Laptop se traba al abrir Chrome


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\sharepoint.com -> hxxps://comunidadunammx.sharepoint.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:25 - 2013-08-22 07:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ProgramData\Oracle\Java\javapath;C:\Python34\;C:\Python34\Scripts;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Acer\Remote Files\;C:\Program Files (x86)\Windows Live\Shared;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Control Panel\Desktop\\Wallpaper -> c:\users\user\pictures\wallpapers\965651007_preview_metro station screenshot.gif
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: QHActiveDefense => 
MSCONFIG\startupreg: DAEMON Tools Lite => "c:\program files (x86)\daemon tools lite\dtlite.exe" -autorun
MSCONFIG\startupreg: iTunesHelper => "c:\program files\itunes\ituneshelper.exe"
MSCONFIG\startupreg: Spotify => "c:\users\user\appdata\roaming\spotify\spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "c:\users\user\appdata\roaming\spotify\spotifywebhelper.exe"
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Skype"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\StartupFolder: => "QuickLook.lnk"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\StartupFolder: => "Enviar a OneNote.lnk"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "AirDroid 3"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "MiPhoneManager"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{151E05EF-5FB5-45B8-9043-162B08F7C96C}C:\program files (x86)\virtualtablet server\virtualtabletserver.exe] => (Allow) C:\program files (x86)\virtualtablet server\virtualtabletserver.exe (SunnysideSoft) [File not signed]
FirewallRules: [TCP Query User{94FF2958-32CA-4803-85E8-E5261C531FE7}C:\program files (x86)\virtualtablet server\virtualtabletserver.exe] => (Allow) C:\program files (x86)\virtualtablet server\virtualtabletserver.exe (SunnysideSoft) [File not signed]
FirewallRules: [UDP Query User{DC6BC967-E7FE-4030-9ACE-5D25192E9297}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{96AEA892-DA18-471B-98B1-0E2C8EF7FDAD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{BE5FC43C-147A-4F40-A3DC-9FD3EFBCF70D}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5BE93C37-D684-4560-8645-D8CEFC1AF627}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{294BC768-7A6C-419B-B6B5-8D82B7565CF7}] => (Block) C:\program files (x86)\sopcast\sopcast.exe (www.sopcast.com) [File not signed]
FirewallRules: [{E5A0B617-AC88-495C-84F6-078F62AC552F}] => (Block) C:\program files (x86)\sopcast\sopcast.exe (www.sopcast.com) [File not signed]
FirewallRules: [UDP Query User{1C437353-50E6-4DF8-8F93-97CE5D122CB7}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe (www.sopcast.com) [File not signed]
FirewallRules: [TCP Query User{8E7ED40C-A76A-4759-8471-C82283D70C9A}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe (www.sopcast.com) [File not signed]
FirewallRules: [{971CBC03-0942-4483-B3FD-42B47D626938}] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{3E0C50BF-2821-4B50-BF39-835137F2B58A}] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{EE2C2A09-B577-4152-AE11-64B2D58A147C}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [TCP Query User{DFEE202B-373A-4A38-8326-D3D198CE2802}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{4FE10DCF-FB6F-4D33-B1E0-F6A3A7A456D0}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1E15533A-EEA1-4FA3-A949-074F0472D6C4}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{79204862-403C-4B96-A9BF-4094A155C7A2}C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds.exe] => (Allow) C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [TCP Query User{05FAFFC4-00C2-4E89-AF97-FAA8C3BBC713}C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds.exe] => (Allow) C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [UDP Query User{016C1414-FF4D-479B-90E1-526735B181AD}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{AA8DCF9A-C960-4BE5-81B8-23A1764E1E61}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{D349BD03-3C6E-4D33-B331-0343D5407FDE}C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds_x1.exe] => (Allow) C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds_x1.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [TCP Query User{F916726E-DC21-489E-BD54-87EDED9AA966}C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds_x1.exe] => (Allow) C:\program files\lucasarts\star wars galactic battlegrounds\game\battlegrounds_x1.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [{BD12C5A0-CF29-4ED8-B19B-EB8ED92A42C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE69E437-B3BA-4E43-A972-E329CDE28986}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7956F3D3-E125-47AA-81A9-8829A62F8A1E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BD8A4C96-0767-46E2-9C0E-0D47116063BB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60C28BC2-E44E-4F8F-8D22-F97465611E8F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{E8ECA978-6048-404D-86A6-0FFDD9022DCC}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe (Acer Incorporated -> acer) [File not signed]
FirewallRules: [{A517B0FE-9D5E-403B-BF03-E5BDAAA09096}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe (Acer Incorporated -> acer) [File not signed]
FirewallRules: [{F2D40F51-0296-4B1E-B825-FC2F5CC575E8}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{95A18EF7-A113-4BAE-A808-04B8D35E050D}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{93931B73-91DE-4E70-8B3B-29ECD431D270}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe (Acer Incorporated -> acer) [File not signed]
FirewallRules: [{B41CDF5F-A045-4274-8810-A41F5DA2241A}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe (Acer Incorporated -> acer) [File not signed]
FirewallRules: [{B39D7532-0A00-46ED-970D-D236D955A5AD}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{39A0CB69-886F-49BA-A507-2DADBF965C37}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{9A75DD42-8941-4CC3-B81E-FABE8AC50035}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{DD8646C4-741A-41CA-9B56-58F8540DC7EA}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{4CA285DE-B558-4A95-80B3-F66DFC73E03D}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{9970AD58-2577-42FA-A076-674C96629C18}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{C66B7619-26D9-46E6-B88F-37088992511F}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{FA917D99-DEBA-467B-B985-202763E4A173}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{CAC8483E-26F6-427F-ABDF-9410F8096BC2}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{C32B0F4C-F4B9-4F71-BAE2-561D3EA704A7}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{860B75B6-4040-4200-A510-EA3B4ABED24C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7269C96D-9980-4653-9462-F6CB140139DB}] => (Allow) LPort=2869
FirewallRules: [{63105845-C48E-4C49-B93A-995E8A20A9F2}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{72B7B3C3-8F63-40F7-87DF-65DDE877917D}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{46116787-F643-45D4-8401-C5A312FB5A09}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO LIMITED -> Sand Studio)
FirewallRules: [{ADF58400-DE1B-4E77-B022-AB40889F9A70}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{461B54F8-92A2-49D1-A8CF-4991EFFA8AFD}] => (Allow) C:\Users\User\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [TCP Query User{FE12C3EC-7907-4448-B541-C30FC5113A7F}C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe] => (Allow) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [UDP Query User{EA6AFFE9-6B2E-42EE-8904-E99B175E94DB}C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe] => (Allow) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [{53E9A9CA-205C-4D90-A28C-2CA48BBC8797}] => (Block) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [{13771A9D-CA3C-4B08-BD73-E2D539769F25}] => (Block) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.es.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [TCP Query User{10D92EBA-172A-4049-891D-74A7A77D65DA}C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe] => (Allow) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [UDP Query User{2F9A9BCF-6360-4212-8782-AC5339D19DAA}C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe] => (Allow) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [{25BFAC64-8C5B-4B51-8C59-519D86C6E446}] => (Block) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [{219146B4-0292-4D91-A6A4-732D12534F9A}] => (Block) C:\users\user\downloads\suparc\suparc-multilang-v160715\suparc.exe (竞技世界(北京)网络技术有限公司 -> )
FirewallRules: [TCP Query User{F0821307-B633-460A-8FF7-3190E6688CB3}C:\users\user\downloads\fightcade\fightcade\fightcade.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\fightcade.exe () [File not signed]
FirewallRules: [UDP Query User{36CA307F-70A2-4C89-AE22-8049672CB157}C:\users\user\downloads\fightcade\fightcade\fightcade.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\fightcade.exe () [File not signed]
FirewallRules: [{17103E7E-183A-4E29-8242-E5CDC04C5B87}] => (Block) C:\users\user\downloads\fightcade\fightcade\fightcade.exe () [File not signed]
FirewallRules: [{A0524830-9B9F-438A-AFE1-70CE41A3E4BF}] => (Block) C:\users\user\downloads\fightcade\fightcade\fightcade.exe () [File not signed]
FirewallRules: [TCP Query User{74B01812-A4FF-4349-BB6D-14B0F281518B}C:\users\user\downloads\fightcade\fightcade\ggpofba.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\ggpofba.exe () [File not signed]
FirewallRules: [UDP Query User{8E8DD9D4-3B10-477C-9BDF-8C3D649680B3}C:\users\user\downloads\fightcade\fightcade\ggpofba.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\ggpofba.exe () [File not signed]
FirewallRules: [{32C0DD40-63C5-455E-A5C5-6DC8A322A14D}] => (Block) C:\users\user\downloads\fightcade\fightcade\ggpofba.exe () [File not signed]
FirewallRules: [{A2B74B80-8135-44C9-93AE-6E0FABAC8F24}] => (Block) C:\users\user\downloads\fightcade\fightcade\ggpofba.exe () [File not signed]
FirewallRules: [TCP Query User{0B879B59-6A8B-45BA-AF72-5C9F71477450}C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe (Team FB Alpha) [File not signed]
FirewallRules: [UDP Query User{6CED7B91-8F0D-4B41-A7C7-1210DB3491C2}C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe] => (Allow) C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe (Team FB Alpha) [File not signed]
FirewallRules: [{018CBC1D-F2C1-4274-A8B3-A984DBC06989}] => (Block) C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe (Team FB Alpha) [File not signed]
FirewallRules: [{D910020D-95CB-493F-AE8A-18F95219B41E}] => (Block) C:\users\user\downloads\fightcade\fightcade\ggpofba-ng.exe (Team FB Alpha) [File not signed]
FirewallRules: [{5F474968-2A93-436D-9E48-57F524117F4E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E953BA26-4954-4A74-A9C7-3C3246F6C930}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{796E7C87-4589-47B0-995E-9DC40FE778C6}] => (Block) LPort=445
FirewallRules: [{C9DB684A-8D86-4F36-B525-8D122D1BC354}] => (Block) LPort=445
FirewallRules: [{9DD9DA01-55A1-4155-B698-FF55A43C7DBE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe No File
FirewallRules: [{905DA503-C09C-4BEA-8741-3E4C93B4390F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe No File
FirewallRules: [{E8551A03-21FC-459E-A989-88C7B2282B8A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe No File
FirewallRules: [{A02B6218-5BCE-44CB-96FF-DEE2D3698D4C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe No File
FirewallRules: [{D1EF3D9C-7C5A-4892-A30D-574A2702437B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe No File
FirewallRules: [{DD8F7910-0EAE-4B29-A4A2-623F7A37B4EA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe No File
FirewallRules: [{6E21EF0C-34E1-4D9E-994C-866F400FE80C}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CEDA3612-D0AB-42AE-8B85-27D95B2427F7}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A2C24F26-2EAC-4311-BD11-0E0024C63947}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{E87A104A-2171-4447-BDF3-708BE98E5966}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{7C1A3AE5-5666-42E8-B172-9CD422880804}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F6F5D638-5563-4C4E-8996-FA0E9185AD1C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{712D94F5-6F80-4783-9CF0-BB32B686AD2F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{18126BB4-4C03-4514-BC3A-8087630C550B}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{A7329602-5468-42E8-A056-94EA38A9FF5C}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{D08A1FCE-B9F3-490E-91EB-AB3B8D094463}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{E0E15428-0AF8-47A3-8CD5-469C0DD32E77}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{203A79BD-27F8-4E02-948B-31ACC5F268C5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{3C2C27B3-4E5C-48E8-832E-DE2AF857D513}C:\program files (x86)\microsoft games\age of empires iii complete collection\age3y.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii complete collection\age3y.exe (Microsoft Corporation -> Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{F7C51EC1-96B8-4008-933F-B9316F881E38}C:\program files (x86)\microsoft games\age of empires iii complete collection\age3y.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii complete collection\age3y.exe (Microsoft Corporation -> Microsoft Corporation) [File not signed]
FirewallRules: [{B583D014-4D69-496C-8376-1ABB7C417BC0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{55850150-0919-4595-BF6B-A3C1B0683E66}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E19AB243-7618-416E-86AB-DE2AF137A1D0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B1B6D758-20FD-4154-A69C-F09EEFB5E069}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{B35538F3-6056-4FA7-9053-705BF898DC07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{08FB508F-9D2B-444D-B833-910639026307}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{06B8336D-1C70-4A3D-B0C8-225CEFEF7E3E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6C3BFDAD-AB45-4F85-964D-A620A9F1A642}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88E6D79D-E3C7-4FE5-93CA-C9E38CF4C6F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C1700A8A-78D7-4EED-B496-30C69A1A71B0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9DD7E43D-C5E4-438E-92C5-E48AF82A2C46}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9C0E0183-094B-408B-91EF-1F382A03037C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3F5884CE-6F15-476D-9F2A-298C1E9BB934}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F6ECF776-927E-4C41-BD37-9A0C531C7BD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BEB8C03D-0368-4636-8631-FED546E77295}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8B7C128F-9222-4D84-B6A3-91786DD4E0F9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6F1DFA41-ADAD-453E-9652-4F082DB10170}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C7DA89C6-C972-4B53-8348-433BDD6AFC39}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D2B0D629-5511-4CEE-89A4-CEB7B6D4CFC1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CE350B2A-039C-4CD7-9710-9F8EC5BAED82}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12094.104.41048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE821D5B-6629-4241-B6E0-1F4E1193E136}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

13-03-2019 14:28:04 Windows Update
22-03-2019 17:10:51 Punto de control programado
02-04-2019 21:26:42 Operación de restauración

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/05/2019 05:05:03 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (04/05/2019 05:05:03 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (04/05/2019 04:25:55 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/05/2019 04:18:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (04/04/2019 10:21:46 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.exe.Manifest".
No se encontró el ensamblado dependiente Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (04/04/2019 10:20:38 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (04/04/2019 10:06:21 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_OFF.

Error: (04/04/2019 10:00:22 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.


System errors:
=============
Error: (04/05/2019 05:00:18 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 05:00:14 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 05:00:11 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 05:00:07 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 05:00:03 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 05:00:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 04:59:56 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.

Error: (04/05/2019 04:59:52 PM) (Source: Disk) (EventID: 7) (User: )
Description: El dispositivo, \Device\Harddisk0\DR0, tiene un bloque defectuoso.


Windows Defender:
===================================
Date: 2019-04-04 02:52:52.997
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {8960DDAF-5724-49A3-B48C-B88109FA6562}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-04 00:34:04.352
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {29B8CF0A-1C15-4B86-BE27-57114622BEC1}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-03-21 18:31:58.363
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {CAD82F43-EC42-4370-B239-2283D8FA86F1}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-03-16 21:08:18.445
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {35F71818-A8B8-4800-A0B1-1FB89B848E50}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-03-15 17:24:30.874
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {AD31A460-8742-46FB-A622-E970E286794F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-04 00:51:12.803
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1117.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2019-04-03 21:47:45.532
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1079.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-04-03 21:37:31.009
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-03 07:25:05.783
Description: 
Antivirus de Windows Defender encontró un error al intentar cargar firmas e intentará revertirlas a un conjunto de firmas conocidas.
Firmas intentadas: Actual
Código de error: 0x80070003
Descripción del error: El sistema no puede encontrar la ruta especificada. 
Versión de firma: 0.0.0.0;0.0.0.0
Versión de motor: 0.0.0.0

Date: 2019-04-02 20:20:20.904
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1031.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x80240022
Descripción del error: El programa no puede buscar actualizaciones de definiciones. 

==================== Memory info =========================== 

Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 56%
Total physical RAM: 3977.98 MB
Available physical RAM: 1713.21 MB
Total Virtual: 5257.98 MB
Available Virtual: 2686.05 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:449.58 GB) (Free:195.55 GB) NTFS

\\?\Volume{34969e5a-8049-4502-a099-c14c7628a5ca}\ (RECOVERY) (Fixed) (Total:0.59 GB) (Free:0.28 GB) NTFS
\\?\Volume{e499eac9-fcfe-44bf-a59b-ab19225dbb5d}\ (Push Button Reset) (Fixed) (Total:15.18 GB) (Free:1.53 GB) NTFS
\\?\Volume{4841193b-d5d2-44f4-af01-586383d10ec8}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 869FF045)

Partition: GPT.

==================== End of Addition.txt ============================

Hola @Paracitbizkit

Hay mucha basura/errores en ese equipo incluso algún problema/ sector defectuoso en el disco.

Vamos por pasos:

Pudiste hacer la restauración de Google Chrome que te indique anteriormente?

Realiza lo siguiente:

1.- Desinstala con Revo Uninstaller en su Modo Avanzado:

Amazon 1Button App y Popcorn Time

Manual de Revo Uninstaller.

Ademas tienes dos lectores de PDF como Foxit Reader y Adobe Reader, desinstale uno de preferencia Adobe con Revo Uninstaller también.

Luego:

2.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

3.- Desactiva Temporalmente tu antivirus.

4.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001 ->
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit Information Technology -> IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
S2 Hamachi2Svc; "C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s [X]
Amazon 1Button App (HKLM-x32\...\{FF0A904E-8827-4F6E-9A59-900D4C997AD1}) (Version: 1.0.8 - Amazon) <==== ATTENTION
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.0.9.0 - Popcorn Time) <==== ATTENTION
Popcorn Time (HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\Popcorn Time) (Version:  - Popcorn Official) <==== ATTENTION
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
Task: {00EEF922-4535-43DB-8538-A13B74F88E0C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {1F6F6794-B496-47E5-9ADC-83E3D08F8B19} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {27E20858-9774-478D-B4E2-7D16D035A795} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {29ACDE10-D322-4F64-B6C5-B7671DFC36F8} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {346A7B55-CDDC-4D08-82BE-F5DBE23C3926} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {78606FDF-7E5F-40BB-BCF8-44044342B819} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {83D562AE-6449-4C6B-A519-2249C7949B8A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {85197FCB-D2D0-4A36-9E3F-40B74BF16F68} - \WPD\SqmUpload_S-1-5-21-3847050211-4158280976-3266699917-1001 -> No File <==== ATTENTION
Task: {85BC0FBF-25BB-4F98-84D3-A5C7C523FBC2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {AF936109-EEB7-4530-92E9-FCEA4BEC67BA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {C806F0FA-61B7-451E-9BC3-2E0F9134A988} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CF715786-B156-48C4-8DAB-8BF151EBC83D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {EFE677A9-3C55-44C9-B967-C290564CCF30} - System32\Tasks\{4179FCE8-4302-4273-885E-1B81C28B0D14} => C:\WINDOWS\system32\pcalua.exe -a F:\alice.exe -d F:\
Task: {F142FA49-64F4-4FE6-AE08-A16B53BB7E33} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
2019-01-15 18:02 - 2019-01-15 18:02 - 000095744 _____ () [File not signed] C:\WINDOWS\Womtrust.dll
2018-02-16 12:58 - 2018-02-16 12:58 - 000598528 _____ () [File not signed] C:\ProgramData\MEGAsync\ShellExtX64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\python27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000113664 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_ctypes.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000080896 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\bz2.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001792512 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_hashlib.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000128512 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32api.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000137728 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pywintypes27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000548864 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pythoncom27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000689664 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\unicodedata.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000438784 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32com.shell.shell.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001489408 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._core_.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_net_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_core_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_adv_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 001007104 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._gdi_.pyd
2019-04-05 16:21 - 2019-04-05 16:22 - 001039872 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._windows_.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_html_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 001325056 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._controls_.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000916992 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._misc_.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001084416 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pysqlite2._sqlite.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000149504 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32file.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000136192 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32security.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000007680 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\hashobjs_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020992 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\thumbnails_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000118784 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\usb_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000047616 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_socket.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 002224640 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_ssl.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000014848 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\common.time34.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000023040 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32event.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000034304 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.conditional.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020480 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.winwrap.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000110080 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.volumes.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000223232 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32gui.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000173568 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_elementtree.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000169472 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pyexpat.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000048128 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32inet.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000103424 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._html2.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_webview_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000046080 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_psutil_windows.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000011776 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32crypt.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000301568 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\PIL._imaging.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000032256 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_multiprocessing.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 005752320 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\cello.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000026112 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_yappi.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000044032 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32process.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000027648 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32pipe.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000010752 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\select.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000029696 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32pdh.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000038400 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.connectivity.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000073216 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.device_monitor.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020480 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32profile.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000026624 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32ts.pyd
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas .

Salu2.

Hola, @SanMar

Sí pude hacer la restauración de Google Chrome siguiendo el enlace que me habías dicho, así como desinstalar los programas que me habías dicho.

Te dejo el reporte que me pediste:

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by User (06-04-2019 00:59:51) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User & El Papu & adria & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001 ->
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit Information Technology -> IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle America, Inc. -> Oracle Corporation)
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
S2 Hamachi2Svc; "C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s [X]
Amazon 1Button App (HKLM-x32\...\{FF0A904E-8827-4F6E-9A59-900D4C997AD1}) (Version: 1.0.8 - Amazon) <==== ATTENTION
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.0.9.0 - Popcorn Time) <==== ATTENTION
Popcorn Time (HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\Popcorn Time) (Version:  - Popcorn Official) <==== ATTENTION
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
Task: {00EEF922-4535-43DB-8538-A13B74F88E0C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {1F6F6794-B496-47E5-9ADC-83E3D08F8B19} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {27E20858-9774-478D-B4E2-7D16D035A795} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {29ACDE10-D322-4F64-B6C5-B7671DFC36F8} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {346A7B55-CDDC-4D08-82BE-F5DBE23C3926} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {78606FDF-7E5F-40BB-BCF8-44044342B819} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {83D562AE-6449-4C6B-A519-2249C7949B8A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {85197FCB-D2D0-4A36-9E3F-40B74BF16F68} - \WPD\SqmUpload_S-1-5-21-3847050211-4158280976-3266699917-1001 -> No File <==== ATTENTION
Task: {85BC0FBF-25BB-4F98-84D3-A5C7C523FBC2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {AF936109-EEB7-4530-92E9-FCEA4BEC67BA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {C806F0FA-61B7-451E-9BC3-2E0F9134A988} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CF715786-B156-48C4-8DAB-8BF151EBC83D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {EFE677A9-3C55-44C9-B967-C290564CCF30} - System32\Tasks\{4179FCE8-4302-4273-885E-1B81C28B0D14} => C:\WINDOWS\system32\pcalua.exe -a F:\alice.exe -d F:\
Task: {F142FA49-64F4-4FE6-AE08-A16B53BB7E33} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
2019-01-15 18:02 - 2019-01-15 18:02 - 000095744 _____ () [File not signed] C:\WINDOWS\Womtrust.dll
2018-02-16 12:58 - 2018-02-16 12:58 - 000598528 _____ () [File not signed] C:\ProgramData\MEGAsync\ShellExtX64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\python27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000113664 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_ctypes.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000080896 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\bz2.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001792512 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_hashlib.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000128512 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32api.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000137728 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pywintypes27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000548864 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pythoncom27.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000689664 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\unicodedata.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000438784 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32com.shell.shell.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001489408 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._core_.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_net_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_core_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_vc90_x64.dll
2019-04-05 16:22 - 2019-04-05 16:22 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_adv_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 001007104 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._gdi_.pyd
2019-04-05 16:21 - 2019-04-05 16:22 - 001039872 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._windows_.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_html_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 001325056 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._controls_.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000916992 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._misc_.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 001084416 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pysqlite2._sqlite.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000149504 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32file.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000136192 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32security.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000007680 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\hashobjs_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020992 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\thumbnails_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000118784 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\usb_ext.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000047616 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_socket.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 002224640 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_ssl.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000014848 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\common.time34.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000023040 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32event.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000034304 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.conditional.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020480 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.winwrap.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000110080 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.volumes.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000223232 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32gui.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000173568 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_elementtree.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000169472 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\pyexpat.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000048128 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32inet.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000103424 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wx._html2.pyd
2019-04-05 16:22 - 2019-04-05 16:22 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_webview_vc90_x64.dll
2019-04-05 16:21 - 2019-04-05 16:21 - 000046080 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_psutil_windows.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000011776 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32crypt.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000301568 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\PIL._imaging.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000032256 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_multiprocessing.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 005752320 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\cello.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000026112 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\_yappi.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000044032 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32process.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000027648 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32pipe.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000010752 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\select.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000029696 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32pdh.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000038400 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.connectivity.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000073216 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\windows.device_monitor.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000020480 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32profile.pyd
2019-04-05 16:21 - 2019-04-05 16:21 - 000026624 _____ () [File not signed] C:\Users\User\AppData\Local\Temp\_MEI84922\win32ts.pyd
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\SearchScopes: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001 ->\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SearchScopes: HKU\S-1-5-21-3847050211-4158280976-3266699917-1001 ->" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => removed successfully
HKLM\Software\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-11] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll => moved successfully
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-11] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle America, Inc." => not found
C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle America, Inc." => not found
C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll => moved successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje => removed successfully
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd => removed successfully
HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh => removed successfully
HKLM\System\CurrentControlSet\Services\Hamachi2Svc => removed successfully
Hamachi2Svc => service removed successfully
Amazon 1Button App (HKLM-x32\...\{FF0A904E-8827-4F6E-9A59-900D4C997AD1}) (Version: 1.0.8 - Amazon) <==== ATTENTION => Error: No automatic fix found for this entry.
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.0.9.0 - Popcorn Time) <==== ATTENTION => Error: No automatic fix found for this entry.
Popcorn Time (HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\...\Popcorn Time) (Version:  - Popcorn Official) <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00EEF922-4535-43DB-8538-A13B74F88E0C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00EEF922-4535-43DB-8538-A13B74F88E0C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1F6F6794-B496-47E5-9ADC-83E3D08F8B19}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F6F6794-B496-47E5-9ADC-83E3D08F8B19}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27E20858-9774-478D-B4E2-7D16D035A795}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27E20858-9774-478D-B4E2-7D16D035A795}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29ACDE10-D322-4F64-B6C5-B7671DFC36F8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29ACDE10-D322-4F64-B6C5-B7671DFC36F8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{346A7B55-CDDC-4D08-82BE-F5DBE23C3926}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{346A7B55-CDDC-4D08-82BE-F5DBE23C3926}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78606FDF-7E5F-40BB-BCF8-44044342B819}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78606FDF-7E5F-40BB-BCF8-44044342B819}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{83D562AE-6449-4C6B-A519-2249C7949B8A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83D562AE-6449-4C6B-A519-2249C7949B8A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85197FCB-D2D0-4A36-9E3F-40B74BF16F68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85197FCB-D2D0-4A36-9E3F-40B74BF16F68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3847050211-4158280976-3266699917-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85BC0FBF-25BB-4F98-84D3-A5C7C523FBC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85BC0FBF-25BB-4F98-84D3-A5C7C523FBC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF936109-EEB7-4530-92E9-FCEA4BEC67BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF936109-EEB7-4530-92E9-FCEA4BEC67BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C806F0FA-61B7-451E-9BC3-2E0F9134A988}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C806F0FA-61B7-451E-9BC3-2E0F9134A988}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CF715786-B156-48C4-8DAB-8BF151EBC83D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF715786-B156-48C4-8DAB-8BF151EBC83D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EFE677A9-3C55-44C9-B967-C290564CCF30}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EFE677A9-3C55-44C9-B967-C290564CCF30}" => removed successfully
C:\WINDOWS\System32\Tasks\{4179FCE8-4302-4273-885E-1B81C28B0D14} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4179FCE8-4302-4273-885E-1B81C28B0D14}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F142FA49-64F4-4FE6-AE08-A16B53BB7E33}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F142FA49-64F4-4FE6-AE08-A16B53BB7E33}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
C:\WINDOWS\Womtrust.dll => moved successfully
C:\ProgramData\MEGAsync\ShellExtX64.dll => moved successfully
"C:\Users\User\AppData\Local\Temp\_MEI84922\python27.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_ctypes.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\bz2.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_hashlib.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32api.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\pywintypes27.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\pythoncom27.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\unicodedata.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32com.shell.shell.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._core_.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_net_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_core_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxbase30u_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_adv_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._gdi_.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._windows_.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_html_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._controls_.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._misc_.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\pysqlite2._sqlite.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32file.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32security.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\hashobjs_ext.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\thumbnails_ext.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\usb_ext.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_socket.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_ssl.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\common.time34.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32event.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\windows.conditional.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\windows.winwrap.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\windows.volumes.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32gui.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_elementtree.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\pyexpat.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32inet.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wx._html2.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\wxmsw30u_webview_vc90_x64.dll" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_psutil_windows.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32crypt.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\PIL._imaging.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_multiprocessing.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\cello.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\_yappi.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32process.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32pipe.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\select.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32pdh.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\windows.connectivity.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\windows.device_monitor.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32profile.pyd" => not found
"C:\Users\User\AppData\Local\Temp\_MEI84922\win32ts.pyd" => not found
"HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\CCleaner Monitoring" => removed successfully
"HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring" => not found

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en VPN - VPN Client mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
Error al renovar la interfaz Hamachi: no se puede establecer contacto con el
servidor DHCP. La solicitud super¢ el tiempo de espera.
Error al renovar la interfaz Ethernet 2: no se puede establecer contacto con el
servidor DHCP. La solicitud super¢ el tiempo de espera.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 16 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 17 mientras los medios
est‚n desconectados.

Adaptador desconocido VPN - VPN Client:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Hamachi:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Direcci¢n IPv6 . . . . . . . . . . : 2620:9b::195e:1f30
   V¡nculo: direcci¢n IPv6 local. . . : fe80::98e6:c96c:ccc4:3c%10
   Puerta de enlace predeterminada . . . . . : 2620:9b::1900:1
                                       25.0.0.1

Adaptador de Ethernet Ethernet 2:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Direcci¢n IPv6 . . . . . . . . . . : 2620:9b::1944:1044
   V¡nculo: direcci¢n IPv6 local. . . : fe80::d5ae:ee8e:840a:3d39%5
   Puerta de enlace predeterminada . . . . . : 2620:9b::1900:1
                                       25.0.0.1

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 16:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 17:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::6894:6a54:a411:d27f%22
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.100.10
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : fe80::1%22
                                       192.168.100.1

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {D5C23524-19A7-47F6-8977-B76B104F8FD7}.
0 out of 1 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3847050211-4158280976-3266699917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 34103145 B
Java, Flash, Steam htmlcache => 1080 B
Windows/system/drivers => 54558028 B
Edge => 9461004 B
Chrome => 26044586 B
Firefox => 18957468 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 9676 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 8820 B
NetworkService => 0 B
User => 232188286 B
El Papu => 63592686 B
adria => 37262731 B
DefaultAppPool => 0 B

RecycleBin => 77848322 B
EmptyTemp: => 535.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 01:06:56 ====

Hola @Paracitbizkit

Perfecto.

Deberías comentarnos ahora como sigue el problema, que tal va tu navegador??

Salu2

Por el momento ya no se me traba como antes, solamente tarda un poco en iniciar, pero fuera de eso todo bien. Ya no me traba la laptop a la hora de abrir Chrome. :slight_smile:

Hola @Paracitbizkit

Realiza los pasos del tercer método de esta guía para chequear tu disco:

Como realizar una comprobación de disco?

Nos comentas.

Salu2

Hola, @SanMar He puesto a hacer el CHKDSK con el método tres que me dijiste pero creo que se ha trabado porque lleva unas 3 hrs en 15%, y eso que no apreté nada, como lo indica la guía.

Hola @Paracitbizkit

Ups que pena, detén el proceso prueba reiniciar.

Y luego prueba con:

Hard Disk Sentinel

  • Descarga Hard Disk Sentinel Professional Trial v5.01 (ZIP) de http://www.hdsentinel.com/download.php
  • Descomprime el zip a una carpeta o ubicación de fácil acceso (como por ejemplo el escritorio) y ejecútalo.
  • Adjunta en tu próxima respuesta una captura de pantalla, donde se aprecie la pantalla principal de este programa, es decir, abre el programa y captura la primera pantalla que te dé. No des clic en ninguna opción dentro de él.

Salu2

Hola, @SanMar,

Esta es la captura de pantalla que me pediste:

¡Saludos! Y muchas gracias por la ayuda que me estás brindando. :slight_smile:

Hola @Paracitbizkit

Si bien la Performance es excelente el estado de salud del disco esta al 50%.

Pero como yo no soy experta en Hardware le pediremos asesoramiento sobre este punto al compañero @frica para ver que te recomienda con ese disco.


Mientras mejoremos el inicio:

1.- Ejecuta CCleaner >>> Pestaña Herramientas >>> Ventana “Inicio”

Presiona “Guardar a un Archivo de Texto”, pegas ese reporte en tu próximo mensaje.

Manual de CCleaner : Inicio (Muestra los programas que inician junto a Windows)

2.- Luego:

  • Presionas las teclas Windows + R
  • En la ventana que se abre escribes msconfig
  • En la pestaña arranque en donde dice Tiempo de Espera escribe 15 (Segundos)
  • Aplicar - Aceptar Reiniciar para que se apliquen los cambios.

Nos comentas.

Salu2.

Hola, @SanMar,

Te paso el reporte que me pediste del CCleaner:

 |No|HKCU:Run|AirDroid 3|Sand Studio|C:\Program Files (x86)\AirDroid\AirDroid.exe /start|
|---|---|---|---|---|
|No|HKCU:Run|BingSvc|© 2015 Microsoft Corporation|C:\Users\User\AppData\Local\Microsoft\BingSvc\BingSvc.exe|
|No|HKCU:Run|CCleaner Smart Cleaning|Piriform Software Ltd|"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR|
|No|HKCU:Run|DAEMON Tools Lite||"c:\program files (x86)\daemon tools lite\dtlite.exe" -autorun|
|No|HKCU:Run|Discord|Discord Inc.|C:\Users\User\AppData\Local\Discord\app-0.0.304\Discord.exe|
|Si|HKCU:Run|GoogleDriveSync|Google Inc|"C:\Program Files\Google\Drive\googledrivesync.exe" /autostart|
|No|HKCU:Run|OneDrive|Microsoft Corporation|"C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background|
|No|HKCU:Run|Spotify||"c:\users\user\appdata\roaming\spotify\spotify.exe" -autostart -minimized|
|No|HKCU:Run|Spotify Web Helper||"c:\users\user\appdata\roaming\spotify\spotifywebhelper.exe"|
|No|HKLM:Run|Dropbox|Dropbox, Inc.|"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup|
|No|HKLM:Run|iTunesHelper||"c:\program files\itunes\ituneshelper.exe"|
|No|HKLM:Run|SecurityHealth|Microsoft Corporation|%ProgramFiles%\Windows Defender\MSASCuiL.exe|
|No|HKLM:Run|SoftEther VPN Client UI Helper|SoftEther VPN Project at University of Tsukuba, Japan.|"C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe" /uihelp|
|No|Startup Common|SoftEther VPN Client Manager Startup.lnk|SoftEther VPN Project at University of Tsukuba, Japan.|C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe|
|No|Startup User|Enviar a OneNote.lnk|Microsoft Corporation|C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE|
|No|Startup User|MEGAsync.lnk|Mega Limited|C:\ProgramData\MEGAsync\MEGAsync.exe|
|No|Startup User|QuickLook.lnk|pooi.moe|C:\Users\User\AppData\Local\Programs\QuickLook\QuickLook.exe|

¡Saludos!

Hola @Paracitbizkit

Ccleaner esta perfecto con todas las entradas desactivadas.

Luego de un par de reinicios nos comentas como va, mientras esperamos el comentario del compañero por tu disco.

Como enlace de Interés ya que usas Windows Defender como Av, te dejo su Manual para que puedas sacarle el mayor provecho:

Salu2.:+1:

1 me gusta

Ok. ¡Muchísimas gracias por tu ayuda, @SanMar! De verdad te lo agradezco. :smiley:

1 me gusta

Hola @Paracitbizkit

Gracias a ti por confiar en InfoSpyware!!!

Casi se me olvida, mientras esperamos, elimina las herramientas utilizadas:

Descargas >> Delfix, a tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >> “Ejecutar como Administrador”)
  • Marca las casilla Remove disinfection tools y Purgue Sistem Restore
  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), lo pegas en tu próxima respuesta.

Salu2.

Hola, @SanMar

Te dejo el reporte que me pediste:

 # DelFix v1.013 - Logfile created 07/04/2019 at 23:24:08
# Updated 17/04/2016 by Xplode
# Username : User - PC
# Operating System : Windows 10 Home  (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\User\Desktop\Addition.txt
Deleted : C:\Users\User\Desktop\AdwCleaner[C00].txt
Deleted : C:\Users\User\Desktop\Fixlog.txt
Deleted : C:\Users\User\Desktop\FRST.txt
Deleted : C:\Users\User\Desktop\FRST64.exe

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########

Con permiso @SanMar.

He visto el Tema y el pantallazo de Hard Disk Sentinel. No me gusta el informe que saca.

Su disco tiene muchos sectores pendientes (weak sectors) y estos pueden causarle problemas en el funcionamiento de su equipo (lentitud, problemas al iniciar, problemas al acceder a ficheros y carpetas, problemas al ejecutar algún programa, etc) ya que son sectores que no pudieron ser leidos en una ocasión anterior. No es fácil tener posibilidades de reparar estos problemas sin recurrir a un formateo a bajo nivel (“zero-fill”); o un test de escritura (destructivo) usando ciertos patrones de escritura (sólo posible con programas de pago). Aún así, los sectores pendientes son muchos y sospecho que la superficie magnética de su disco y/o cabezas de lectura escritura están en mal estado. Con frecuencia estos problemas de sectores débiles no se deben a un fallo físico en la superficie, sino a problemas de conexionados. Pero en tu caso el SMART del disco no ha registrado ningún problema de este tipo.

Si quieres más información sobre qué son los sectores en un disco duro, y concretamente los sectores pendientes (y otro tipo de problemas) puedes leer el mensaje que escribí hace un tiempo: Sectores de un disco y sus errores.

Vamos a ver si podemos hacer algo sin recurrir a formatear el PC. Pero te aconsejo que vayas pensando sí los problemas que estás sufriendo son lo suficientemente importantes, entonces tendrás que decidir si formatear a “bajo nivel”. Puede que incluso así no logremos estabilizar el disco duro y tengas que plantearte comprar otro disco.

Haremos un test de superficie con una simple lectura. Con ello podremos revelar problemas ocultos en sectores que aún no han sido leidos, o incluso restaurar a nuevo los sectores pendientes.

Uso de HDD Tune Pro

HDD Tune Pro, test de superficie

Bájate el programa gratuito HDD Tune Pro y vamos a hacer un test de superficie. Con la versión “Free Trial” (de prueba gratuita) es suficiente.

Ejecútalo y sigue estos pasos:

  1. De la lista desplegable, selecciona el disco duro que te da problema

  2. Haz clic en la pestaña “Error Scan” .

  3. Pulsar el botón “Start” .

  1. Cuando finalice me envías un pantallazo de la pestaña “Error Scan”.

No hagas nada con el PC mientras esté escaneando el disco

Instrucciones sobre Cómo insertar una imagen

Hola, @frica

Te dejo la captura de pantalla que me pediste del HD Tune Pro:

Gracias y saludos!

Gracias! Ahora vuelve a ejecutar Hard Disk Sentinel y enviame un pantallazo. A ver si ha cambiado algo la situación (no soy optimista).

Aquí está la captura de pantalla del Hard Disk Sentinel que me pediste, @frica :

Saludos!

Bueno la situación ha mejorado levemente (no esperaba más) y de los 1656 sectores débiles ha bajado a 1584. Este descenso se habrá producido porque durante el test de superficie, el cual es un test de lectura de sectores del disco, alguno de estos sectores marcados como “pending/weak sector” ha mostrado una lectura normal y por tanto el firmware del disco duro los ha sacado de la lista de “pending sectors”. Pero es probable que en un corto o medio plazo estos números varíen, puede ser que el número de “pending sectors” decrezca o crezca.

¿solución? Pues podríamos intentar varias cosas:

1) Usar tests especiales no destructivos** de programas de pago** (Hard Disk Sentinel por ejemplo) o usar otros softwares como HDDRegenerator (no me gusta para este tipo de problemas). Pero son tanto “pending/weak sectors” que no soy nada optimista de que esto solucione tu problema.

2) Otra opción podría intentar formatear tu disco a “bajo nivel”. Realmente sería un proceso de escritura “zero fill” más de un formateo a bajo nivel. Hay programas gratuitos que pueden hacer esto. Bien es cierto que la versión de pago de Hard Disk Sentinel tiene un test como este con posibilidad de usar patrones de escritura y configuración que permiten aumentar posibilidades de solucionar tu problema. De nuevo la enorme cantidad de sectores afectados me hace pensar que no será fácil llegar a u na solución.

3) Utilizar el comando CHKDSK que si bien no va a solucionar los problemas de los sectores afectados sí podría sacarlos de circulación marcándolos como malos y guardándolos en un fichero oculto especial llamado $BADCLUS. Eso quizá haga que alarges un poco las condiciones de usabilidad de tu disco.

Por favor necesito que me digas si es posible tomar la opción (2) la del formateo u optamos por el comando CHKDSK. No obstante te aconsejo que vayas planteándote mirar discos duros por si acaso necesitarás de uno nuevo (cosa probable).