Laptop demora en levantar y al navegar lento

Hola soy Angel, tengo un problema con mi laptop últimamente mi hermano transfirió archivos desde su celular a mi laptop y ahora demora bastante en iniciar al prenderlo, así como al ingreso al explorador de windows se congela , y al intentar navegar se pone super lento. He seguido los pasos de de la Guía de detección y eliminación de Malwares 2020 y todavia sigue igual. Espero su ayuda

equipo: lenovo Win7pc memoria: 4gb sistema operativo 32 bits windows 7

Hola adjunto el reporte

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 9/7/20
Hora del análisis: 18:14
Archivo de registro: f09e50ce-c239-11ea-b005-00090ffe0001.json

-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.976
Versión del paquete de actualización: 1.0.26625
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x86
Sistema de archivos: NTFS
Usuario: usuario-PC\usuario

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 192302
Amenazas detectadas: 252
Amenazas en cuarentena: 252
Tiempo transcurrido: 27 min, 14 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 86
PUP.Optional.PCSpeedMaximizer, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\PC Speed Maximizer_is1, En cuarentena, 1468, 241606, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TbCommonUtils.CommonUtils, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TbCommonUtils.CommonUtils.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TYPELIB\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{01221FCC-4BFB-461C-B08C-F6D2DF309921}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\ComObject.DeskbarEnabler, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\ComObject.DeskbarEnabler.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{58124A0B-DC32-4180-9BFF-E0E21AE34026}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.TBSB01620, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.TBSB01620.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{58124A0B-DC32-4180-9BFF-E0E21AE34026}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{58124A0B-DC32-4180-9BFF-E0E21AE34026}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TYPELIB\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{2A42D13C-D427-4787-821B-CF6973855778}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TBSB01620.IEToolbar, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TBSB01620.IEToolbar.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TBSB01620.TBSB01620, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TBSB01620.TBSB01620.3, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.ContextMenuNotifier, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.ContextMenuNotifier.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.CustomInternetSecurityImpl, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Toolbar3.CustomInternetSecurityImpl.1, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}\InprocServer32, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TYPELIB\{4509D3CC-B642-4745-B030-645B79522C6D}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\TYPELIB\{B87F8B63-7274-43FD-87FA-09D3B7496148}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{452AE416-9A97-44CA-93DA-D0F15C36254F}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{45CDA4F7-594C-49A0-AAD1-8224517FE979}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{81E852CC-1FD5-4004-8761-79A48B975E29}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{B9F43021-60D4-42A6-A065-9BA37F38AC47}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\INTERFACE\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\escort.escortIEPane, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\escort.escortIEPane.1, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}\InprocServer32, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{E87806B5-E908-45FD-AF5E-957D83E58E68}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\Softonic.SoftonicHlpr, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\Softonic.SoftonicHlpr.1, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{E87806B5-E908-45FD-AF5E-957D83E58E68}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{E87806B5-E908-45FD-AF5E-957D83E58E68}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}\InprocServer32, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\SoftonicApp.appCore, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\SoftonicApp.appCore.1, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}\InprocServer32, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\S, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}\InprocServer32, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\TYPELIB\{B15F118E-AF21-45E8-A809-29FDD7362565}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\APPID\{B15F118E-AF21-45E8-A809-29FDD7362565}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\Softonic.dskBnd, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\Softonic.dskBnd.1, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\CLASSES\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}\InprocServer32, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Softonic, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\elchiiiejkobdbblfejjkbphbddgmljf, En cuarentena, 1953, 330158, , , , 
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\CLASSES\APPID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, En cuarentena, 6025, 549624, , , , 
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, En cuarentena, 6025, 549624, 1.0.26625, , ame, 
PUP.Optional.SearchTheWeb, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchTheWebARP, En cuarentena, 6865, 469008, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}, En cuarentena, 84, 457407, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\Iminent, En cuarentena, 84, 239425, 1.0.26625, , ame, 
PUP.Optional.CouponBar, HKLM\SOFTWARE\CLASSES\APPID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}, En cuarentena, 2383, 167519, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}, En cuarentena, 84, 169753, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, En cuarentena, 84, 168097, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{68B81CCD-A80C-4060-8947-5AE69ED01199}, En cuarentena, 84, 168092, 1.0.26625, , ame, 

Valor del registro: 8
PUP.Optional.PCSpeedMaximizer, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SPMTray, En cuarentena, 1468, 241606, , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 181906, , , , 
PUP.Optional.Softonic, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{5018CFD2-804D-4C99-9F81-25EAEA2769DE}, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|elchiiiejkobdbblfejjkbphbddgmljf, En cuarentena, 1953, 330158, , , , 
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{628F3201-34D0-49C0-BB9A-82A26AEFB291}|APPNAME, En cuarentena, 6025, 549624, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}, En cuarentena, 84, 538246, 1.0.26625, , ame, 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 84, 538247, 1.0.26625, , ame, 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 27
PUP.Optional.ASK, C:\WINDOWS\TEMP\APNLOGS, En cuarentena, 282, 184754, 1.0.26625, , ame, 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\Datas\Raw\1, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\1, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\Datas\Raw, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\Datas, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\PROGRAMDATA\IMINENT, En cuarentena, 84, 177739, 1.0.26625, , ame, 
PUP.Optional.PCSpeedMaximizer, C:\PROGRAM FILES\PC SPEED MAXIMIZER, En cuarentena, 1468, 241606, 1.0.26625, , ame, 
PUP.Optional.Iminent, C:\Users\usuario\AppData\Roaming\Iminent\Mediator\Datas, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\Users\usuario\AppData\Roaming\Iminent\Mediator, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\USERS\USUARIO\APPDATA\ROAMING\IMINENT, En cuarentena, 84, 177739, 1.0.26625, , ame, 
PUP.Optional.Iminent, C:\Users\usuario\AppData\Local\Temp\Iminent\Log, En cuarentena, 84, 177753, , , , 
PUP.Optional.Iminent, C:\USERS\USUARIO\APPDATA\LOCAL\TEMP\IMINENT, En cuarentena, 84, 177753, 1.0.26625, , ame, 
PUP.Optional.PCSpeedMaximizer, C:\Users\usuario\AppData\Roaming\PC Speed Maximizer\Undo, En cuarentena, 1468, 178839, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Users\usuario\AppData\Roaming\PC Speed Maximizer\Log, En cuarentena, 1468, 178839, , , , 
PUP.Optional.PCSpeedMaximizer, C:\USERS\USUARIO\APPDATA\ROAMING\PC SPEED MAXIMIZER, En cuarentena, 1468, 178839, 1.0.26625, , ame, 
PUP.Optional.ASK.Gen, C:\WINDOWS\TEMP\APN-STUB, En cuarentena, 3644, 181296, 1.0.26625, , ame, 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\LOCALLOW\TOOLBAR4, En cuarentena, 6025, 549623, 1.0.26625, , ame, 
PUP.Optional.Iminent, C:\PROGRAM FILES\IMinent Toolbar, En cuarentena, 84, 181906, 1.0.26625, , ame, 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\bh, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\PROGRAM FILES\SOFTONIC\SOFTONIC, En cuarentena, 1953, 330154, 1.0.26625, , ame, 
PUP.Optional.Softonic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\ELCHIIIEJKOBDBBLFEJJKBPHBDDGMLJF, En cuarentena, 1953, 330158, 1.0.26625, , ame, 
PUP.Optional.PCSpeedMaximizer, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\PC SPEED MAXIMIZER, En cuarentena, 1468, 343976, 1.0.26625, , ame, 

Archivo: 131
PUP.Optional.ASK, C:\WINDOWS\TEMP\APNLOGS\ic.log, En cuarentena, 282, 184754, 1.0.26625, , ame, 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\Datas\Raw\1\IMBd223a50a-162b-4ed2-b6e6-84456c4d7176.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\1\IMB543f16ac-c881-43b0-96fc-99e5d92e5ef9.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\1\IMB9f5e1bcc-dad0-49fa-8541-2aaa9ac8b8eb.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB02e73808-9409-444e-9ddf-5bda42b3df66.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB0dbbc353-73d0-42b5-870d-42ad39f74cba.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB1536a2d9-e153-42af-bf09-30032ee51565.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB1ce020e1-47b5-41e4-8a17-e21d6f465227.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB21867dbb-a2ed-4e2a-a6e9-cdfed7d9bb95.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB28d6c1d3-c7af-4c06-805f-1adcfe07fbea.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB2a4dfc28-8055-4125-8363-74f13c8d6907.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB2dfced14-43ae-4595-9709-47ac86e5a068.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB32020c71-e6af-4f95-b17c-8d61b6cd23fb.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB3295ab8b-5153-44b1-92c3-e18285b50664.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB32d4f882-87ce-43a8-9f03-27311cf482b4.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB3425505d-2ace-4164-aa24-e490515e390c.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB366af0fc-ba67-4a5e-8bbd-b95f4d060de4.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB3830b66f-fe8b-4bec-8737-143510d95302.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB47fc785d-5b37-45c1-8a43-a14f2a7b4901.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB4cff16f8-5af5-4182-b44f-ac1aa42a44d2.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB53c2e897-5a2e-4b0f-999a-0135a8fad8c2.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB543f16ac-c881-43b0-96fc-99e5d92e5ef9.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB5541ca67-da1e-4ef1-a6dd-46663c5e23bc.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB55e75bca-7bed-45e2-9492-215ae422b97f.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB58098fe0-c347-4a6a-be97-3b34bef236bd.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB5d29edfd-0647-4aee-a6b4-462cc26aea45.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB656b52d6-a299-40d5-9f4c-76f274d82052.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB6ebff618-071f-4f30-bb49-9aef1d1cf46c.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB7275d8d4-5790-404f-a674-b7dddf282686.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB75b34ed2-d9d2-4ccb-8a40-1696250eef2e.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB76a63387-9beb-4987-98cc-6b0265867837.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB76eb31bc-643e-4df7-98f9-88f63d2fd10b.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB7a11b09f-bcca-43ed-ac86-7ab01cf18f99.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB7abc815b-df78-4fc1-87e0-634e87fabe7e.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB87a0a9ff-452c-4920-9385-fd7135e620a5.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB8d7d5e8f-c971-458d-bf37-6ec31f5d59e5.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB8f80008a-9473-4956-a649-24336836f7bf.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB8fab83ac-7653-4fbd-a39a-bc4e6f4d3b23.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB918c3720-7692-45d4-8ee9-758347456bd3.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB93378efb-2e31-4c70-b711-accf185e8bde.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB980239b2-bfe1-4e46-a7b7-02310b137de5.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB980b2e57-cb6b-44ee-bc3f-7e63d9813329.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB98bf00bc-55ed-42bd-98ad-773e5cd64975.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB9aa461c8-f428-4023-aac4-13b0dd374f94.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB9b55ee87-a847-4d2c-b233-7b7b73f87593.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB9c260afe-d8da-4d0e-b327-5caf9f4c0847.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMB9f5e1bcc-dad0-49fa-8541-2aaa9ac8b8eb.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBa0e65ddc-4469-441b-ad9f-810e2025ca1b.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBa75b6881-b402-4f1c-a43f-4a1e6a10bd4e.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBa7d418a7-f4f1-40ea-91e8-07d116b94005.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBa9578bbd-be9c-46d1-8ba3-459081255399.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBad229411-80de-4297-aa07-5ab85754a65b.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBb84cc47e-7f5f-4a60-be90-6927c4e97065.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBba74aae6-c9d1-4005-b60d-7b00aa47e15a.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBc03510d1-0cfd-4b44-9e50-2ea095f74f53.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBc258bd19-8c3b-4b14-b61f-51b5de34abbc.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBc5fe0dc3-26f8-42ff-a7ea-b0e0f2d6b6c9.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBc66f0728-cbef-41b0-8550-53cd1f1c60b2.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBcb849dcd-44fb-41f6-ac8c-eb0815072372.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBcdb39fb0-3c8f-4dfd-aa61-211730a6d901.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBcebf1859-73d0-4e59-8ebf-89db111eb194.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBd04d8298-3de7-4c1d-80ab-4b6331bdd387.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBd46af5d0-6164-4ed9-a1f0-468db98a0582.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBd50cf135-579a-431f-835d-68174de93b01.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBd92dc5e0-444f-4b3b-9f04-af2fd3ea04b8.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBe1ecb990-ac07-4c23-ba35-926ef5d49e99.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBe64da643-af90-489c-89f3-04b018c189df.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBe6551a6e-8d3d-459e-821f-41cafb29dfd2.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBf11e728e-4c9a-4d39-9bd6-c2a598fcc9b3.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBf49f1dd9-b57d-46f5-9375-f9ac93904929.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBf676dbe0-46dc-4b94-80fc-11357685063e.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\ProgramData\Iminent\Mediator\RawFiles\2\IMBfe719f72-b1d8-4c78-b628-3ad08d1f22e7.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.PCSpeedMaximizer, C:\PROGRAM FILES\PC SPEED MAXIMIZER\UNINS000.DAT, En cuarentena, 1468, 241606, 1.0.26625, , ame, 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\file_id.diz, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\HomePage_AQES.url, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.chm, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\ProgressBar.avi, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\Spanish.ini, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\SPMSchedule.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\SPMStarter.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\SPMTray.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\unins000.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.PCSpeedMaximizer, C:\Program Files\PC Speed Maximizer\Uninst.exe, En cuarentena, 1468, 241606, , , , 
PUP.Optional.Iminent, C:\Users\usuario\AppData\Roaming\Iminent\Mediator\Datas\globalcache.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Iminent, C:\Users\usuario\AppData\Roaming\Iminent\Mediator\Datas\user.dat, En cuarentena, 84, 177739, , , , 
PUP.Optional.Softonic, C:\USERS\USUARIO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\KHTGC91X.DEFAULT\SEARCHPLUGINS\SOFTONIC.XML, En cuarentena, 1953, 309188, 1.0.26625, , ame, 
PUP.Optional.ASK.Gen, C:\Windows\Temp\APN-Stub\Stb24b614c2-24ba-4cca-8d41-ba51458b7535.log, En cuarentena, 3644, 181296, , , , 
PUP.Optional.ASK.Gen, C:\Windows\Temp\APN-Stub\Stbf36da205-763c-4df0-9f05-37a295fa2d39.log, En cuarentena, 3644, 181296, , , , 
PUP.Optional.Toolbar.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\LOCALLOW\TOOLBAR4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\arrow_refresh.png, En cuarentena, 6025, 549623, 1.0.26625, , ame, 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\basis.xml, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\cog.png, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\computer_delete.png, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\icons.bmp, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\IMinent_Toolbar.crc, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\info.txt, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\TbHelper2.exe, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\uninstall.exe, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\update.exe, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Toolbar.Generic, C:\Windows\System32\config\systemprofile\AppData\LocalLow\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\version.txt, En cuarentena, 6025, 549623, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\arrow_refresh.png, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\basis.xml, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\cog.png, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\computer_delete.png, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\icons.bmp, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\IMinent_Toolbar.crc, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\IMinent_Toolbar.dll, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\info.txt, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\TbCommonUtils.dll, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\tbcore3.dll, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\tbhelper.dll, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\TbHelper2.exe, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\uninstall.exe, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\update.exe, En cuarentena, 84, 181906, , , , 
PUP.Optional.Iminent, C:\Program Files\IMinent Toolbar\version.txt, En cuarentena, 84, 181906, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\bh\Softonic.dll, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\escortShld.dll, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\softonic.crx, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\SoftonicApp.dll, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\SoftonicEng.dll, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\Softonicsrv.exe, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\SoftonicTlbr.dll, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\Program Files\Softonic\Softonic\1.8.8.11\uninstall.exe, En cuarentena, 1953, 330154, , , , 
PUP.Optional.Softonic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, 1953, 330158, , , , 
PUP.Optional.Softonic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, 1953, 330158, , , , 
PUP.Optional.PCSpeedMaximizer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer\Ayuda.lnk, En cuarentena, 1468, 343976, , , , 
PUP.Optional.PCSpeedMaximizer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer\Desinstalar PC Speed Maximizer.lnk, En cuarentena, 1468, 343976, , , , 
PUP.Optional.PCSpeedMaximizer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer\PC Speed Maximizer en la Web.lnk, En cuarentena, 1468, 343976, , , , 
PUP.Optional.PCSpeedMaximizer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer\PC Speed Maximizer.lnk, En cuarentena, 1468, 343976, , , , 
Trojan.MalPack, C:\USERS\USUARIO\APPDATA\LOCAL\TEMP\LOW\WCZO2.VIR, En cuarentena, 558, 838336, 1.0.26625, , ame, 
PUP.Optional.APNToolBar, C:\WINDOWS\TEMP\AVNWLDRTEMP\SETUP\OFFERCAST_AVIRAV7_.EXE, En cuarentena, 663, 76243, 1.0.26625, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Hola @Angel99

[email protected] al Foro!!!

Se ven varios Adwares en tu equipo, para desinfectarlo correctamente realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
  • Cuando lo instales destilda las casillas para no permitir la instalación de Ccleaner Browser/Avast Browser o similar…
  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes Versión 4

  • Lo ejecutas siguiendo los pasos de su Manual.
  • Realizas un Análisis Personalizado
  • Revisa especialmente como salvar el reporte.

4.- Luego de finalizar todo lo anterior y reiniciar vuelve a desactiva temporalmente tu antivirus y cualquier programa de seguridad.

5.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan/Analizar y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio, debes adjuntar ambos

Guía: Como Ejecutar FRST

6.- En tu próxima respuesta, pegas todos los reportes generados, si no entran en un Post, revisa el Método 4 de la Guía o utilizas mas mensajes.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Hola SanMar, gracias por la respuesta, ha mejorado un poco aunque demora en encender y arrancar el inicio del windows. Aquí están los reportes

AdwCleaner generó dos reportes

# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build:    06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    07-11-2020
# Duration: 00:00:06
# OS:       Windows 7 Starter
# Scanned:  31836
# Detected: 134


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

Adware.LoadMoney                C:\ProgramData\Partner
PUP.Optional.Legacy             C:\Program Files\Toolbar Cleaner
PUP.Optional.Legacy             C:\ProgramData\InstallBrainService
PUP.Optional.Legacy             C:\Users\usuario\AppData\LocalLow\Toolbar4
PUP.Optional.Legacy             C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eType
PUP.Optional.Legacy             C:\Users\usuario\AppData\Roaming\eType
PUP.Optional.PCPerformer        C:\Users\usuario\AppData\Roaming\Performersoft
PUP.Optional.SofTonicAssistant  C:\Program Files\Softonic
PUP.Optional.SofTonicAssistant  C:\Users\usuario\AppData\LocalLow\Softonic
PUP.Optional.SofTonicAssistant  C:\Users\usuario\AppData\Roaming\Softonic

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escort.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\esrv.EXE
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Internet Explorer\Toolbar|{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3038A20B9089EC34D8F74220191FAB30
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
PUP.Optional.Legacy             HKU\.DEFAULT\Software\AppDataLow\Software\adawarebp
PUP.Optional.Legacy             HKU\S-1-5-18\Software\AppDataLow\Software\adawarebp
PUP.Optional.PCSpeedMaximizer   HKCU\Software\PC Speed Maximizer
PUP.Optional.SofTonicAssistant  HKCU\Software\Softonic
PUP.Optional.SofTonicAssistant  HKLM\Software\Classes\Srv.SoftonicSrvc
PUP.Optional.SofTonicAssistant  HKLM\Software\Softonic
PUP.Optional.SweetIM            HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.HPMediaSmart   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} 
Preinstalled.HPMediaSmart   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D} 
Preinstalled.LenovoEasyCamera   Folder   C:\Program Files\USB CAMERA 
Preinstalled.LenovoEasyCamera   Folder   C:\Program Files\VIMICRO\LENOVO EASYCAMERA 
Preinstalled.LenovoEasyCamera   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|331BigDog 
Preinstalled.LenovoEasyCamera   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332} 
Preinstalled.LenovoEnergyManagement   Folder   C:\Program Files\LENOVO\ENERGY MANAGEMENT 
Preinstalled.LenovoEnergyManagement   Folder   C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\ENERGY MANAGEMENT 
Preinstalled.LenovoEnergyManagement   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Energy Management 
Preinstalled.LenovoEnergyManagement   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|EnergyUtility 
Preinstalled.LenovoEnergyManagement   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB} 
Preinstalled.LenovoEnergyManagement   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0956C11-0F60-43FE-99AD-524E833471BB} 
Preinstalled.LenovoPower2Go   File   C:\Users\usuario\Desktop\CyberLink Power2Go.lnk 
Preinstalled.LenovoPower2Go   Folder   C:\Program Files\LENOVO\POWER2GO 
Preinstalled.LenovoPower2Go   Folder   C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\POWER2GO 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{40BF1E83-20EB-11D8-97C5-0009C5020658} 
Preinstalled.LenovoPowerDVD   File   C:\Users\Public\Desktop\Lenovo PowerDVD 10.lnk 
Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|RemoteControl10 
Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 
Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 
Preinstalled.LenovoYouCam   File   C:\Users\Public\Desktop\CyberLink YouCam.lnk 
Preinstalled.LenovoYouCam   Folder   C:\Program Files\LENOVO\YOUCAM 
Preinstalled.LenovoYouCam   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\YOUCAM 



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build:    06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    07-11-2020
# Duration: 00:00:01
# OS:       Windows 7 Starter
# Cleaned:  111
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files\Softonic
Deleted       C:\Program Files\Toolbar Cleaner
Deleted       C:\ProgramData\InstallBrainService
Deleted       C:\ProgramData\Partner
Deleted       C:\Users\usuario\AppData\LocalLow\Softonic
Deleted       C:\Users\usuario\AppData\LocalLow\Toolbar4
Deleted       C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eType
Deleted       C:\Users\usuario\AppData\Roaming\Performersoft
Deleted       C:\Users\usuario\AppData\Roaming\Softonic
Deleted       C:\Users\usuario\AppData\Roaming\eType

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\PC Speed Maximizer
Deleted       HKCU\Software\Softonic
Deleted       HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Deleted       HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\escort.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Deleted       HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Deleted       HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Deleted       HKLM\Software\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Deleted       HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Deleted       HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Deleted       HKLM\Software\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Deleted       HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
Deleted       HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
Deleted       HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Deleted       HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Deleted       HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Deleted       HKLM\Software\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Deleted       HKLM\Software\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Deleted       HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Deleted       HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Deleted       HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Deleted       HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Deleted       HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Deleted       HKLM\Software\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Deleted       HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Deleted       HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Deleted       HKLM\Software\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Deleted       HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Deleted       HKLM\Software\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Deleted       HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Deleted       HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Deleted       HKLM\Software\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Deleted       HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Deleted       HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Deleted       HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Deleted       HKLM\Software\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Deleted       HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Deleted       HKLM\Software\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Deleted       HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Deleted       HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Deleted       HKLM\Software\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Deleted       HKLM\Software\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Deleted       HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Deleted       HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Deleted       HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Deleted       HKLM\Software\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Deleted       HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Deleted       HKLM\Software\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
Deleted       HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Deleted       HKLM\Software\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Deleted       HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Deleted       HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Deleted       HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Deleted       HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Deleted       HKLM\Software\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Deleted       HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Deleted       HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Deleted       HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Deleted       HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Deleted       HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Deleted       HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Deleted       HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Deleted       HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Deleted       HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Deleted       HKLM\Software\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Deleted       HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Deleted       HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Deleted       HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Deleted       HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Deleted       HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Deleted       HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Deleted       HKLM\Software\Classes\Srv.SoftonicSrvc
Deleted       HKLM\Software\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Deleted       HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Deleted       HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Deleted       HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Deleted       HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Deleted       HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook
Deleted       HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Deleted       HKLM\Software\Microsoft\Internet Explorer\Toolbar|{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3038A20B9089EC34D8F74220191FAB30
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Deleted       HKLM\Software\Softonic
Deleted       HKU\.DEFAULT\Software\AppDataLow\Software\adawarebp
Deleted       HKU\S-1-5-18\Software\AppDataLow\Software\adawarebp

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [15409 octets] - [11/07/2020 13:05:33]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

ZHPCleaner

~ ZHPCleaner v2020.7.9.211 by Nicolas Coolman (2020/07/09)
~ Run by usuario (Administrator)  (11/07/2020 13:52:05)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Reparar
~ Report : C:\Users\usuario\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\usuario\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : 
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Starter, 32-bit Service Pack 1 (Build 7601)


---\\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Navegadores de Internet (20)
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.admin", false);  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.aflt", "SD");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.autoRvrt", "false");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.dfltLng", "es");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.excTlbr", false);  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.id", "f2ea270d0000000000009cb70d766a98");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.instlDay", "15739");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.instlRef", "INF00190");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.prdct", "Softonic");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.prtnrId", "softonic");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.rvrt", "true");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.tlbrId", "BASEirobinhoodActive");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.tlbrSrchUrl", "http://search.softonic.com/INF00190/tb_v1?SearchSource[...]  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.vrsn", "1.8.8.11");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic.vrsni", "1.8.8.11");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic_i.excTlbr", false);  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic_i.newTab", false);  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic_i.smplGrp", "none");  =>SUP.Optional.Softonic
BORRADOS: [khtgc91x.default] - user_pref("extensions.Softonic_i.vrsnTs", "1.8.8.112:18:16");  =>SUP.Optional.Softonic


---\\  Hosts carpeta (1)
~ El archivo hosts es legítimo (21)


---\\  Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Explorador ( Archivos, Carpetas ) (2)
MOVIDO carpeta: C:\Windows\Prefetch\ADAWAREBP.EXE-1FD58338.pf    =>.SUP.ToolbarCleaner
MOVIDO archivo: C:\Users\usuario\AppData\Local\adawarebp  =>.SUP.ToolbarCleaner


---\\  Registro ( Claves, Valores, Datos) (17)
BORRADOS clave*: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-4108848017-975247746-215137932-1000\Software\Iminent [AdditionalScan 247]  =>PUP.Optional.IMBooster
BORRADOS clave*: HKLM\SOFTWARE\Classes\protector_dll.protectorbho [Google Toolbar Notifier BHO]  =>Adware.BProtector
BORRADOS clave*: HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 [Google Toolbar Notifier BHO]  =>Adware.BProtector
BORRADOS clave*: HKLM\SOFTWARE\Classes\urlsearchhook.toolbarurlsearchhook.1 [ToolbarURLSearchHook Class]  =>PUP.Optional.Softomate
BORRADOS clave*: HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
BORRADOS clave*: HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1 [escrtSrvc Object]  =>SUP.Optional.Softonic
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager [TbDownloadManager Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1 [TbDownloadManager Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager [TbPropertyManager Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1 [TbPropertyManager Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbRequest [TbRequest Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1 [TbRequest Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbTask [TbTask Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.TbTask.1 [TbTask Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper [ToolbarHelper Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1 [ToolbarHelper Class]  =>SUP.Optional.Conduit
BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ba20b5da-0f48-40c5-b8c9-2cda4ecf75c2} [C:\Program Files\Toolbar Cleaner (Not File)]  =>.SUP.ToolbarCleaner


---\\  Resumen de elementos en su estación de trabajo (7)
https://nicolascoolman.eu/forum/Topic/softonic-logiciel-potentiellement-superflu-lps/  =>SUP.Optional.Softonic
https://nicolascoolman.eu/forum/Topic/toolbarcleaner-logiciel-potentiellement-superflu-lps/  =>.SUP.ToolbarCleaner
https://nicolascoolman.eu/2017/09/08/adware-imbooster/  =>PUP.Optional.IMBooster
https://nicolascoolman.eu/2017/04/12/adware-bprotector/  =>Adware.BProtector
https://nicolascoolman.eu/forum/Topic/softomate-logiciel-potentiellement-indesirable-pup-lpi/  =>PUP.Optional.Softomate
https://nicolascoolman.eu/2017/02/28/toolbar-ask/  =>Toolbar.Ask
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/  =>SUP.Optional.Conduit


---\\ Limpieza adicional. (13)
~ Clave de registro Tracing borrados (13)
~ Quitar los antiguos informes de ZHPCleaner. (0)


---\\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ Google Chrome OK
~ Mozilla Firefox OK
~ Internet Explorer OK
~ Opera OK


---\\ STATISTIQUES
~ Items escaneado : 2904
~ Items encontrado : 0
~ artículos cancelados : 0
~ Ahorro de espacio (bytes) : 0
~ Items opciones : 8/15


---\\ OPCIONES NO ACTIVAS
~ Análisis temporal de archivos
~ Análisis temporal de carpetas
~ Análisis de CLSID de carpetas vacías
~ Vaciar otro análisis de carpetas
~ Análisis de carpetas locales vacías
~ Análisis de carpetas locales vacías
~ Análisis de archivos de instalación obsoleto





~ End of clean in 00h00mn54s

---\\  Reporte (2)
ZHPCleaner-[S]-11072020-13_47_02.txt
ZHPCleaner-[R]-11072020-13_52_59.txt

Malwarebytes Versión 4

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 11/7/20
Hora del análisis: 14:01
Archivo de registro: f4ca615e-c3a8-11ea-b29d-00090ffe0001.json

-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.976
Versión del paquete de actualización: 1.0.26707
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x86
Sistema de archivos: NTFS
Usuario: usuario-PC\usuario

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 220067
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 3 hr, 10 min, 44 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

continuación

Farbar Recovery Scan Tool

FRST

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 08-07-2020
Ejecutado por usuario (administrador) sobre USUARIO-PC (LENOVO 20078) (11-07-2020 19:36:40)
Ejecutado desde C:\Users\usuario\Downloads
Perfiles cargados: usuario
Platform: Microsoft Windows 7 Starter  Service Pack 1 (X86) Idioma: Español (España, internacional)
Internet Explorer Versión 9 (Navegador predeterminado: IE)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe
(CyberLink -> CyberLink Corp.) C:\Program Files\Lenovo\PowerDVD10\PDVD10Serv.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Update\GoogleUpdate.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett Packard -> Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(HUAWEI Technologies Co., Ltd. -> ) C:\ProgramData\DatacardService\HWDeviceService.exe
(HUAWEI Technologies Co., Ltd. -> ) C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe
(HUAWEI Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo\VeriFace\PManage.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files\USB Camera\VM331_STI.EXE
(Oracle America, Inc. -> Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(RGE) [Archivo no firmado] C:\Program Files\StarterBackgroundChanger\StarterBackgroundChangerTask.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2229544 2011-04-07] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [331BigDog] => C:\Program Files\USB Camera\VM331_STI.EXE [548864 2011-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM\...\Run: [RemoteControl10] => C:\Program Files\Lenovo\PowerDVD10\PDVD10Serv.exe [87336 2010-02-02] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [VeriFaceManager] => C:\Program Files\Lenovo\VeriFace\PManage.exe [329056 2012-02-19] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files\Lenovo\Boot Optimizer\PopWnd.exe [114688 2012-02-19] (Lenovo) [Archivo no firmado]
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [8951744 2011-01-06] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\Utility.exe [5646272 2011-01-06] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [StarterBackgroundChanger] => C:\Program Files\StarterBackgroundChanger\StarterBackgroundChangerTask.exe [286208 2011-01-16] (RGE) [Archivo no firmado]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [] => [X]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Policies\system: [shell] explorer.exe <==== ATENCIÓN
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {71094287-d6be-11e1-9c58-9cb70d766a98} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a47-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a53-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpfpp70v: C:\Windows\System32\spool\prtprocs\W32X86\hpfpp70v.dll [312832 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l70v.dll: C:\windows\system32\hpf3l70v.dll [123904 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-24] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{7C2CDE72-05FD-4829-980A-EFBAD05B7697}] -> C:\windows\system32\ImageReog.dll [2012-02-19] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\Software\...\Authentication\Credential Providers: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2012-10-21]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2013-02-13]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {1C67E548-6A3D-410D-88B4-11DD003BFF42} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {23EDD0ED-BA32-4D6B-B464-DBCBDDE66755} - \User_Feed_Synchronization-{3B62E426-3149-4B17-BF68-2BBBAAEB4420} -> Ningún archivo <==== ATENCIÓN
Task: {252F2A01-A2F1-46EB-A091-228B92824399} - \Adobe Flash Player Updater -> Ningún archivo <==== ATENCIÓN
Task: {2BEDF3B2-9DAC-481B-AE4E-05B586616A3C} - \{E6AE48CC-D2D1-4E8C-9186-0C18BB07012A} -> Ningún archivo <==== ATENCIÓN
Task: {2D515188-3594-4E0E-8C94-447424103523} - \Opera scheduled Autoupdate 1594320073 -> Ningún archivo <==== ATENCIÓN
Task: {3F3D1440-9F39-4CBD-A52C-F0BAE83A4E84} - \Norton Security Scan for usuario -> Ningún archivo <==== ATENCIÓN
Task: {55A5045F-038F-4140-840A-05E3228AAE51} - \{1B86E040-432D-4CC9-B13C-E54764BD3AC1} -> Ningún archivo <==== ATENCIÓN
Task: {5824D454-BE67-461E-8C2D-C30D198B1E33} - \Adobe Flash Player NPAPI Notifier -> Ningún archivo <==== ATENCIÓN
Task: {765BF91A-9005-4B94-84BA-B01DC8EDF7C9} - \AviraSystemSpeedupUpdate -> Ningún archivo <==== ATENCIÓN
Task: {782A5671-90B8-4B3A-A9C9-265FB717308E} - \Avira_Antivirus_Systray -> Ningún archivo <==== ATENCIÓN
Task: {9DC0FAF7-4E4B-42E6-8E1B-1980D38187A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-06-27] (Google Inc -> Google Inc.)
Task: {A025F52E-32EA-4CD7-B473-530FCD4F4500} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} C:\Program Files\Windows Live\SOXE\wlsoxe.dll [179584 2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A97C781E-C82D-4C5B-81DF-260F1390799C} - \MirageAgent -> Ningún archivo <==== ATENCIÓN
Task: {C84686F7-4CD2-4040-B7F2-47CA1F9014DE} - \SidebarExecute -> Ningún archivo <==== ATENCIÓN
Task: {CD08CE1F-E108-441A-9ACC-9E776D034762} - \PandaUSBVaccine -> Ningún archivo <==== ATENCIÓN
Task: {D0CF1278-5604-4ADB-964B-A765C597F7D0} - System32\Tasks\AdwCleaner_onReboot => C:\Users\usuario\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-11] (Malwarebytes Inc -> Malwarebytes)
Task: {D3E5A1EB-41B7-4636-820F-46417D198D7B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E1FC64F7-CF32-4100-97DB-65AF6085547A} - \{C27E673A-1061-44B5-A36D-E3ABAF8924FC} -> Ningún archivo <==== ATENCIÓN
Task: {E96B2B76-D284-4398-8039-AEE4F881B0C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-06-27] (Google Inc -> Google Inc.)
Task: {E993F8E4-6381-4103-B4ED-F685FD26428D} - \Avira_Security_Update -> Ningún archivo <==== ATENCIÓN
Task: {EF38580C-3508-474A-A9F2-2B5B10B7A3A9} - \{5648BD4B-61CE-4259-BF0D-E6EC2B27D55D} -> Ningún archivo <==== ATENCIÓN
Task: {F6AD56E2-CD0E-427B-AD65-AD06DD5E69E1} - \Ad-Aware Antivirus Scheduled Scan -> Ningún archivo <==== ATENCIÓN

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\windows\Tasks\Norton Security Scan for usuario.job => C:\PROGRA~1\NORTON~2\Engine\403~1.24\Nss.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\..\Interfaces\{09DAEAA1-F226-4AD6-A8D2-922C7771131C}: [NameServer] 200.48.225.130,200.48.225.146
Tcpip\..\Interfaces\{934AEC34-137A-41BB-B016-DB6771640899}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A316DCF5-7153-465B-8AE1-4E2F8F4B37D1}: [DhcpNameServer] 192.168.42.129
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.msn.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
URLSearchHook: HKU\S-1-5-21-4108848017-975247746-215137932-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc. -> McAfee, Inc.)
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Company -> Hewlett-Packard Co.)
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-01] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-01] (Oracle America, Inc. -> Oracle Corporation) [Archivo no firmado]
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Company -> Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> Sin Nombre - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Ningún archivo
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default [2020-07-11]
FF user.js: detected! => C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\user.js [2013-02-03]
FF Homepage: Mozilla\Firefox\Profiles\khtgc91x.default -> google.com
FF Extension: (ClipConverter) - C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\Extensions\[email protected] [2012-12-15] [Heredado] [no firmado]
FF Extension: (Lavasoft Search Plugin) - C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\Extensions\[email protected] [2012-10-29] [Heredado] [no firmado]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20] [Heredado]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-21] [Heredado] [no firmado]
FF HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.) [Archivo no firmado]
FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\windows\system32\npDeployJava1.dll [2012-11-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-11-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @raidcall.kr/RCplugin -> C:\Users\usuario\AppData\Roaming\RCKR\plugins\nprcplugin.dll [2012-08-09] (Raidcall) [Archivo no firmado]
FF Plugin: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc. -> RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.) [Archivo no firmado]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2012-07-30] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default [2020-07-11]
CHR Extension: (Avira Password Manager) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2020-07-09]
CHR Extension: (Avira Safe Shopping) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2020-07-09]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-06-29]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-18]
CHR Extension: (Chrome Media Router) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2017-06-06]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AdobeFlashPlayerUpdateSvc; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
R2 AviraOptimizerHost; C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe [243864 2020-06-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [117648 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2014-11-17] (Macrovision Corporation -> Macrovision Europe Ltd.) [Archivo no firmado]
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] (HUAWEI Technologies Co., Ltd. -> )
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Archivo no firmado]
S2 Internet Claro. RunOuc; C:\Program Files\Internet Claro\UpdateDog\ouc.exe [655712 2013-01-30] (HUAWEI Technologies Co., Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5578952 2020-07-09] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [472856 2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [Archivo no firmado]
R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [Archivo no firmado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-26] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713536 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-10-25] (Lenovo (Beijing) Limited -> Lenovo Corporation)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2128384 2010-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 BPntDrv; C:\windows\System32\drivers\BPntDrv.sys [19552 2012-02-19] (Lenovo (Beijing) Limited -> Lenovo)
U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [102784 2013-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 fbfmon; C:\windows\System32\drivers\fbfmon.sys [45408 2012-02-19] (Lenovo (Beijing) Limited -> Lenovo)
S3 fortiapd; C:\windows\System32\drivers\fortiapd.sys [25120 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\windows\System32\DRIVERS\FortiFilter.sys [23000 2019-11-12] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\windows\System32\drivers\FortiFW2.sys [41808 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\windows\System32\drivers\fortips.sys [128816 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\windows\System32\drivers\FortiShield.sys [76112 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\windows\System32\drivers\fortisniff2.sys [111440 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\windows\System32\DRIVERS\ftsvnic.sys [63664 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 ft_vnic; C:\windows\System32\DRIVERS\ftvnic.sys [14496 2019-11-12] (Fortinet Technologies -> Fortinet Inc.)
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [25856 2013-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Tech. Co., Ltd.)
S3 huawei_cdcacm; C:\windows\System32\DRIVERS\ew_jucdcacm.sys [89856 2013-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\windows\System32\DRIVERS\ew_jubusenum.sys [73984 2013-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [195200 2013-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 LHDmgr; C:\windows\System32\DRIVERS\LhdX86.sys [32352 2010-01-15] (Lenovo (Beijing) Limited -> Lenovo.)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [181000 2020-07-09] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [213912 2020-07-11] (Malwarebytes Inc -> Malwarebytes)
R3 MEI; C:\windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [88448 2017-02-14] (McAfee, Inc. -> McAfee, Inc.)
R3 pppop; C:\windows\System32\DRIVERS\pppop.sys [47696 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 RSUSBVSTOR; C:\windows\System32\Drivers\RtsUVStor.sys [218624 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R3 vm331avs; C:\windows\System32\Drivers\vm331avs.sys [218368 2011-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
R3 vmuvcflt; C:\windows\System32\Drivers\vmuvcflt.sys [5888 2010-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink -> CyberLink)
U3 BcmSqlStartupSvc; no ImagePath
U2 CLKMSVC10_3A60B698; no ImagePath
U2 CLKMSVC10_C3B3B687; no ImagePath
U2 DriverService; no ImagePath
U2 iATAgentService; no ImagePath
U2 idealife Update Service; no ImagePath
U3 IGRS; no ImagePath
U2 IviRegMgr; no ImagePath
U2 nvUpdatusService; no ImagePath
U2 Oasis2Service; no ImagePath
U2 PCCarerService; no ImagePath
U2 ReadyComm.DirectRouter; no ImagePath
U2 RichVideo; no ImagePath
U2 RtLedService; no ImagePath
S1 SBRE; \??\C:\windows\system32\drivers\SBREdrv.sys [X]
U2 SeaPort; no ImagePath
U2 SoftwareService; no ImagePath
U3 SQLWriter; no ImagePath
U2 Stereo Service; no ImagePath

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-07-11 19:36 - 2020-07-11 19:38 - 000031089 _____ C:\Users\usuario\Downloads\FRST.txt
2020-07-11 19:35 - 2020-07-11 19:37 - 000000000 ____D C:\FRST
2020-07-11 19:34 - 2020-07-11 19:34 - 002015744 _____ (Farbar) C:\Users\usuario\Downloads\FRST.exe
2020-07-11 17:28 - 2020-07-11 17:28 - 000213912 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-07-11 13:52 - 2020-07-11 13:52 - 000015595 _____ C:\Users\usuario\Desktop\ZHPCleaner (R).html
2020-07-11 13:52 - 2020-07-11 13:52 - 000007204 _____ C:\Users\usuario\Desktop\ZHPCleaner (R).txt
2020-07-11 13:47 - 2020-07-11 13:47 - 000015700 _____ C:\Users\usuario\Desktop\ZHPCleaner (S).html
2020-07-11 13:47 - 2020-07-11 13:47 - 000007324 _____ C:\Users\usuario\Desktop\ZHPCleaner (S).txt
2020-07-11 13:38 - 2020-04-01 18:49 - 000609128 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2020-07-11 13:27 - 2020-07-11 13:52 - 000000000 ____D C:\Users\usuario\AppData\Roaming\ZHP
2020-07-11 13:27 - 2020-07-11 13:27 - 000000794 _____ C:\Users\usuario\Desktop\ZHPCleaner.lnk
2020-07-11 13:27 - 2020-07-11 13:27 - 000000000 ____D C:\Users\usuario\AppData\Local\ZHP
2020-07-11 13:15 - 2020-07-11 13:15 - 000003106 _____ C:\windows\system32\Tasks\AdwCleaner_onReboot
2020-07-11 13:04 - 2020-07-11 13:15 - 000000000 ____D C:\AdwCleaner
2020-07-11 13:03 - 2020-07-11 13:03 - 000049642 _____ C:\Users\usuario\Documents\cc_20200711_130259.reg
2020-07-11 12:45 - 2020-07-11 12:45 - 000000000 ____D C:\ProgramData\GFI Software
2020-07-11 12:11 - 2020-07-11 12:11 - 003308928 _____ (Nicolas Coolman) C:\Users\usuario\Downloads\ZHPCleaner.exe
2020-07-11 12:00 - 2020-07-11 12:00 - 008420016 _____ (Malwarebytes) C:\Users\usuario\Downloads\adwcleaner_8.0.6.exe
2020-07-10 11:41 - 2020-07-10 11:41 - 000035754 _____ C:\Users\usuario\Downloads\malware 10.07.2020.txt
2020-07-09 22:36 - 2020-07-11 15:27 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update
2020-07-09 22:36 - 2020-07-09 22:36 - 000002816 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-07-09 22:36 - 2020-07-09 22:36 - 000000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-07-09 22:36 - 2020-07-09 22:36 - 000000965 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-07-09 20:28 - 2020-07-09 20:29 - 014827616 _____ (ESET spol. s r.o.) C:\Users\usuario\Downloads\esetonlinescanner.exe
2020-07-09 19:09 - 2020-07-09 19:19 - 025838336 _____ (Piriform Software Ltd) C:\Users\usuario\Downloads\ccsetup568.exe
2020-07-09 18:10 - 2020-07-09 18:12 - 000002388 _____ C:\Users\usuario\Desktop\Rkill.txt
2020-07-09 18:04 - 2020-07-09 18:04 - 000181000 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-07-09 18:04 - 2020-07-09 18:04 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-07-09 18:04 - 2020-07-09 18:04 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-07-09 18:04 - 2020-07-09 18:04 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-07-09 18:04 - 2020-07-09 18:04 - 000000000 ____D C:\Users\usuario\AppData\Local\mbam
2020-07-09 18:03 - 2020-07-09 18:03 - 000129056 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae.sys
2020-07-09 18:03 - 2020-07-09 18:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-07-09 18:00 - 2020-07-09 18:00 - 000000000 ____D C:\Program Files\Malwarebytes
2020-07-09 17:59 - 2020-07-09 17:59 - 002012560 _____ (Malwarebytes) C:\Users\usuario\Downloads\MBSetup.exe
2020-07-09 17:57 - 2020-07-09 17:58 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\usuario\Downloads\iExplore.exe
2020-07-09 14:14 - 2020-07-09 14:14 - 000004586 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-07-09 14:05 - 2020-07-09 14:05 - 000000000 ____D C:\Users\usuario\AppData\Local\Opera Software
2020-07-09 13:54 - 2020-07-09 17:44 - 000000000 ____D C:\Users\Public\Security Sessions
2020-07-09 13:41 - 2020-07-09 13:41 - 000001274 _____ C:\Users\usuario\Desktop\Navegador Opera.lnk
2020-07-09 13:41 - 2020-07-09 13:41 - 000001274 _____ C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2020-07-09 13:39 - 2020-07-09 13:39 - 000000000 ____D C:\Users\usuario\AppData\Roaming\Opera Software
2020-07-09 13:03 - 2020-07-09 13:03 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2020-07-09 12:54 - 2020-07-11 12:24 - 000000000 ____D C:\Users\usuario\AppData\Local\Avira
2020-07-09 12:53 - 2020-07-09 12:54 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-07-09 12:51 - 2020-07-11 12:51 - 000000000 ____D C:\Program Files\Avira
2020-07-09 12:48 - 2020-07-11 12:27 - 000000000 ____D C:\ProgramData\Package Cache
2020-07-09 12:27 - 2020-07-09 12:27 - 004344656 _____ (Avira Operations GmbH & Co. KG) C:\Users\usuario\Downloads\avira_es_sptl1_1547264349-1594315571__pavws.exe
2020-07-08 00:11 - 2020-07-08 00:11 - 000000000 ____D C:\SnapTube Audio
2020-06-25 16:01 - 2020-06-25 16:01 - 000354908 _____ C:\Users\usuario\Downloads\Guía 1 linea de Escalamiento Facturación - Afiliación y desafiliación de EECC (1).pdf
2020-06-24 09:50 - 2020-06-24 09:51 - 002712990 _____ C:\Users\usuario\Downloads\Visor de CAM_20200623_Online.xlsb
2020-06-19 12:24 - 2020-06-19 12:25 - 000107626 _____ C:\Users\usuario\Downloads\1512290-158-20200618071827.pdf

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-07-11 19:33 - 2009-07-13 21:37 - 000000000 ____D C:\windows\inf
2020-07-11 19:27 - 2009-07-13 23:34 - 000016752 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-07-11 19:27 - 2009-07-13 23:34 - 000016752 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-07-11 19:20 - 2012-02-19 13:01 - 000246147 _____ C:\windows\system32\fastboot.set
2020-07-11 19:20 - 2012-02-19 12:53 - 000000000 ____D C:\ProgramData\VeriFace
2020-07-11 19:17 - 2009-07-13 23:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-07-11 12:55 - 2009-07-13 21:37 - 000000000 ____D C:\windows\tracing
2020-07-11 12:46 - 2013-09-18 15:13 - 000000000 ____D C:\ProgramData\Avira
2020-07-11 12:45 - 2012-10-29 12:58 - 000000000 ____D C:\Program Files\Ad-Aware Antivirus
2020-07-10 15:05 - 2020-05-19 15:51 - 000000000 ____D C:\Users\usuario\AppData\Local\FortiClient
2020-07-10 14:25 - 2020-05-23 20:15 - 000014554 _____ C:\Users\usuario\Documents\ANGEL BBVA.txt
2020-07-09 23:02 - 2012-02-19 12:59 - 000000000 ____D C:\Program Files\Google
2020-07-09 22:55 - 2012-08-07 21:37 - 000000000 ____D C:\Users\usuario\Tracing
2020-07-09 22:55 - 2012-05-04 23:04 - 000000000 ____D C:\windows\Minidump
2020-07-09 22:37 - 2012-04-24 19:45 - 000002235 _____ C:\Users\usuario\Desktop\OneKey Recovery.lnk
2020-07-09 22:36 - 2012-10-29 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-07-09 22:36 - 2012-10-29 12:14 - 000000000 ____D C:\Program Files\CCleaner
2020-07-09 21:52 - 2012-04-26 21:09 - 000000000 ____D C:\Users\usuario\AppData\Local\Google
2020-07-09 21:52 - 2012-02-19 12:59 - 000000000 ____D C:\ProgramData\Google
2020-07-09 21:48 - 2015-03-02 12:19 - 000000000 ____D C:\Users\usuario\Documents\My Games
2020-07-09 21:48 - 2012-02-19 12:22 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2020-07-09 21:48 - 2009-07-13 23:52 - 000000000 ____D C:\Program Files\Microsoft Games
2020-07-09 17:16 - 2020-05-23 18:14 - 000002004 ____H C:\Users\usuario\Documents\Default.rdp
2020-07-09 14:25 - 2009-07-13 23:52 - 000000000 ____D C:\windows\system32\FxsTmp
2020-07-09 14:21 - 2012-04-26 20:03 - 000000000 ____D C:\windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-07-09 14:14 - 2009-07-13 23:54 - 000000000 ____D C:\windows\system32\Tasks\WPD
2020-07-09 14:14 - 2009-07-13 23:33 - 000427536 _____ C:\windows\system32\FNTCACHE.DAT
2020-07-09 12:59 - 2012-04-24 19:46 - 000124512 _____ C:\Users\usuario\AppData\Local\GDIPFONTCACHEV1.DAT
2020-07-09 12:38 - 2012-02-19 04:01 - 000748130 _____ C:\windows\system32\perfh00A.dat
2020-07-09 12:38 - 2012-02-19 04:01 - 000159312 _____ C:\windows\system32\perfc00A.dat
2020-07-09 12:38 - 2010-11-20 16:01 - 001653152 _____ C:\windows\system32\PerfStringBackup.INI
2020-07-08 17:01 - 2009-07-13 21:37 - 000000000 ____D C:\windows\system32\NDF
2020-06-24 13:48 - 2012-02-19 13:00 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-24 13:48 - 2012-02-19 13:00 - 000002127 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-24 13:48 - 2012-02-19 12:59 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-20 16:53 - 2012-06-19 00:31 - 000000444 ____H C:\windows\Tasks\Norton Security Scan for usuario.job
2020-06-19 15:54 - 2020-05-20 14:14 - 000000000 ____D C:\Users\usuario\AppData\Roaming\AnyDesk

==================== Archivos en la raíz de algunos directorios ========

2012-10-21 10:28 - 2015-09-15 00:46 - 000005120 _____ () C:\Users\usuario\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-04-29 14:23 - 2012-04-29 14:23 - 000000000 _____ () C:\Users\usuario\AppData\Local\{A5797F36-254E-4EFE-A25A-09A2D3143985}

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-06-20 16:30
==================== Final de FRST.txt ========================

Continuación…

Farbar Recovery Scan Tool

ADDITION

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 08-07-2020
Ejecutado por usuario (11-07-2020 19:38:37)
Ejecutado desde C:\Users\usuario\Downloads
Microsoft Windows 7 Starter  Service Pack 1 (X86) (2012-04-25 00:45:40)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-4108848017-975247746-215137932-500 - Administrator - Disabled)
Invitado (S-1-5-21-4108848017-975247746-215137932-501 - Limited - Disabled)
usuario (S-1-5-21-4108848017-975247746-215137932-1000 - Administrator - Enabled) => C:\Users\usuario

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

32 Bit HP CIO Components Installer (HKLM\...\{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}) (Version: 6.1.2 - Hewlett-Packard) Hidden
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Reader 9.5.2 - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-A95000000001}) (Version: 9.5.2 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)
Atheros Client Installation Program (HKLM\...\{D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
AutoCAD 2010 - Español (HKLM\...\{5783F2D7-8001-040A-0002-0060B0CE6BBA}) (Version: 18.0.55.0 - Autodesk) Hidden
AutoCAD 2010 - Español (HKLM\...\AutoCAD 2010 - Español) (Version: 18.0.55.0 - Autodesk)
BufferChm (HKLM\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.4.51 - Conexant)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Copy (HKLM\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (HKLM\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F2400_SW_Min (HKLM\...\{5546F4E9-B0F4-4F54-B949-2AB006C9284F}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
Energy Management (HKLM\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.0 - Lenovo) Hidden
Energy Management (HKLM\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.0 - Lenovo)
F2400 (HKLM\...\{6DBB66CD-38C7-472C-BBB9-06BFDA182A29}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
FortiClient (HKLM\...\{6C0A3C5E-7725-49D8-A016-B3ADCACF61C2}) (Version: 6.0.9.0277 - Fortinet Technologies Inc)
Galería fotográfica de Windows Live (HKLM\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPBaseService2 (HKLM\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Guía del usuario (HKLM\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F2400 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{819CA3BC-2FF8-4811-B42F-421F7BFD3559}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM\...\{74DC0593-6BC6-4001-AD5F-D810AFB68D86}) (Version: 5.002.002.002 - Hewlett-Packard)
HPPhotoGadget (HKLM\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2342 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation)
Internet Claro (HKLM\...\Internet Claro) (Version: 21.005.20.03.139 - Huawei Technologies Co.,Ltd)
Java 7 Update 9 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217009FF}) (Version: 7.0.90 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo EasyCamera (HKLM\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 13.11.616.1 - Vimicro)
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.6 - Lenovo)
Lenovo Games Console (HKLM\...\Lenovo Games Console) (Version: 1.2.6.436 - Oberon Media Inc.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.)
Lenovo PowerDVD 10 (HKLM\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2811.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD 10 (HKLM\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2811.52 - CyberLink Corp.)
Lenovo YouCam (HKLM\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.) Hidden
Lenovo YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
MarketResearch (HKLM\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
McAfee WebAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.7.213 - McAfee, Inc.)
Mesh Runtime (HKLM\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version:  - Microsoft)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 19.0.2 (x86 es-ES) (HKLM\...\Mozilla Firefox 19.0.2 (x86 es-ES)) (Version: 19.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 19.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Norton Security Scan (HKLM\...\NSS) (Version: 4.0.3.24 - Symantec Corporation)
Opera Stable 69.0.3686.57 (HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Opera 69.0.3686.57) (Version: 69.0.3686.57 - Opera Software)
Panda USB Vaccine 1.0.1.4 (HKLM\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Paquete de idioma de AutoCAD 2010 - Español (HKLM\...\{5783F2D7-8001-040A-1002-0060B0CE6BBA}) (Version: 18.0.55.0 - Autodesk) Hidden
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (HKLM\...\Microsoft .NET Framework 4 Client Profile ESN Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7303 - CyberLink Corp.)
RaidCall (HKLM\...\RaidCall) (Version: 7.0.4-1.0.2409.253 - raidcall.com)
Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - )
Realtek USB 2.0 Reader Driver (HKLM\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10003 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.94 (HKLM\...\Revo Uninstaller) (Version: 1.94 - VS Revo Group)
Scan (HKLM\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SmartWebPrinting (HKLM\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (HKLM\...\{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
StarterBackgroundChanger (HKLM\...\StarterBackgroundChanger) (Version: 0.8.1.0 - Renaud Gerson)
Status (HKLM\...\{2FB9EA69-51D4-4913-9AD5-762C034DE811}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.0.0 - Synaptics Incorporated)
Toolbox (HKLM\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (HKLM\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
UserGuide (HKLM\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)
VeriFace (HKLM\...\VeriFace) (Version: 4.0.0.1224 - Lenovo)
Virtual DJ Home - Atomix Productions (HKLM\...\Virtual DJ Home - Atomix Productions) (Version:  - )
Visor de Microsoft PowerPoint (HKLM\...\{95140000-00AF-0C0A-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
WebReg (HKLM\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.212.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.10 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-4108848017-975247746-215137932-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\AutoCAD 2010\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-4108848017-975247746-215137932-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\AutoCAD 2010\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-4108848017-975247746-215137932-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\AutoCAD 2010\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
ShellExecuteHooks: Sin Nombre - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} -  -> Ningún archivo
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [Identificador de icono superpuesto para firmas digitales de AutoCAD] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2009-02-09] (Autodesk, Inc -> Autodesk, Inc.) [Archivo no firmado]
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll [2012-02-19] (Lenovo (Beijing) Limited -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2009-02-09] (Autodesk, Inc -> Autodesk) [Archivo no firmado]
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files\Fortinet\FortiClient\FortiCliSh.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-01-09] () [Archivo no firmado]
ContextMenuHandlers3: [IkeyShlExt] -> {F1E551D1-822B-40e6-B4D8-A9B4A48AA07A} => C:\windows\system32\SimpleExt.dll [2012-02-19] (Lenovo (Beijing) Limited -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-01-09] () [Archivo no firmado]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [FortiClient] -> {1935F098-AF3C-4AFC-ADA2-12C74B452DF1} => C:\Program Files\Fortinet\FortiClient\FortiCliSh.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-01-09] () [Archivo no firmado]

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Módulos cargados (Lista blanca) =============

2012-02-19 12:22 - 2011-02-18 03:16 - 000058880 _____ () [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2010-08-05 09:12 - 2011-01-16 09:39 - 000046592 _____ () [Archivo no firmado] [El archivo está en uso] C:\Program Files\StarterBackgroundChanger\RgeMainLib.dll
2013-01-30 16:53 - 2013-01-30 16:51 - 000043008 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\libgcc_s_dw2-1.dll
2013-01-30 16:53 - 2013-01-30 16:51 - 000011362 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\mingwm10.dll
2013-01-30 16:53 - 2013-01-30 16:52 - 002415104 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\QtCore4.dll
2013-01-30 16:53 - 2013-01-30 16:52 - 001148416 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\QtNetwork4.dll
2013-01-30 16:53 - 2013-01-30 16:52 - 000398336 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\QtXml4.dll
2013-01-30 16:53 - 2013-01-30 16:52 - 000835072 _____ () [Archivo no firmado] C:\ProgramData\Internet Claro\OnlineUpdate\QueryStrategy.dll
2017-07-21 23:33 - 2017-07-21 23:33 - 000169984 _____ () [Archivo no firmado] C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\26fa5bfbc19a57eda07a7de5e35bedcf\IsdiInterop.ni.dll
2012-02-19 12:23 - 2010-12-20 20:49 - 001892352 _____ (Apache Software Foundation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2019-11-12 17:38 - 2019-11-12 17:38 - 001005074 _____ (Fortinet Inc.) [Archivo no firmado] C:\Program Files\Fortinet\FortiClient\utilsdll.dll
2009-11-18 04:02 - 2009-11-18 04:02 - 000954880 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc
2009-11-18 04:02 - 2009-11-18 04:02 - 000012288 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files\HP\Digital Imaging\bin\hpqstp08.rsc
2009-11-18 04:42 - 2009-11-18 04:42 - 000048128 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
2009-05-14 16:48 - 2009-05-14 16:48 - 000044032 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzinw12.dll
2009-05-14 16:48 - 2009-05-14 16:48 - 000053760 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzipm12.dll
2009-05-14 16:48 - 2009-05-14 16:48 - 000033792 _____ (Hewlett-Packard) [Archivo no firmado] C:\windows\system32\hpzipr12.dll
2017-07-21 23:33 - 2017-07-21 23:33 - 000014336 _____ (Intel Corp.) [Archivo no firmado] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\23d3bed7471ba78aadfa3d69e4a0333d\IAStorCommon.ni.dll
2012-02-19 12:22 - 2011-02-18 03:17 - 000006656 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\es-ES\IAStorDataMgr.resources.dll
2012-02-19 12:23 - 2010-12-20 20:45 - 000069632 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2012-02-19 12:22 - 2011-02-18 03:13 - 000275456 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2017-07-21 23:33 - 2017-07-21 23:33 - 000219136 _____ (Intel Corporation) [Archivo no firmado] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\3879c35fd6e89d2280df6f8a33ee469a\IAStorDataMgr.ni.dll
2017-07-22 09:29 - 2017-07-22 09:29 - 000475648 _____ (Intel Corporation) [Archivo no firmado] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\dc516d388c5da0f1e7234dfab2e60ec5\IAStorUtil.ni.dll
2012-02-19 12:53 - 2012-02-19 12:53 - 000958464 _____ (Lenovo) [Archivo no firmado] C:\Program Files\Lenovo\VeriFace\Spanish\TimeLockRes.dll
2019-03-27 23:48 - 2019-03-27 23:48 - 000115200 _____ (Microsoft Corporation) [Archivo no firmado] [El archivo está en uso] C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2017-07-22 08:32 - 2017-07-22 08:32 - 000225280 _____ (Microsoft Corporation) [Archivo no firmado] [El archivo está en uso] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2012-02-19 12:43 - 2012-02-19 12:43 - 000348160 ____N (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Lenovo\PowerDVD10\MSVCR71.dll
2012-02-19 12:53 - 2012-02-19 12:53 - 002406912 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Lenovo\VeriFace\MFC80UD.DLL
2012-02-19 12:53 - 2012-02-19 12:53 - 001175552 _____ (Microsoft Corporation) [Archivo no firmado] C:\Program Files\Lenovo\VeriFace\MSVCR80D.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)

HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Classes\.scr: AutoCADScriptFile => C:\windows\system32\notepad.exe "%1"

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 21:04 - 2020-07-11 19:39 - 000000824 _____ C:\windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\usuario\AppData\Roaming\RGE\StarterBackgroundChanger\162019_207334981881_8040315_n.jpg.jpg
DNS Servers: 200.48.225.130 - 200.48.225.146
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{7887FF1B-42E6-4B83-97D8-7A668674723E}] => (Allow) C:\Program Files\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{B1CB1C5D-87C1-4DF8-8EF6-35DF5E874FD6}] => (Allow) C:\Program Files\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{0D5E7F8C-8374-47D7-B511-3068A7DEBD80}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F6F7FBD5-2598-4039-9679-D6E898068EC9}] => (Allow) LPort=2869
FirewallRules: [{E02D9298-E0EC-4524-8339-0386EC8731D9}] => (Allow) LPort=1900
FirewallRules: [{8DE6655B-BE39-4F09-926C-F930CC9DC19A}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{296F3A56-DE90-4B41-94D3-E8451A2A1079}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6262AA17-6CAE-4759-A451-7BFD81605940}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{216EA9F2-8026-4E6C-B261-D540FD2DB3CD}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{2717AEEA-5F26-4EA3-AD72-EB90FFC037FD}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{CF9D54FB-30EB-407D-B4F7-FD1513A5F0FC}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{2ABE936C-D119-4C4C-ADEF-B72A3957A7A2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{6BD18C73-A1D3-4F76-AFD0-AD1A65179B5E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{048DA838-4366-4864-9FC1-AF4A4A2D7202}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B6209634-0420-44F3-AF3A-FD5C31AD647E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{42D39AE1-DCFD-4AC6-AA7F-0B1154D1F37D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{9975157C-5A84-4A14-9F88-C9CFD73966E7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett Packard -> Hewlett-Packard)
FirewallRules: [{3B48C867-B2B9-41DE-99D1-E659D374D324}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{4200B748-CE5A-45D2-8457-E268D9A38217}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1271F5DE-2085-4D09-A262-FBCF71F28487}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard)
FirewallRules: [{3C97A2A7-590F-4DF8-A726-085291072423}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Company -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{744063DE-1FE2-476F-87AF-92AB9C239B6E}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D9CA206F-28E7-4DD4-8C9F-8F5731A3C454}C:\program files\microsoft office\office14\groove.exe] => (Block) C:\program files\microsoft office\office14\groove.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DE63BD93-2D78-45FD-8268-F26A72D6269A}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{786AC64B-B147-4E4D-B26F-1CCC7F876BDB}C:\users\usuario\downloads\anydesk.exe] => (Block) C:\users\usuario\downloads\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [UDP Query User{0C93B087-C693-487B-8557-CBEDF09FE456}C:\users\usuario\downloads\anydesk.exe] => (Block) C:\users\usuario\downloads\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{D7E3628F-1FE6-446C-B0B6-9C9F9810049C}] => (Allow) C:\Program Files\Fortinet\FortiClient\ipsec.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
FirewallRules: [{DD76E533-EF4E-4A34-9D13-A43A1DD2DDB9}] => (Allow) C:\Program Files\Fortinet\FortiClient\fortiesnac.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
FirewallRules: [{FC37EC4A-135B-472B-9220-E7400F2750BC}] => (Allow) C:\Program Files\Fortinet\FortiClient\fortifws.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
FirewallRules: [{151772A3-5B53-4408-8C35-D1C9E65A94E3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{19FAA1C5-8FBC-454C-BA55-36A11E2C30AC}] => (Allow) C:\Users\usuario\AppData\Local\Programs\Opera\69.0.3686.57\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{3FABD2DB-474C-4786-8AB9-E08F8D7D63DA}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiProxy.exe => Ningún archivo
FirewallRules: [{2F9D72F8-59CF-48DB-B145-60D0AD4AAFB9}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiWad.exe => Ningún archivo

==================== Puntos de Restauración =========================

11-07-2020 12:18:16 Revo Uninstaller's restore point - Avira
11-07-2020 12:28:24 Revo Uninstaller's restore point - Ad-Aware Security Add-on
11-07-2020 12:32:09 Revo Uninstaller's restore point - Avira Antivirus
11-07-2020 12:36:29 Revo Uninstaller's restore point - Avira Phantom VPN
11-07-2020 12:39:54 Revo Uninstaller's restore point - Avira Software Updater
11-07-2020 12:40:39 Removed Avira Software Updater
11-07-2020 12:43:04 Revo Uninstaller's restore point - Ad-Aware Antivirus
11-07-2020 12:43:20 Removed Ad-Aware Antivirus.
11-07-2020 13:37:28 Windows Update
11-07-2020 18:48:37 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Fortinet virtual adapter
Description: Fortinet virtual adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Fortinet
Service: ft_vnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Fortinet SSL VPN Virtual Ethernet Adapter
Description: Fortinet SSL VPN Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Fortinet Inc.
Service: ftsvnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (07/11/2020 07:19:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (07/11/2020 01:21:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (07/11/2020 12:53:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (07/11/2020 12:47:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: FortiSettings.exe, versión: 6.0.9.277, marca de tiempo: 0x5dcb5db1
Nombre del módulo con errores: ucrtbase.DLL, versión: 10.0.10586.15, marca de tiempo: 0x564ea400
Código de excepción: 0x40000015
Desplazamiento de errores: 0x0008469a
Id. del proceso con errores: 0x698
Hora de inicio de la aplicación con errores: 0x01d657a1e3f84e20
Ruta de acceso de la aplicación con errores: C:\Program Files\Fortinet\FortiClient\FortiSettings.exe
Ruta de acceso del módulo con errores: C:\Program Files\Fortinet\FortiClient\ucrtbase.DLL
Id. del informe: 87101f41-c39e-11ea-86ef-00090ffe0001

Error: (07/11/2020 12:46:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Avira.OptimizerHost.exe, versión: 1.2.0.385, marca de tiempo: 0x5ed77d40
Nombre del módulo con errores: KERNELBASE.dll, versión: 6.1.7601.23775, marca de tiempo: 0x58f4dbfb
Código de excepción: 0x0eedfade
Desplazamiento de errores: 0x0000845d
Id. del proceso con errores: 0x2ec
Hora de inicio de la aplicación con errores: 0x01d657a1ecac5620
Ruta de acceso de la aplicación con errores: C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe
Ruta de acceso del módulo con errores: C:\windows\system32\KERNELBASE.dll
Id. del informe: 682a2293-c39e-11ea-86ef-00090ffe0001

Error: (07/11/2020 12:43:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

Details:
AddLegacyDriverFiles: Unable to back up image of binary avgntflt.

System Error:
El sistema no puede encontrar el archivo especificado.
.

Error: (07/11/2020 12:43:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

Details:
AddLegacyDriverFiles: Unable to back up image of binary avgntflt.

System Error:
El sistema no puede encontrar el archivo especificado.
.

Error: (07/11/2020 12:41:33 PM) (Source: MsiInstaller) (EventID: 11306) (User: usuario-PC)
Description: Product: Avira Software Updater -- Error 1306. Another application has exclusive access to the file 'C:\ProgramData\Avira\SoftwareUpdater\ShavlikData\ManifestSynchronizerSample.log'.  Please shut down all other applications, then click Retry.


Errores del sistema:
=============
Error: (07/11/2020 07:18:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente: 
SBRE

Error: (07/11/2020 07:18:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Internet Claro. OUC no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (07/11/2020 07:18:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Internet Claro. OUC.

Error: (07/11/2020 07:17:42 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 07:13:03 p.m. del ‎11/‎07/‎2020 resultó inesperado.

Error: (07/11/2020 06:08:33 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio AviraSecurity.

Error: (07/11/2020 01:20:56 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente: 
SBRE

Error: (07/11/2020 01:20:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Internet Claro. OUC no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (07/11/2020 01:20:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Internet Claro. OUC.


==================== Información de la memoria =========================== 

BIOS: LENOVO 40CN30WW(V2.16) 01/12/2012
Placa base: LENOVO Base Board Product Name
Procesador: Intel(R) Celeron(R) CPU B800 @ 1.50GHz
Porcentaje de memoria en uso: 85%
RAM física total: 2048 MB
RAM física disponible: 297.43 MB
Virtual total: 4096 MB
Virtual disponible: 2045.84 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:421.81 GB) (Free:277.66 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:5.2 GB) NTFS
Drive g: () (Removable) (Total:1.84 GB) (Free:0.43 GB) FAT

\\?\Volume{5c628d46-5b1c-11e1-8bfa-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E3612531)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=421.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=29 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12)

==========================================================
Disk: 1 (Protective MBR) (Size: 1.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final  Addition.txt =======================

Saludos

Hola @Angel99

Se ven varios problemas en tu equipo, malas desinstalaciones, muchos restos etc.

Cuando quieras desinstalar Antivirus para hacerlo correctamente debes hacerlo con sus herramientas especificas de desinstalación.

Paso 1:

Como han quedado muchos restos de Avira en tu equipo, descarga su Herramienta Especifica de desinstalación la ejecutas y reinicias el equipo.

Paso 2:

Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Norton Security Scan
  • McAfee WebAdvisor
  • McAfee Security Scan Plus
  • Java 7 Update 9

Manual de Revo Uninstaller.

Al finalizar reinicias el equipo y actualizas Java a su ultima versión.

Paso 3:

Elimina las extensiones de tu navegador Google Chrome que mas abajo te detallo de la siguiente manera:

  • Teclee o copie y pegue chrome://extensions en la barra de direcciones del navegador y presione Enter.
  • Haga clic en Quitar disponible bajo la extensión que desea eliminar por completo.
  • Un cuadro de diálogo de confirmación aparece en pantalla. Haga clic en Quitar.

  1. Avira Password Manager
  2. Avira Safe Shopping
  3. McAfee® WebAdvisor

Paso 4:

Ejecutaste FRST desde un lugar incorrecto:

  • Ejecutado desde C:\Users\usuario\Downloads

Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.

Paso 5:

Con mucha atención sigue estos pasos, para tu seguridad puedes imprimirlos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga/Ejecuta DelFix desde el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

Luego ve a::

2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:

Start::
CloseProcesses:
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe
(HUAWEI Technologies Co., Ltd. -> ) C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe
C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [] => [X]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Policies\system: [shell] explorer.exe <==== ATENCIÓN
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {71094287-d6be-11e1-9c58-9cb70d766a98} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a47-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a53-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-24] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2013-02-13]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)
Task: {23EDD0ED-BA32-4D6B-B464-DBCBDDE66755} - \User_Feed_Synchronization-{3B62E426-3149-4B17-BF68-2BBBAAEB4420} -> Ningún archivo <==== ATENCIÓN
Task: {252F2A01-A2F1-46EB-A091-228B92824399} - \Adobe Flash Player Updater -> Ningún archivo <==== ATENCIÓN
Task: {2BEDF3B2-9DAC-481B-AE4E-05B586616A3C} - \{E6AE48CC-D2D1-4E8C-9186-0C18BB07012A} -> Ningún archivo <==== ATENCIÓN
Task: {2D515188-3594-4E0E-8C94-447424103523} - \Opera scheduled Autoupdate 1594320073 -> Ningún archivo <==== ATENCIÓN
Task: {3F3D1440-9F39-4CBD-A52C-F0BAE83A4E84} - \Norton Security Scan for usuario -> Ningún archivo <==== ATENCIÓN
Task: {55A5045F-038F-4140-840A-05E3228AAE51} - \{1B86E040-432D-4CC9-B13C-E54764BD3AC1} -> Ningún archivo <==== ATENCIÓN
Task: {5824D454-BE67-461E-8C2D-C30D198B1E33} - \Adobe Flash Player NPAPI Notifier -> Ningún archivo <==== ATENCIÓN
Task: {765BF91A-9005-4B94-84BA-B01DC8EDF7C9} - \AviraSystemSpeedupUpdate -> Ningún archivo <==== ATENCIÓN
Task: {782A5671-90B8-4B3A-A9C9-265FB717308E} - \Avira_Antivirus_Systray -> Ningún archivo <==== ATENCIÓN
Task: {A97C781E-C82D-4C5B-81DF-260F1390799C} - \MirageAgent -> Ningún archivo <==== ATENCIÓN
Task: {C84686F7-4CD2-4040-B7F2-47CA1F9014DE} - \SidebarExecute -> Ningún archivo <==== ATENCIÓN
Task: {CD08CE1F-E108-441A-9ACC-9E776D034762} - \PandaUSBVaccine -> Ningún archivo <==== ATENCIÓN
Task: {D0CF1278-5604-4ADB-964B-A765C597F7D0} - System32\Tasks\AdwCleaner_onReboot => C:\Users\usuario\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-11] (Malwarebytes Inc -> Malwarebytes)
Task: {E1FC64F7-CF32-4100-97DB-65AF6085547A} - \{C27E673A-1061-44B5-A36D-E3ABAF8924FC} -> Ningún archivo <==== ATENCIÓN
Task: {E993F8E4-6381-4103-B4ED-F685FD26428D} - \Avira_Security_Update -> Ningún archivo <==== ATENCIÓN
Task: {EF38580C-3508-474A-A9F2-2B5B10B7A3A9} - \{5648BD4B-61CE-4259-BF0D-E6EC2B27D55D} -> Ningún archivo <==== ATENCIÓN
Task: {F6AD56E2-CD0E-427B-AD65-AD06DD5E69E1} - \Ad-Aware Antivirus Scheduled Scan -> Ningún archivo <==== ATENCIÓN
Task: C:\windows\Tasks\Norton Security Scan for usuario.job => C:\PROGRA~1\NORTON~2\Engine\403~1.24\Nss.exe
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.msn.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
URLSearchHook: HKU\S-1-5-21-4108848017-975247746-215137932-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc. -> McAfee, Inc.)
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
Toolbar: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> Sin Nombre - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Ningún archivo
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
FF Extension: (Lavasoft Search Plugin) - C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\Extensions\[email protected] [2012-10-29] [Heredado] [no firmado]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20] [Heredado]
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2017-06-06]
R2 AviraOptimizerHost; C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe [243864 2020-06-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 Internet Claro. RunOuc; C:\Program Files\Internet Claro\UpdateDog\ouc.exe [655712 2013-01-30] (HUAWEI Technologies Co., Ltd. -> )
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [472856 2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [88448 2017-02-14] (McAfee, Inc. -> McAfee, Inc.)
U3 BcmSqlStartupSvc; no ImagePath
U2 CLKMSVC10_3A60B698; no ImagePath
U2 CLKMSVC10_C3B3B687; no ImagePath
U2 DriverService; no ImagePath
U2 iATAgentService; no ImagePath
U2 idealife Update Service; no ImagePath
U3 IGRS; no ImagePath
U2 IviRegMgr; no ImagePath
U2 nvUpdatusService; no ImagePath
U2 Oasis2Service; no ImagePath
U2 PCCarerService; no ImagePath
U2 ReadyComm.DirectRouter; no ImagePath
U2 RichVideo; no ImagePath
U2 RtLedService; no ImagePath
S1 SBRE; \??\C:\windows\system32\drivers\SBREdrv.sys [X]
U2 SeaPort; no ImagePath
U2 SoftwareService; no ImagePath
U3 SQLWriter; no ImagePath
U2 Stereo Service; no ImagePath
2020-07-11 13:15 - 2020-07-11 13:15 - 000003106 _____ C:\windows\system32\Tasks\AdwCleaner_onReboot
2020-07-09 20:28 - 2020-07-09 20:29 - 014827616 _____ (ESET spol. s r.o.) C:\Users\usuario\Downloads\esetonlinescanner.exe
2020-07-09 12:54 - 2020-07-11 12:24 - 000000000 ____D C:\Users\usuario\AppData\Local\Avira
2020-07-09 12:51 - 2020-07-11 12:51 - 000000000 ____D C:\Program Files\Avira
2020-07-09 12:27 - 2020-07-09 12:27 - 004344656 _____ (Avira Operations GmbH & Co. KG) C:\Users\usuario\Downloads\avira_es_sptl1_1547264349-1594315571__pavws.exe
2020-07-11 12:46 - 2013-09-18 15:13 - 000000000 ____D C:\ProgramData\Avira
2020-07-11 12:45 - 2012-10-29 12:58 - 000000000 ____D C:\Program Files\Ad-Aware Antivirus
2020-06-20 16:53 - 2012-06-19 00:31 - 000000444 ____H C:\windows\Tasks\Norton Security Scan for usuario.job
ShellExecuteHooks: Sin Nombre - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} -  -> Ningún archivo
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
FirewallRules: [{3FABD2DB-474C-4786-8AB9-E08F8D7D63DA}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiProxy.exe => Ningún archivo
FirewallRules: [{2F9D72F8-59CF-48DB-B145-60D0AD4AAFB9}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiWad.exe => Ningún archivo
C:\Program Files\McAfee Security Scan
C:\Program Files\McAfee
C:\PROGRA~1\NORTON~2

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
  • Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.

3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.

  • Ejecute Frst.exe o Frst64.exe. según el caso.
  • Presione el botón Fix/Corregir y aguarde a que termine.
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
  • Reinicia y lo pega en su próxima respuesta.

Consulta: Fortinet lo instalaste tu te funciona correctamente ? :thinking:

Nos comentas…

Salu2

Hola, gracias por responder. Bueno Forticlient lo utilizo para tele-trabajo, si funciona aunque algo lento.

Fixlog

Resultados de la corrección de Farbar Recovery Scan Tool (x86) Versión: 08-07-2020
Ejecutado por usuario (14-07-2020 22:40:02) Run:1
Ejecutado desde C:\Users\usuario\Desktop
Perfiles cargados: usuario
Modo de Inicio: Safe Mode (minimal)

==============================================

fixlist contenido:
*****************
CloseProcesses:
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe
(HUAWEI Technologies Co., Ltd. -> ) C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe
C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Run: [] => [X]
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\Policies\system: [shell] explorer.exe <==== ATENCI�N
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {71094287-d6be-11e1-9c58-9cb70d766a98} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a47-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKU\S-1-5-21-4108848017-975247746-215137932-1000\...\MountPoints2: {75b27a53-6a9e-11e2-92f0-dc0ea1841a93} - E:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-24] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2013-02-13]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)
Task: {23EDD0ED-BA32-4D6B-B464-DBCBDDE66755} - \User_Feed_Synchronization-{3B62E426-3149-4B17-BF68-2BBBAAEB4420} -> Ning�n archivo <==== ATENCI�N
Task: {252F2A01-A2F1-46EB-A091-228B92824399} - \Adobe Flash Player Updater -> Ning�n archivo <==== ATENCI�N
Task: {2BEDF3B2-9DAC-481B-AE4E-05B586616A3C} - \{E6AE48CC-D2D1-4E8C-9186-0C18BB07012A} -> Ning�n archivo <==== ATENCI�N
Task: {2D515188-3594-4E0E-8C94-447424103523} - \Opera scheduled Autoupdate 1594320073 -> Ning�n archivo <==== ATENCI�N
Task: {3F3D1440-9F39-4CBD-A52C-F0BAE83A4E84} - \Norton Security Scan for usuario -> Ning�n archivo <==== ATENCI�N
Task: {55A5045F-038F-4140-840A-05E3228AAE51} - \{1B86E040-432D-4CC9-B13C-E54764BD3AC1} -> Ning�n archivo <==== ATENCI�N
Task: {5824D454-BE67-461E-8C2D-C30D198B1E33} - \Adobe Flash Player NPAPI Notifier -> Ning�n archivo <==== ATENCI�N
Task: {765BF91A-9005-4B94-84BA-B01DC8EDF7C9} - \AviraSystemSpeedupUpdate -> Ning�n archivo <==== ATENCI�N
Task: {782A5671-90B8-4B3A-A9C9-265FB717308E} - \Avira_Antivirus_Systray -> Ning�n archivo <==== ATENCI�N
Task: {A97C781E-C82D-4C5B-81DF-260F1390799C} - \MirageAgent -> Ning�n archivo <==== ATENCI�N
Task: {C84686F7-4CD2-4040-B7F2-47CA1F9014DE} - \SidebarExecute -> Ning�n archivo <==== ATENCI�N
Task: {CD08CE1F-E108-441A-9ACC-9E776D034762} - \PandaUSBVaccine -> Ning�n archivo <==== ATENCI�N
Task: {D0CF1278-5604-4ADB-964B-A765C597F7D0} - System32\Tasks\AdwCleaner_onReboot => C:\Users\usuario\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-11] (Malwarebytes Inc -> Malwarebytes)
Task: {E1FC64F7-CF32-4100-97DB-65AF6085547A} - \{C27E673A-1061-44B5-A36D-E3ABAF8924FC} -> Ning�n archivo <==== ATENCI�N
Task: {E993F8E4-6381-4103-B4ED-F685FD26428D} - \Avira_Security_Update -> Ning�n archivo <==== ATENCI�N
Task: {EF38580C-3508-474A-A9F2-2B5B10B7A3A9} - \{5648BD4B-61CE-4259-BF0D-E6EC2B27D55D} -> Ning�n archivo <==== ATENCI�N
Task: {F6AD56E2-CD0E-427B-AD65-AD06DD5E69E1} - \Ad-Aware Antivirus Scheduled Scan -> Ning�n archivo <==== ATENCI�N
Task: C:\windows\Tasks\Norton Security Scan for usuario.job => C:\PROGRA~1\NORTON~2\Engine\403~1.24\Nss.exe
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.msn.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
URLSearchHook: HKU\S-1-5-21-4108848017-975247746-215137932-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc. -> McAfee, Inc.)
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_esPE481
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
Toolbar: HKU\S-1-5-21-4108848017-975247746-215137932-1000 -> Sin Nombre - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Ning�n archivo
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
FF Extension: (Lavasoft Search Plugin) - C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\Extensions\[email protected] [2012-10-29] [Heredado] [no firmado]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20] [Heredado]
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2017-06-06]
R2 AviraOptimizerHost; C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe [243864 2020-06-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 Internet Claro. RunOuc; C:\Program Files\Internet Claro\UpdateDog\ouc.exe [655712 2013-01-30] (HUAWEI Technologies Co., Ltd. -> )
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [472856 2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc. -> McAfee, Inc.)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [88448 2017-02-14] (McAfee, Inc. -> McAfee, Inc.)
U3 BcmSqlStartupSvc; no ImagePath
U2 CLKMSVC10_3A60B698; no ImagePath
U2 CLKMSVC10_C3B3B687; no ImagePath
U2 DriverService; no ImagePath
U2 iATAgentService; no ImagePath
U2 idealife Update Service; no ImagePath
U3 IGRS; no ImagePath
U2 IviRegMgr; no ImagePath
U2 nvUpdatusService; no ImagePath
U2 Oasis2Service; no ImagePath
U2 PCCarerService; no ImagePath
U2 ReadyComm.DirectRouter; no ImagePath
U2 RichVideo; no ImagePath
U2 RtLedService; no ImagePath
S1 SBRE; \??\C:\windows\system32\drivers\SBREdrv.sys [X]
U2 SeaPort; no ImagePath
U2 SoftwareService; no ImagePath
U3 SQLWriter; no ImagePath
U2 Stereo Service; no ImagePath
2020-07-11 13:15 - 2020-07-11 13:15 - 000003106 _____ C:\windows\system32\Tasks\AdwCleaner_onReboot
2020-07-09 20:28 - 2020-07-09 20:29 - 014827616 _____ (ESET spol. s r.o.) C:\Users\usuario\Downloads\esetonlinescanner.exe
2020-07-09 12:54 - 2020-07-11 12:24 - 000000000 ____D C:\Users\usuario\AppData\Local\Avira
2020-07-09 12:51 - 2020-07-11 12:51 - 000000000 ____D C:\Program Files\Avira
2020-07-09 12:27 - 2020-07-09 12:27 - 004344656 _____ (Avira Operations GmbH & Co. KG) C:\Users\usuario\Downloads\avira_es_sptl1_1547264349-1594315571__pavws.exe
2020-07-11 12:46 - 2013-09-18 15:13 - 000000000 ____D C:\ProgramData\Avira
2020-07-11 12:45 - 2012-10-29 12:58 - 000000000 ____D C:\Program Files\Ad-Aware Antivirus
2020-06-20 16:53 - 2012-06-19 00:31 - 000000444 ____H C:\windows\Tasks\Norton Security Scan for usuario.job
ShellExecuteHooks: Sin Nombre - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} -  -> Ning�n archivo
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
FirewallRules: [{3FABD2DB-474C-4786-8AB9-E08F8D7D63DA}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiProxy.exe => Ning�n archivo
FirewallRules: [{2F9D72F8-59CF-48DB-B145-60D0AD4AAFB9}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiWad.exe => Ning�n archivo
C:\Program Files\McAfee Security Scan
C:\Program Files\McAfee
C:\PROGRA~1\NORTON~2
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:

*****************

Procesos cerrados correctamente.
C:\Program Files\Avira\Optimizer Host\Avira.OptimizerHost.exe => No se encontró ningún proceso en ejecución
C:\Program Files\Avira\Security\Avira.Spotlight.Service.exe => No se encontró ningún proceso en ejecución
C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe => No se encontró ningún proceso en ejecución
C:\ProgramData\Internet Claro\OnlineUpdate\ouc.exe => movido correctamente
C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe => No se encontró ningún proceso en ejecución
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe => No se encontró ningún proceso en ejecución
C:\Program Files\McAfee\SiteAdvisor\saUI.exe => No se encontró ningún proceso en ejecución
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\shell" => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71094287-d6be-11e1-9c58-9cb70d766a98} => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{75b27a47-6a9e-11e2-92f0-dc0ea1841a93} => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{75b27a53-6a9e-11e2-92f0-dc0ea1841a93} => eliminado correctamente
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => no encontrado
"C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23EDD0ED-BA32-4D6B-B464-DBCBDDE66755}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23EDD0ED-BA32-4D6B-B464-DBCBDDE66755}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\User_Feed_Synchronization-{3B62E426-3149-4B17-BF68-2BBBAAEB4420} => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{252F2A01-A2F1-46EB-A091-228B92824399}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{252F2A01-A2F1-46EB-A091-228B92824399}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BEDF3B2-9DAC-481B-AE4E-05B586616A3C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BEDF3B2-9DAC-481B-AE4E-05B586616A3C}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E6AE48CC-D2D1-4E8C-9186-0C18BB07012A} => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D515188-3594-4E0E-8C94-447424103523}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D515188-3594-4E0E-8C94-447424103523}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1594320073 => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F3D1440-9F39-4CBD-A52C-F0BAE83A4E84}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F3D1440-9F39-4CBD-A52C-F0BAE83A4E84}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Scan for usuario => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{55A5045F-038F-4140-840A-05E3228AAE51}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{55A5045F-038F-4140-840A-05E3228AAE51}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B86E040-432D-4CC9-B13C-E54764BD3AC1} => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5824D454-BE67-461E-8C2D-C30D198B1E33}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5824D454-BE67-461E-8C2D-C30D198B1E33}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player NPAPI Notifier => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{765BF91A-9005-4B94-84BA-B01DC8EDF7C9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{765BF91A-9005-4B94-84BA-B01DC8EDF7C9}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AviraSystemSpeedupUpdate => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{782A5671-90B8-4B3A-A9C9-265FB717308E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{782A5671-90B8-4B3A-A9C9-265FB717308E}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avira_Antivirus_Systray => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A97C781E-C82D-4C5B-81DF-260F1390799C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A97C781E-C82D-4C5B-81DF-260F1390799C}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MirageAgent => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C84686F7-4CD2-4040-B7F2-47CA1F9014DE}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C84686F7-4CD2-4040-B7F2-47CA1F9014DE}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SidebarExecute => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CD08CE1F-E108-441A-9ACC-9E776D034762}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD08CE1F-E108-441A-9ACC-9E776D034762}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PandaUSBVaccine => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D0CF1278-5604-4ADB-964B-A765C597F7D0}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0CF1278-5604-4ADB-964B-A765C597F7D0}" => eliminado correctamente
C:\Windows\System32\Tasks\AdwCleaner_onReboot => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdwCleaner_onReboot" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E1FC64F7-CF32-4100-97DB-65AF6085547A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1FC64F7-CF32-4100-97DB-65AF6085547A}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C27E673A-1061-44B5-A36D-E3ABAF8924FC} => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E993F8E4-6381-4103-B4ED-F685FD26428D}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E993F8E4-6381-4103-B4ED-F685FD26428D}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avira_Security_Update => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EF38580C-3508-474A-A9F2-2B5B10B7A3A9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF38580C-3508-474A-A9F2-2B5B10B7A3A9}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5648BD4B-61CE-4259-BF0D-E6EC2B27D55D} => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6AD56E2-CD0E-427B-AD65-AD06DD5E69E1}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6AD56E2-CD0E-427B-AD65-AD06DD5E69E1}" => eliminado correctamente
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Ad-Aware Antivirus Scheduled Scan => no encontrado
"C:\windows\Tasks\Norton Security Scan for usuario.job" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PersistentRoutes\\0.0.0.0,0.0.0.0,192.168.1.1,-1" => eliminado correctamente
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\" => no encontrado
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => eliminado correctamente
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => no encontrado
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => no encontrado
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => eliminado correctamente
HKLM\Software\Classes\PROTOCOLS\Handler\dssrequest => no encontrado
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => no encontrado
C:\Users\usuario\AppData\Roaming\Mozilla\Firefox\Profiles\khtgc91x.default\Extensions\[email protected] => movido correctamente
"HKLM\Software\Mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}" => no encontrado
"C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi" => no encontrado
"HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc." => no encontrado
"C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll" => no encontrado
HKLM\SOFTWARE\Google\Chrome\Extensions\caljgklbbfbcjjanaijlacgncafpegll => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => no encontrado
"C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx" => no encontrado
HKLM\System\CurrentControlSet\Services\AviraOptimizerHost => eliminado correctamente
AviraOptimizerHost => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\AviraSecurity => eliminado correctamente
AviraSecurity => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Internet Claro. RunOuc => eliminado correctamente
Internet Claro. RunOuc => servicio eliminado correctamente
McAfee SiteAdvisor Service => servicio no encontrado.
McComponentHostService => servicio no encontrado.
mfesapsn => servicio no encontrado.
HKLM\System\CurrentControlSet\Services\BcmSqlStartupSvc => eliminado correctamente
BcmSqlStartupSvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\CLKMSVC10_3A60B698 => eliminado correctamente
CLKMSVC10_3A60B698 => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\CLKMSVC10_C3B3B687 => eliminado correctamente
CLKMSVC10_C3B3B687 => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\DriverService => eliminado correctamente
DriverService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\iATAgentService => eliminado correctamente
iATAgentService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\idealife Update Service => eliminado correctamente
idealife Update Service => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IGRS => eliminado correctamente
IGRS => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\IviRegMgr => eliminado correctamente
IviRegMgr => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nvUpdatusService => eliminado correctamente
nvUpdatusService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Oasis2Service => eliminado correctamente
Oasis2Service => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\PCCarerService => eliminado correctamente
PCCarerService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ReadyComm.DirectRouter => eliminado correctamente
ReadyComm.DirectRouter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\RichVideo => eliminado correctamente
RichVideo => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\RtLedService => eliminado correctamente
RtLedService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SBRE => eliminado correctamente
SBRE => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SeaPort => eliminado correctamente
SeaPort => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SoftwareService => eliminado correctamente
SoftwareService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\SQLWriter => eliminado correctamente
SQLWriter => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Stereo Service => eliminado correctamente
Stereo Service => servicio eliminado correctamente
"C:\windows\system32\Tasks\AdwCleaner_onReboot" => no encontrado
C:\Users\usuario\Downloads\esetonlinescanner.exe => movido correctamente
C:\Users\usuario\AppData\Local\Avira => movido correctamente

"C:\Program Files\Avira" carpeta mover:

No pudo ser movido "C:\Program Files\Avira" => Programado para moverse al reiniciar.

C:\Users\usuario\Downloads\avira_es_sptl1_1547264349-1594315571__pavws.exe => movido correctamente
C:\ProgramData\Avira => movido correctamente
C:\Program Files\Ad-Aware Antivirus => movido correctamente
"C:\windows\Tasks\Norton Security Scan for usuario.job" => no encontrado
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SystemSpeedupFilesMenu => eliminado correctamente
HKLM\Software\Classes\CLSID\{14cb2bd0-2375-3d10-9b5d-5e18865c8959} => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SystemSpeedupFoldersMenu => eliminado correctamente
HKLM\Software\Classes\CLSID\{700866bb-c8e9-3e71-b359-abb28baed0e8} => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\SystemSpeedupDesktopMenu => eliminado correctamente
HKLM\Software\Classes\CLSID\{0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => eliminado correctamente
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => eliminado correctamente
"BVTFilter" => eliminado correctamente
"BVTConsumer" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3FABD2DB-474C-4786-8AB9-E08F8D7D63DA}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F9D72F8-59CF-48DB-B145-60D0AD4AAFB9}" => no encontrado
"C:\Program Files\McAfee Security Scan" => no encontrado
C:\Program Files\McAfee => movido correctamente
"C:\PROGRA~1\NORTON~2" => no encontrado

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c

========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-4108848017-975247746-215137932-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4704954 B
Java, Flash, Steam htmlcache => 548 B
Windows/system/drivers => 14003309 B
Edge => 0 B
Chrome => 22489331 B
Firefox => 69393688 B
Opera => 140296 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 31247109 B
LocalService => 31247109 B
NetworkService => 31247109 B
usuario => 54864194 B

RecycleBin => 47455066 B
EmptyTemp: => 300.6 MB datos temporales Eliminados.

================================

Resultado de los archivos programados para mover (Modo de Inicio: Normal) (Fecha y Hora: 14-07-2020 22:46:01)

C:\Program Files\Avira => Se ha movido correctamente

==== Final  Fixlog 22:46:01 ====

Bueno la navegación ha mejorado un poco, el inicio de windows sigue lento, demora una eternidad xd

Hola @Angel99

En el reporte de FRST se puede ver que están con errores dos de sus servicios;

  • Fortinet virtual adapter

  • Fortinet SSL VPN Virtual Ethernet Adapter

Y menciona:

Este dispositivo esta deshabilitado

En el Administrador de dispositivos, haga clic en “Acción” y luego en “Habilitar dispositivo”. Esto inicia el asistente Habilitar dispositivo. Sigue las instrucciones.

Luego:

Ejecuta CCleaner >>> Pestaña Herramientas >>> Ventana “Inicio”

Presiona “Guardar a un Archivo de Texto”, pegas ese reporte en tu próximo mensaje.

Manual de CCleaner : Inicio (Muestra los programas que inician junto a Windows)

Salu2