.lnk
2020-06-16 15:44 - 2020-06-16 15:44 - 000001049 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk
2020-06-16 15:42 - 2020-06-16 15:42 - 000001028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-06-16 15:37 - 2020-06-16 15:37 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign 2020.lnk
2020-06-16 15:35 - 2020-06-16 15:35 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2020-06-09 20:05 - 2020-06-09 20:05 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\OneDrive
2020-06-09 09:56 - 2020-06-09 09:56 - 000000000 ____D C:\Users\MIGUEL\Documents\Plantillas personalizadas de Office
2020-06-09 08:58 - 2020-06-18 11:26 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1072166131-4142068341-568118596-1000
2020-06-09 08:58 - 2020-06-09 20:05 - 000002201 _____ C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-06-09 08:58 - 2020-06-09 20:05 - 000000000 ___RD C:\Users\MIGUEL\OneDrive
2020-06-09 08:57 - 2020-06-09 08:57 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000002329 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
2020-06-09 08:57 - 2020-06-09 08:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-09 08:56 - 2020-06-17 14:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-09 08:56 - 2020-06-09 08:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-06-09 08:47 - 2020-06-17 14:46 - 000000000 ____D C:\Program Files\Microsoft Office
2020-06-09 08:47 - 2020-06-09 08:47 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-06-09 08:38 - 2020-06-09 08:38 - 000000477 _____ C:\Users\MIGUEL\Desktop\office365.txt
2020-06-05 08:48 - 2020-06-07 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-04 12:43 - 2020-06-04 12:43 - 000000000 ____D C:\Program Files (x86)\BookWright
2020-06-04 08:54 - 2020-06-05 08:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-05-28 17:01 - 2020-05-28 17:01 - 000032448 _____ C:\Users\MIGUEL\Downloads\Adjunto20200528044658611.pdf
2020-05-28 16:59 - 2020-05-28 16:59 - 000008854 _____ C:\Users\MIGUEL\Downloads\LU_GRVD197309490_C202000153796.zip
2020-05-27 10:28 - 2020-05-27 10:39 - 005622987 _____ C:\Users\MIGUEL\Desktop\Libro - 25 rutas de cicloturismo de alforjas por Asturias (Asturies ConBici).pdf
2020-05-26 22:26 - 2020-06-24 08:44 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-05-26 20:17 - 2020-06-12 19:43 - 000002477 _____ C:\Users\MIGUEL\Desktop\Illustrator CC 2020.lnk
2020-05-26 20:10 - 2020-06-04 17:00 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-05-26 20:10 - 2020-05-26 20:11 - 000002046 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-05-26 20:10 - 2020-05-26 20:10 - 000001640 _____ C:\Users\MIGUEL\Desktop\InDesign CC 2020.lnk
2020-05-26 20:10 - 2020-05-03 17:13 - 001034556 _____ C:\Windows\system32\Windows6.1-KB2999226-x64.msu
2020-05-26 20:09 - 2020-05-26 20:09 - 000001660 _____ C:\Users\MIGUEL\Desktop\Photoshop CC 2020.lnk

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-25 07:56 - 2020-05-03 18:37 - 002290688 _____ (Farbar) C:\Users\MIGUEL\Desktop\FRST64.exe
2020-06-25 07:56 - 2020-05-02 17:24 - 000000000 ____D C:\Users\MIGUEL\Desktop\Malware
2020-06-25 07:53 - 2016-11-20 18:24 - 000000000 ____D C:\Users\MIGUEL\AppData\LocalLow\Mozilla
2020-06-25 07:53 - 2009-07-14 06:45 - 000022752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-25 07:53 - 2009-07-14 06:45 - 000022752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-25 07:49 - 2011-04-12 11:10 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2020-06-25 07:49 - 2011-04-12 11:10 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2020-06-25 07:49 - 2009-07-14 07:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-25 07:49 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-06-25 07:45 - 2018-11-23 22:08 - 000000000 ___RD C:\Users\MIGUEL\Creative Cloud Files
2020-06-25 07:45 - 2016-02-05 00:25 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\Adobe
2020-06-25 07:45 - 2016-02-03 01:32 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-25 07:45 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-25 07:45 - 2009-07-14 06:45 - 001121648 _____ C:\Windows\system32\FNTCACHE.DAT
2020-06-24 18:40 - 2016-02-03 00:38 - 000000000 ____D C:\Users\MIGUEL
2020-06-24 18:31 - 2020-03-11 17:07 - 000000000 ____D C:\Users\MIGUEL\Desktop\TEMP
2020-06-24 18:23 - 2016-02-03 01:12 - 000162568 _____ C:\Users\MIGUEL\AppData\Local\GDIPFONTCACHEV1.DAT
2020-06-24 11:07 - 2019-10-05 15:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-06-24 11:07 - 2019-10-05 15:53 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-06-24 09:08 - 2016-02-05 00:43 - 000000034 _____ C:\Users\MIGUEL\AppData\Roaming\AdobeWLCMCache.dat
2020-06-24 08:37 - 2020-05-04 16:40 - 000000262 _____ C:\DelFix.txt
2020-06-24 08:33 - 2016-02-03 01:12 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-24 08:11 - 2018-07-22 11:28 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\AVAST Software
2020-06-23 17:55 - 2016-09-11 15:39 - 000000000 ____D C:\ProgramData\CanonIJPLM
2020-06-22 11:33 - 2016-02-05 00:28 - 000000000 ____D C:\Program Files\Adobe
2020-06-22 10:38 - 2016-02-03 01:43 - 000000000 ____D C:\Users\MIGUEL\AppData\Roaming\Adobe
2020-06-18 11:55 - 2016-03-01 00:33 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\CrashDumps
2020-06-18 11:26 - 2020-05-03 18:40 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-18 11:26 - 2020-05-03 18:40 - 000002810 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-06-18 11:26 - 2020-03-27 14:39 - 000003536 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-06-18 11:26 - 2020-03-27 14:39 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-06-18 11:26 - 2020-02-01 00:42 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-06-18 11:26 - 2019-10-05 15:53 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-06-18 11:26 - 2018-03-14 22:55 - 000004494 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-18 11:26 - 2016-02-05 00:37 - 000003504 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-PC-MAIKI-MIGUEL
2020-06-18 11:26 - 2016-02-03 01:42 - 000004320 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-18 11:26 - 2016-02-03 01:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-17 14:47 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-06-16 15:35 - 2016-02-05 00:27 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-06-16 12:24 - 2017-03-21 00:22 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-15 12:57 - 2020-05-04 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-06-09 19:13 - 2016-02-03 01:42 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 19:13 - 2016-02-03 01:42 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 19:13 - 2016-02-03 01:42 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-09 19:13 - 2016-02-03 01:42 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-07 18:43 - 2016-02-03 01:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-04 12:51 - 2017-04-23 16:51 - 000000000 ____D C:\Users\MIGUEL\Documents\Blurb
2020-06-04 12:51 - 2017-04-23 16:51 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\Blurb
2020-05-26 20:29 - 2020-04-14 11:55 - 000000000 ____D C:\Users\MIGUEL\aulavirtual
2020-05-26 20:11 - 2016-02-05 00:43 - 000000000 ____D C:\Users\MIGUEL\AppData\LocalLow\Adobe
2020-05-26 20:10 - 2016-02-05 00:36 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-05-26 20:10 - 2016-02-05 00:25 - 000000000 ____D C:\ProgramData\Adobe
2020-05-26 20:09 - 2016-02-05 00:45 - 000000000 ____D C:\Program Files (x86)\Adobe

==================== Archivos en la raíz de algunos directorios ========

2016-02-05 00:43 - 2020-06-24 09:08 - 000000034 _____ () C:\Users\MIGUEL\AppData\Roaming\AdobeWLCMCache.dat
2016-02-27 16:30 - 2016-04-10 00:30 - 000000138 _____ () C:\Users\MIGUEL\AppData\Roaming\WB.CFG
2016-11-29 00:21 - 2019-01-27 11:30 - 000001456 _____ () C:\Users\MIGUEL\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2020-04-06 18:01 - 2020-04-06 18:01 - 000328305 _____ () C:\Users\MIGUEL\AppData\Local\ars.cache
2020-04-06 18:01 - 2020-04-06 18:01 - 000947102 _____ () C:\Users\MIGUEL\AppData\Local\census.cache
2020-04-06 17:52 - 2020-04-06 17:52 - 000000036 _____ () C:\Users\MIGUEL\AppData\Local\housecall.guid.cache
2020-06-24 08:44 - 2020-06-24 08:44 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
2016-02-27 17:16 - 2016-02-27 17:19 - 000000600 _____ () C:\Users\MIGUEL\AppData\Local\PUTTY.RND
2020-05-03 21:54 - 2020-05-03 21:54 - 000007605 _____ () C:\Users\MIGUEL\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-06-16 14:22
==================== Final de FRST.txt ========================

Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 24-06-2020
Ejecutado por MIGUEL (25-06-2020 07:57:15)
Ejecutado desde C:\Users\MIGUEL\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2016-02-02 22:38:26)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1072166131-4142068341-568118596-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1072166131-4142068341-568118596-1002 - Limited - Enabled)
Invitado (S-1-5-21-1072166131-4142068341-568118596-501 - Limited - Disabled)
MIGUEL (S-1-5-21-1072166131-4142068341-568118596-1000 - Administrator - Enabled) => C:\Users\MIGUEL

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_0) (Version: 15.0.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.118 - Adobe Systems Incorporated)
Adobe Bridge 2020 (HKLM-x32\...\KBRG_10_1) (Version: 10.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.9.0.504 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_2) (Version: 24.2 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_1) (Version: 15.1 - Adobe Systems Incorporated)
Adobe InDesign CC 2014 (HKLM-x32\...\{CCDCB9C4-72BA-1014-A3F8-D123F2F18BC2}) (Version: 10.2.0.069 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_3) (Version: 9.3 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_1_2) (Version: 12.1.2 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.6 64-bit (HKLM\...\{D19E99C2-6D9D-4075-B446-B4387EAF70A5}) (Version: 5.6.0 - Adobe Systems Incorporated)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtRage Lite (HKLM\...\{2EEE46F2-7258-4B4A-9EA9-84CE1D2AC45F}) (Version: 4.5.8 - Ambient Design) Hidden
ArtRage Lite (HKLM-x32\...\ArtRage Lite 4.5.8) (Version: 4.5.8 - Ambient Design)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Blurb Book Creator CC 2014 v2.8.0.9d20 (HKLM-x32\...\Blurb Template Creator CC 2014_is1) (Version:  - )
BookWright versión 1.3.6 (HKLM-x32\...\{C17978EB-5A2C-40E3-B351-F03A27245BF9}_is1) (Version: 1.3.6 - Blurb, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon iP7200 series On-screen Manual (HKLM-x32\...\Canon iP7200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version:  - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7041 - CDBurnerXP)
Check Point SBA (HKLM\...\{74935578-2963-4CC7-A8E6-FD56F04DF26E}) (Version: 86.6.1081 - Check Point Software Technologies Ltd.) Hidden
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
FileZilla Client 3.24.0 (HKLM-x32\...\FileZilla Client) (Version: 3.24.0 - Tim Kosse)
Google Earth Pro (HKLM\...\{B6EAFE41-5723-40EB-869B-4AF44CA17B35}) (Version: 7.3.3.7699 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
LEGO Digital Designer (HKLM-x32\...\New LEGO Digital Designer) (Version:  - LEGO A/S)
Macromedia Dreamweaver MX (HKLM-x32\...\{8B4AB829-DFD3-436D-B808-D9733D76C590}) (Version: 6.0 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12527.20720 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 77.0.1 (x64 es-ES)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.1.0 - Mozilla)
Mozilla Thunderbird 68.9.0 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 68.9.0 (x86 es-ES)) (Version: 68.9.0 - Mozilla)
NVIDIA Controlador de 3D Vision 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{EF451311-C2EC-4245-911F-4847C2294A82}) (Version: 4.13.9783 - Apache Software Foundation)
Panel de control de NVIDIA 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 355.82 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Registro de usuario de Canon iP7200 series (HKLM-x32\...\Registro de usuario de Canon iP7200 series) (Version:  - Canon Inc.‎)
Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
RoboMind version 7.0 (HKLM\...\RoboMind_is1) (Version:  - )
Scratch Desktop 3.6.0 (HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.6.0 - Scratch Foundation)
Skype versión 8.61 (HKLM-x32\...\Skype_is1) (Version: 8.61 - Skype Technologies S.A.)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1072166131-4142068341-568118596-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2016-02-05 00:27 - 2016-02-05 00:27 - 000245760 _____ ( (Microsoft Corporation) [Archivo no firmado])  [El archivo está en uso ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
2020-05-04 02:13 - 2020-05-04 02:13 - 000010240 _____ () [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
2016-09-11 15:40 - 2012-03-28 19:00 - 000359936 _____ (CANON INC.) [Archivo no firmado] C:\Windows\System32\CNMN6PPM.DLL
2016-02-03 01:06 - 2015-06-15 10:00 - 000074752 ____R (Intel Corporation) [Archivo no firmado] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Hay 7940 más sitios.

IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1072166131-4142068341-568118596-1000\...\123simsen.com -> www.123simsen.com

Hay 7940 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2020-05-04 16:46 - 2020-06-24 08:41 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-1072166131-4142068341-568118596-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MIGUEL\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{4359EA8A-264A-4098-ABA0-8D0D6C8C5305}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8318A8A8-2818-4516-9BD4-D687127A15F7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4A217667-BC13-46E3-B325-E07A7EDB6135}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDB8ED3B-B8BF-4EFF-97EE-3D51CBE87056}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{99841A7A-6751-4D71-BFAE-FFB07DC053EC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Puntos de Restauración =========================

22-06-2020 14:12:25 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Teclado PS/2 estándar
Description: Teclado PS/2 estándar
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Teclados estándar)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Mouse PS/2 de Microsoft
Description: Mouse PS/2 de Microsoft
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/24/2020 08:37:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/24/2020 08:11:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/23/2020 09:37:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/23/2020 08:29:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/22/2020 08:36:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/19/2020 08:27:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (06/18/2020 11:55:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: InDesign.exe, versión: 15.1.0.25, marca de tiempo: 0x5ede80af
Nombre del módulo con errores: Public.dll, versión: 15.1.0.25, marca de tiempo: 0x5ede7f3f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000026456b
Id. del proceso con errores: 0x1ee8
Hora de inicio de la aplicación con errores: 0x01d645540e48a0ed
Ruta de acceso de la aplicación con errores: C:\Program Files\Adobe\Adobe InDesign 2020\InDesign.exe
Ruta de acceso del módulo con errores: C:\Program Files\Adobe\Adobe InDesign 2020\Public.dll
Id. del informe: d16a5a8d-b149-11ea-b15b-408d5c542155

Error: (06/18/2020 08:24:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


Errores del sistema:
=============
Error: (06/25/2020 07:45:24 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/25/2020 07:45:24 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/25/2020 07:45:16 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Enrutamiento y acceso remoto se cerró con el error específico de servicio El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.
.

Error: (06/25/2020 07:45:14 AM) (Source: RemoteAccess) (EventID: 20152) (User: )
Description: El proveedor de autenticación configurado actualmente no puede cargarse e inicializarse correctamente. El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.

Error: (06/24/2020 08:42:23 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/24/2020 08:42:23 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (06/24/2020 08:42:14 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: El servicio Enrutamiento y acceso remoto se cerró con el error específico de servicio El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.
.

Error: (06/24/2020 08:42:12 AM) (Source: RemoteAccess) (EventID: 20152) (User: )
Description: El proveedor de autenticación configurado actualmente no puede cargarse e inicializarse correctamente. El nombre solicitado es válido pero no se encontraron datos del tipo solicitado.


CodeIntegrity:
===================================

Date: 2016-09-11 15:36:36.729
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-11 15:36:36.588
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-09 09:45:17.212
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-09 09:45:17.181
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 19:48:00.607
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 19:48:00.576
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 11:11:07.557
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 11:11:07.526
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. F5i 01/15/2016
Placa base: Gigabyte Technology Co., Ltd. Z170-HD3P-CF
Procesador: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Porcentaje de memoria en uso: 28%
RAM física total: 16333.63 MB
RAM física disponible: 11733.14 MB
Virtual total: 32665.41 MB
Virtual disponible: 27979.79 MB

==================== Unidades ================================

Drive c: (SSD 500GB) (Fixed) (Total:465.66 GB) (Free:331.68 GB) NTFS
Drive e: (SEAGATE 2TB) (Fixed) (Total:1863.02 GB) (Free:1755.36 GB) NTFS

\\?\Volume{8762aa44-c9fc-11e5-a132-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 906A83D9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final de Addition.txt =======================

Respecto a las preguntas:

Llevo unos días con Ublock instalado en Firefox, y de momento parece que muy bien, porque bloquea prácticamente todo. Aunque las peticiones siguen ahí, como la de Addthis que es la que me preocupaba más. Lo que te comentaba de los banners es directamente en la app móvil de YouTube, no mediante navegador, no sé si puede guardar relación con los posibles problemas del PC.

Creo que no, pero lo revisaré… No uso prácticamente nunca la cuenta de Google en el PC y está siempre con la sesión cerrada.

Hola @maiki_h

Con mucha atención sigue estos pasos nuevamente para eliminar todos los restos de avast:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga/Ejecuta DelFix desde el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

Luego ve a::

2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:

Start::
CloseProcesses:
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
Task: {410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {78047D76-84CD-4A77-915A-2889819BABF9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {F3EB4DE1-78D1-4FF3-9623-20A2B3251484} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
2020-06-24 08:33 - 2016-02-03 01:12 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-24 08:11 - 2018-07-22 11:28 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\AVAST Software
2020-06-18 11:26 - 2016-02-03 01:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-16 12:24 - 2017-03-21 00:22 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-24 08:44 - 2020-06-24 08:44 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
C:\Program Files\AVAST Software
C:\Program Files\Common Files\Avast Software

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End:
  • Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.

3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.

  • Ejecute Frst.exe o Frst64.exe. según el caso.
  • Presione el botón Fix/Corregir y aguarde a que termine.
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
  • Reinicia y lo pega en su próxima respuesta.

Nos comentas…

Salu2

Adjunto el reporte

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 24-06-2020
Ejecutado por MIGUEL (26-06-2020 08:49:29) Run:2
Ejecutado desde C:\Users\MIGUEL\Desktop
Perfiles cargados: MIGUEL
Modo de Inicio: Safe Mode (minimal)
==============================================

fixlist contenido:
*****************
Start::
CloseProcesses:
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
Task: {410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {78047D76-84CD-4A77-915A-2889819BABF9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {F3EB4DE1-78D1-4FF3-9623-20A2B3251484} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
2020-06-24 08:33 - 2016-02-03 01:12 - 000000000 ____D C:\ProgramData\AVAST Software
2020-06-24 08:11 - 2018-07-22 11:28 - 000000000 ____D C:\Users\MIGUEL\AppData\Local\AVAST Software
2020-06-18 11:26 - 2016-02-03 01:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-16 12:24 - 2017-03-21 00:22 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-24 08:44 - 2020-06-24 08:44 - 000000000 _____ () C:\Users\MIGUEL\AppData\Local\oobelibMkey.log
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ning�n archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ning�n archivo
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
C:\Program Files\AVAST Software
C:\Program Files\Common Files\Avast Software

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End:
*****************

Procesos cerrados correctamente.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AvastUI.exe" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{410262B2-E1F4-4F49-ACA1-BFADF3DCFEC9}" => eliminado correctamente
C:\Windows\System32\Tasks\Avast Emergency Update => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Emergency Update" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{78047D76-84CD-4A77-915A-2889819BABF9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78047D76-84CD-4A77-915A-2889819BABF9}" => eliminado correctamente
C:\Windows\System32\Tasks\Avast Software\Overseer => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{F3EB4DE1-78D1-4FF3-9623-20A2B3251484}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3EB4DE1-78D1-4FF3-9623-20A2B3251484}" => eliminado correctamente
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup" => eliminado correctamente
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valor restaurado correctamente
C:\ProgramData\AVAST Software => movido correctamente
C:\Users\MIGUEL\AppData\Local\AVAST Software => movido correctamente
C:\Windows\system32\Tasks\AVAST Software => movido correctamente
"C:\Windows\system32\Tasks\Avast Emergency Update" => no encontrado
C:\Users\MIGUEL\AppData\Local\oobelibMkey.log => movido correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => eliminado correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => eliminado correctamente
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => eliminado correctamente
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => eliminado correctamente
"C:\Program Files\AVAST Software" => no encontrado
"C:\Program Files\Common Files\Avast Software" => no encontrado

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.



========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-1072166131-4142068341-568118596-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14827525 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 647089 B
Edge => 0 B
Chrome => 0 B
Firefox => 1094386179 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
MIGUEL => 199476955 B

RecycleBin => 0 B
EmptyTemp: => 1.2 GB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 08:49:38 ====
  • Me sigue indicando que Windows Defender está desactivado.

Hola @maiki_h

Has intentado activarlo Manualmente?

Ve a Windows Update, busca actualizaciones, especialmente las relacionadas a Windows Defender y las instalas.

Ya que aunque Windows 7 ya no tiene soporte para Windows Defender cada tanto si salen actualizaciones.

O si el problema persiste Instalas directamente Kaspersky Free

Nos comentas como te va.

Salu2