No puedo borrar programas

Hola!

Cuando intento borrar programas desde el panel de control el sistema se bloquea y no activa el desinstalador. Además no me deja actualizar programas como java. Se queda colgado y tengo que usar el administrador de tareas para que al menos deje la tarea que está haciendo. Tampoco me deja ver videos en yotube, supongo que por la versión del java.

He intentado restarurar una copia de seguridad del sistema pero los problemas vuelven. He seguido vuestra guia de eliminación de malwares pero al activar el iexplorer.exe me pide que lo active siendo administrador y no me deja.

Por favor, si alguien me pudiera ayudar os lo agradecería enormemente.

  • Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.

  • En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.


Descarga Hard Disk Sentinel (te recomiendo la version portable), lo ejecutas y vas a Report > SaveTXTReport y guardas el reporte.

Me pegas el log

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06-09-2020
Ejecutado por David GP (administrador) sobre DAVIDGP-PC (Dell Inc. Inspiron N5030) (08-09-2020 19:42:47)
Ejecutado desde C:\Users\David GP\Desktop
Perfiles cargados: David GP
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: FF)
Modo de Inicio: Safe Mode (minimal)
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [00PCTFW] => C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe [2672600 2011-04-07] (PC Tools -> PC Tools)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Run: [TouchFreeze] => C:\Program Files (x86)\TouchFreeze\TouchFreeze.exe [45056 2005-04-29] () [Archivo no firmado]
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Run: [Spotify] => C:\Users\David GP\AppData\Roaming\Spotify\Spotify.exe [24266128 2018-07-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Run: [Spotify Web Helper] => C:\Users\David GP\AppData\Roaming\Spotify\SpotifyWebHelper.exe [774544 2018-07-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\SYSTEM32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.83\Installer\chrmstp.exe [2020-09-08] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\84.0.5270.105\Installer\chrmstp.exe [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
AppInit_DLLs-x32: c:\progra~3\browse~1\261095~1.52\{c16c1~1\browse~1.dll => Ningún archivo
IFEO\iastorui.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere_launcher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\pcdlauncher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\uninstaller.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk [2011-01-25]
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation -> Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk [2011-01-25]
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation -> Stardock Corporation)
GroupPolicyScripts-x32: Restricción <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {033C24CC-6CAD-4C10-92D1-CC28ACFF6F94} - System32\Tasks\{028CFBCC-9ED7-47AF-BE50-70A28C3EAC2B} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Desktop"
Task: {0FAB462C-8F3F-4800-8C4C-04C30263A478} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {119FA930-7FD4-4175-84BC-C64D88C419BC} - System32\Tasks\{47A647DD-C1F7-4640-973E-4FA3B766BA9C} => C:\Windows\system32\pcalua.exe -a D:\SETUP.EXE -d D:\
Task: {161CBD90-E4D7-4417-9347-DF8D069DA893} - System32\Tasks\{C0C9519D-F540-411F-8929-959030ED8613} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
Task: {21CD415D-D9F7-4574-878E-09A55AC4AC21} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-28] (AVAST Software s.r.o. -> AVAST Software)
Task: {29F9BA73-6489-494A-BCC5-F215D9B15125} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1963392 2020-07-28] (Avast Software s.r.o. -> AVAST Software)
Task: {3EFFAA17-5D68-456D-A17E-CECA3BF5104D} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {417CEE58-0597-45B1-B9FA-913C54E4BF81} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {4194734F-DF37-4C41-AE19-EEF197997C31} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {424675C5-3F08-49C0-B87D-FC3776B68209} - System32\Tasks\{A01413AD-4863-4009-830D-A180A4917270} => C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
Task: {4346891E-8F1A-41E8-94B0-9D214462A85C} - System32\Tasks\{7801FB28-5C7C-4873-8C16-12E67EDAB900} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Downloads\OutlookConnector.exe" -d "C:\Users\David GP\Downloads"
Task: {440A718C-118C-410E-979A-3535722E6C41} - System32\Tasks\{E86D45AC-745E-4CEE-988C-B6B8A0A17DF7} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\Yugioh power of chaos yugi the destiny\dabytr2.exe" -d "C:\Users\David GP\Desktop\Yugioh power of chaos yugi the destiny"
Task: {509195AE-7A6B-486C-9A75-324188F8CD42} - System32\Tasks\{8ACF6493-1A48-42C4-AF38-408A6DF59DD2} => C:\Windows\system32\pcalua.exe -a "C:\program files (x86)\steam\steamapps\common\alien swarm\bin\addoninstaller.exe" -d "c:\program files (x86)\steam\steamapps\common\alien swarm" -c /register
Task: {535A3C24-381C-4C16-A6D7-5F17DB347C17} - System32\Tasks\{1453BDDA-E1CC-40DB-9463-898186F8082A} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\AvidFreeDV_1.6.1\Installers\AvidFreeDV\Disk1\setup.exe" -d "C:\Users\David GP\Desktop\AvidFreeDV_1.6.1\Installers\AvidFreeDV\Disk1"
Task: {569916C2-03A6-49D4-8FB3-BB426EFF4582} - System32\Tasks\G2MUploadTask-S-1-5-21-2756063190-210330184-3870898647-1001 => C:\Users\David GP\AppData\Local\Citrix\GoToMeeting\7155\g2mupload.exe [32320 2017-07-05] (LogMeIn, Inc. -> Citrix Online, a division of Citrix Systems, Inc.)
Task: {5AEE8168-364E-4DBD-B7FA-4CD62B60DCD7} - System32\Tasks\{BF5AA4D8-E4EE-45E1-B3F5-3DFE90EBD935} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
Task: {5B9026C1-2935-436A-BCBF-9B9A74D89193} - System32\Tasks\{54109300-76BC-46FC-BD86-1DCD33D76754} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\Yugioh power of chaos yugi the destiny\RegSetup.exe" -d "C:\Users\David GP\Desktop\Yugioh power of chaos yugi the destiny"
Task: {5FA2C890-5B51-4FB5-89FB-C99B51118439} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6158A5BE-20A8-408D-8B96-0FFF7B204465} - System32\Tasks\{64C824CC-9B14-4B4C-88C7-8FFACA04F44D} => C:\Windows\system32\pcalua.exe -a D:\UBISETUP.EXE -d D:\
Task: {64586963-B7B8-4AED-B9D8-20628E48069F} - System32\Tasks\{505684C3-0B82-4989-8235-98F6DE5DD81F} => C:\Windows\system32\pcalua.exe -a "C:\Splinter cell 3\setup.exe" -d "C:\Splinter cell 3"
Task: {6A762ED2-2DB1-4038-A771-A12F8255F153} - System32\Tasks\{F78DC087-29B5-4FA1-A84B-E24E020B7695} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
Task: {6B05EA62-EDBA-4835-8037-43BEA36824C9} - System32\Tasks\{2920C326-0C17-45B9-BB0F-5C566EABEC21} => C:\Program Files (x86)\InternetEverywhere\InternetEverywhere.exe [1440712 2011-05-19] (WebToGo Mobiles Internet GmbH -> WebToGo Mobiles Internet GmbH)
Task: {70DF2E76-8133-4798-83C8-0967EFC7DCFA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2756063190-210330184-3870898647-1001UA => C:\Users\David GP\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {73194E80-65A1-4223-85F6-560D4BC4EEEF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-08] (Adobe Inc. -> Adobe)
Task: {73B081C4-9A6E-4C75-9E82-F15357252AFD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1963392 2020-07-28] (Avast Software s.r.o. -> AVAST Software)
Task: {75A0D200-7F88-42E7-B90E-6B5A176D62EC} - System32\Tasks\{C014B790-3470-4792-9ABD-523790533543} => C:\Program Files (x86)\KAPITALSIN\ASSASSINS CREED\AssassinsCreed_Launcher.exe
Task: {79C477C9-6F5D-4AC5-98D8-C9D8DA26D655} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2756063190-210330184-3870898647-1001Core => C:\Users\David GP\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {7AFE0EF1-30D0-47DC-BB49-4BCB450310C4} - System32\Tasks\PCDEventLauncher => C:\Program Files\Dell Support Center\sessionchecker.exe [362312 2010-08-06] (Dell Inc -> )
Task: {847834F4-398D-44E5-A9BD-17DD38FCDEEB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-17] (Adobe Inc. -> Adobe)
Task: {8C2C64AC-5741-43B5-8A86-0EB6F7E7786C} - System32\Tasks\{31F2BD49-4D82-43B4-9C9C-1691A191B24B} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz5234\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCIÓN
Task: {8F6F7D11-C6F6-447D-A142-B4E2623CD6A0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-03-18] (Avast Software s.r.o. -> Avast Software)
Task: {930F6CCC-9BA6-4729-9FAC-2784E4CEAAFC} - System32\Tasks\{9C158BBC-6A92-4959-8F86-B9FA79F4E396} => C:\Windows\system32\pcalua.exe -a "F:\Update y Crack\MaxPayne2v101.exe" -d "F:\Update y Crack"
Task: {9A45F2A7-0A9F-4012-A832-C08E480F4E68} - System32\Tasks\{46D804CC-DC3C-4C42-86AD-A60387BCC505} => C:\Windows\system32\pcalua.exe -a C:\Users\DAVIDG~1\AppData\Local\Temp\{F658F04B-7BA8-4566-9496-275E4B1CE811}\adobeshockwavextrabundle.exe -d C:\Windows -c /xtrabundle=Shockwave_3D_Asset <==== ATENCIÓN
Task: {A14302CE-1049-4E14-9864-89022C07FB96} - System32\Tasks\{812F21FC-A73D-4536-8A33-6B924C60C229} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Half Life 2 Trilogy (Kps)\hl2_cap1\Episode One.exe" -d "C:\Program Files\Half Life 2 Trilogy (Kps)\hl2_cap1"
Task: {A3EC9E91-4C64-4DBE-B8B9-9D18A22B7859} - System32\Tasks\{634725ED-5590-46D2-8F29-3A72C5A31C36} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz07bd\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCIÓN
Task: {A420A710-2E3B-4EA7-92DF-5BBE9770D937} - System32\Tasks\{2123717A-32E4-49FB-BB80-6D3C82FED130} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {A54F77C8-7141-484D-A94D-4E7BDCA0ECCA} - System32\Tasks\Malwarebytes Anti-Exploit => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe
Task: {AA2B0FD2-E2A0-41D9-93E6-05D82C52FF53} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011 => C:\Program Files (x86)\TuneUp Utilities 2011\OneClick.exe [603456 2012-01-10] (TuneUp Software -> TuneUp Software)
Task: {ADB45EFA-E592-40BA-9F15-815E7C49CF4F} - System32\Tasks\{E8FF07FE-6366-48BF-B5C2-AABA8A6C26A1} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
Task: {B0AFBD4E-9063-4F42-90E4-B440341A84F8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3810408 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
Task: {B6872C2C-DCA7-4989-B317-D6CD63F830F9} - System32\Tasks\{5346834E-9B40-4DCA-A4E7-F8D414AD9869} => C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
Task: {C2D47170-4F4D-45AE-9EAC-50253D0FAC24} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-18] (Adobe Inc. -> Adobe)
Task: {C6D98A55-755C-4D68-9B42-25C8F11FD10E} - System32\Tasks\{B5EE43B2-7900-46EB-83E8-9FF171EC0F0A} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\jocs\Yugioh power of chaos yugi the destiny\dabytr2.exe" -d "C:\Users\David GP\Desktop\jocs\Yugioh power of chaos yugi the destiny"
Task: {C6EE84F0-C758-4CE7-B03B-0EBDD6D62B7B} - System32\Tasks\BrowserProtect => C:\Windows\system32\sc.exe start BrowserProtect <==== ATENCIÓN
Task: {C9627D3A-682C-4AEE-AE50-C6F1CD2F9A58} - System32\Tasks\{2B2FA76A-DB0C-4456-AF81-50ABC9D338F7} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
Task: {C9C8B93D-ACF5-452A-BE6A-960C58FBBE2A} - System32\Tasks\{60BAD946-A4FE-47D9-9C2D-625B72CE2992} => C:\Users\David GP\Desktop\Gears of war\Crack+Parche\Update 1.exe
Task: {CBCBFE07-8D81-4934-B367-976F27CCE6A9} - System32\Tasks\{F5160731-45AF-4C12-84CA-881378451774} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\KONAMI\MetalGearSolid2 Substance\bin\MGS2SSetup.exe" -d "C:\Program Files (x86)\KONAMI\MetalGearSolid2 Substance\bin"
Task: {D0075BAB-DDE4-42A8-9D47-939042B56E47} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-28] (AVAST Software s.r.o. -> AVAST Software)
Task: {D1FAF2FD-95EA-4A4F-A96A-187B07E48C0C} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [116544 2010-06-01] (Panda Security S.L -> )
Task: {D46F99B2-BCB1-409D-84D1-01C4706777EF} - System32\Tasks\{781040E5-905A-499A-BD90-90E15B9AAEE5} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Downloads\AdobeAIRInstaller.exe" -d "C:\Users\David GP\Downloads"
Task: {DCB2BBEA-08FD-46EE-9204-E96354131838} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {DDAE4260-CBBB-4091-8748-2714272BD82C} - System32\Tasks\{4598DDF6-4E97-4ABA-A55A-C527B885165A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Portal Latinloaders.Tk\Portal.exe" -d "C:\Program Files (x86)\Portal Latinloaders.Tk"
Task: {DF33977C-F93C-4366-BCB9-85068D7D416E} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {E1FFD67F-3524-40C7-94D6-2EF8319ED07C} - System32\Tasks\{DDE0C66A-0F05-4336-9B00-D05A86B3E539} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\KONAMI\MetalGearSolid2 Substance\bin\MGS2SConfig.exe" -d "C:\Users\David GP\Desktop" -c "C:\Users\David GP\Desktop\mgs2.exe"
Task: {E645DB0B-5D60-4B4D-89D6-C162B7A91DCA} - System32\Tasks\G2MUpdateTask-S-1-5-21-2756063190-210330184-3870898647-1001 => C:\Users\David GP\AppData\Local\Citrix\GoToMeeting\7155\g2mupdate.exe [32320 2017-07-05] (LogMeIn, Inc. -> Citrix Online, a division of Citrix Systems, Inc.)
Task: {E8B8F6C9-E56F-44D1-B5BF-BD11474D39E4} - System32\Tasks\{B7FAFE64-7DB8-4054-AFC9-DE6707B25F34} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Downloads\Shockwave_Installer_Slim.exe" -d C:\Windows
Task: {E9304926-325F-4F2F-8981-2EABAEEDE6B4} - System32\Tasks\{9A75A8C5-34CD-465F-9F3E-F23B85FCF815} => C:\Program Files (x86)\InternetEverywhere\InternetEverywhere.exe [1440712 2011-05-19] (WebToGo Mobiles Internet GmbH -> WebToGo Mobiles Internet GmbH)
Task: {EA472EE4-DDA7-47E0-8F5A-584C72E27B0C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.)
Task: {EC8A2D68-B189-45CB-A623-76EC64F3A5F6} - System32\Tasks\Programa de actualización online de Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.)
Task: {EE1816A7-1F77-48FD-A341-BEC21BA6DD2E} - System32\Tasks\{EA6A301D-B70F-4DFA-B16D-AEF51156158F} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Desktop\Episode One.exe" -d "C:\Users\David GP\Desktop"
Task: {F0BBC9B1-B5F7-4AD4-9403-0610F7C4D1E8} - System32\Tasks\AdobeAAMUpdater-1.0-DavidGP-PC-David GP => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {F1F900A7-BF58-4CD3-B4A1-9EF6E3335BBC} - System32\Tasks\{4C92AB58-12BB-4273-9C59-59743C77805B} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\Downloads\ghosts-n-goblins-0-4-en.exe" -d "C:\Users\David GP\Downloads"
Task: {F4809519-1AD1-4F3A-B510-7C1BA32B9F98} - System32\Tasks\{FABD1A7C-6053-4C92-9288-418AFA1F3563} => C:\Users\David GP\Desktop\Gears of war\Crack+Parche\Update 1.exe
Task: {F6FBE0D9-E442-435D-9F8A-2E0F6DFFB9EC} - System32\Tasks\Google Updater and Installer => C:\Users\David GP\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {FFB23FF5-9495-400A-9669-64E8CE2504D8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2756063190-210330184-3870898647-1001Core.job => C:\Users\David GP\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2756063190-210330184-3870898647-1001UA.job => C:\Users\David GP\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-2756063190-210330184-3870898647-1001.job => C:\Users\David GP\AppData\Local\Citrix\GoToMeeting\7155\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-2756063190-210330184-3870898647-1001.job => C:\Users\David GP\AppData\Local\Citrix\GoToMeeting\7155\g2mupload.exe
Task: C:\Windows\Tasks\Malwarebytes Anti-Exploit.job => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe C:\Program Files\Malwarebytes Anti-Exploit\mbae64.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FE8FCE63-F1BD-420C-910B-92B223DB8C73}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://es.yahoo.com?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://es.yahoo.com?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM -> DefaultScope no se encuentra el valor
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2756063190-210330184-3870898647-1001 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2756063190-210330184-3870898647-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.iminent.com/?appId=50540F81-B2B7-4714-8DD8-59115953E74E&ref=toolbox&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2756063190-210330184-3870898647-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://es.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-10.0.2\bin\ssv.dll => Ningún archivo
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Ltd. -> Safer Networking Limited)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Ningún archivo
Toolbar: HKLM - Sin Nombre - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  Ningún archivo
IE Session Restore: HKU\S-1-5-21-2756063190-210330184-3870898647-1001 -> está habilitado.
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Ningún archivo

FireFox:
========
FF DefaultProfile: oywy8n9v.default-1582487322572
FF ProfilePath: C:\Users\David GP\AppData\Roaming\Nvu\Profiles\cmsbcx88.default [2013-03-17]
FF ProfilePath: C:\Users\David GP\AppData\Roaming\Mozilla\Firefox\Profiles\oywy8n9v.default-1582487322572 [2020-09-08]
FF user.js: detected! => C:\Users\David GP\AppData\Roaming\Mozilla\Firefox\Profiles\oywy8n9v.default-1582487322572\user.js [2020-03-18]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-18] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX64.dll [Ningún archivo]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-18] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2018-06-06] (Adobe Systems, Inc.) [Archivo no firmado]
FF Plugin-x32: @fxinteractive.com/fxplanet -> C:\ProgramData\FXWebPlayer\npfxplanet.dll [2011-12-26] (FX Interactive -> FX Interactive)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [Ningún archivo]
FF Plugin HKU\S-1-5-21-2756063190-210330184-3870898647-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\David GP\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [Ningún archivo]
FF Plugin HKU\S-1-5-21-2756063190-210330184-3870898647-1001: SkypePlugin -> C:\Users\David GP\AppData\Local\SkypePlugin\7.32.6.278\npGatewayNpapi.dll [2017-04-18] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-2756063190-210330184-3870898647-1001: SkypePlugin64 -> C:\Users\David GP\AppData\Local\SkypePlugin\7.32.6.278\npGatewayNpapi-x64.dll [2017-04-18] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin ProgramFiles/Appdata: C:\Users\David GP\AppData\Roaming\mozilla\plugins\npatgpc.dll [2013-05-24]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default [2020-09-08]
CHR Notifications: Default -> hxxps://forospyware.com; hxxps://web.skype.com; hxxps://web.whatsapp.com
CHR HomePage: Default -> hxxps://es.yahoo.com?fr=hp-avast&type=avastbcl
CHR StartupUrls: Default -> "hxxp://www.google.es/"
CHR Extension: (Presentaciones) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Flash Video Downloader) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2020-08-18]
CHR Extension: (SEOquake) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc [2020-08-17]
CHR Extension: (Awesome Screenshot: Screen capture, Annotate) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2015-04-29]
CHR Extension: (Documentos) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-16]
CHR Extension: (YouTube) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Búsqueda de Google) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Hojas de cálculo) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-17]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-16]
CHR Extension: (Gmail) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-16]
CHR Extension: (Chrome Media Router) - C:\Users\David GP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [nbljechdpodpbchbmjcoamidppmpnmlc]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-03-02] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-08] (Adobe Inc. -> Adobe)
S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [98208 2009-11-18] (Andrea Electronics -> Andrea Electronics Corporation)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7776160 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-28] (AVAST Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [353696 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-28] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\84.0.5270.105\elevation_service.exe [1072376 2020-07-28] (Avast Software s.r.o. -> AVAST Software)
S4 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [Archivo no firmado]
S2 HFGService; C:\Windows\System32\HFGService.dll [535552 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S4 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [334792 2011-05-19] (WebToGo Mobiles Internet GmbH -> )
S2 PCToolsFirewallPlus; C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [286000 2011-01-24] (PC Tools -> PC Tools)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2028864 2012-01-10] (TuneUp Software -> TuneUp Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175200 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-16] (AVAST Software s.r.o. -> AVAST Software)
S1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-17] (Avast Software s.r.o. -> AVAST Software)
S3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1594368 2010-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [52224 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 CtClsFlt; C:\Windows\System32\DRIVERS\CtClsFlt.sys [172704 2009-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-07-08] (DT Soft Ltd -> DT Soft Ltd)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MEMSWEEP2; C:\Windows\system32\A1BD.tmp [6144 2011-05-12] (Sophos Plc) [Archivo no firmado]
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [115272 2011-11-10] (Shenzhen Saikeware Technology Co., Ltd. -> MotioninJoy) [Archivo no firmado]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; c:\program files\dell support center\pcdsrvc_x64.pkms [25072 2010-07-31] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [119688 2011-01-12] (PC Tools -> PC Tools)
S1 pctgntdi; C:\Windows\System32\drivers\pctgntdi64.sys [334976 2011-01-17] (PC Tools -> PC Tools)
S3 pctNdis; C:\Windows\System32\DRIVERS\pctNdis64.sys [79000 2010-07-08] (PC Tools -> PC Tools)
S3 pctNdisMP; C:\Windows\System32\DRIVERS\pctNdis64.sys [79000 2010-07-08] (PC Tools -> PC Tools)
S3 pctplfw; C:\Windows\System32\drivers\pctplfw64.sys [179976 2011-01-17] (PC Tools -> PC Tools)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc. -> SafeNet, Inc.)
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2011-07-10] (Duplex Secure Ltd -> Duplex Secure Ltd.)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [11856 2011-06-06] (TuneUp Software GmbH -> TuneUp Software)
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp.sys [145936 2010-05-09] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
S1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (Duodian Online Technology Co. Ltd. -> BigNox Corporation)
S3 ZTEusbMB; C:\Windows\System32\DRIVERS\ZTEusbnmeaext2.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbMB; C:\Windows\SysWOW64\DRIVERS\ZTEusbnmeaext2.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbmdm6k; C:\Windows\System32\DRIVERS\ZTEusbmdm6k.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbmdm6k; C:\Windows\SysWOW64\DRIVERS\ZTEusbmdm6k.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [135168 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Corporation)
S3 ZTEusbnet; C:\Windows\SysWOW64\DRIVERS\ZTEusbnet.sys [135168 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Corporation)
S3 ZTEusbnmea; C:\Windows\System32\DRIVERS\ZTEusbnmea.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnmea; C:\Windows\SysWOW64\DRIVERS\ZTEusbnmea.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnmeaext; C:\Windows\System32\DRIVERS\ZTEusbnmeaext.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbnmeaext; C:\Windows\SysWOW64\DRIVERS\ZTEusbnmeaext.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbser6k; C:\Windows\System32\DRIVERS\ZTEusbser6k.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEusbser6k; C:\Windows\SysWOW64\DRIVERS\ZTEusbser6k.sys [119680 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Incorporated)
S3 ZTEWMSD_637; C:\Windows\System32\Drivers\ZTEWMSD_637.sys [19968 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Corporation)
S3 ZTEWMSD_637; C:\Windows\SysWOW64\Drivers\ZTEWMSD_637.sys [19968 2013-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ZTE Corporation)
S3 Prot6Flt; system32\DRIVERS\Prot6Flt.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-08 19:42 - 2020-09-08 19:44 - 000046703 _____ C:\Users\David GP\Desktop\FRST.txt
2020-09-08 19:42 - 2020-09-08 19:44 - 000000000 ____D C:\FRST
2020-09-08 19:41 - 2020-09-08 19:42 - 000561128 _____ C:\Windows\ntbtlog.txt
2020-09-08 19:33 - 2020-09-08 19:33 - 002297344 _____ (Farbar) C:\Users\David GP\Desktop\FRST64.exe
2020-09-08 16:43 - 2020-09-08 16:44 - 002040904 _____ (Malwarebytes) C:\Users\David GP\Downloads\MBSetup (1).exe
2020-09-07 18:45 - 2018-02-12 20:11 - 000061952 _____ (Hugo Nabais) C:\Users\David GP\Desktop\Clicador.exe
2020-09-07 18:43 - 2020-09-07 18:43 - 000022532 _____ C:\Users\David GP\Downloads\Clicador_1.0.1.1.zip
2020-09-01 12:57 - 2020-08-17 23:35 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-08-31 14:24 - 2020-08-31 14:24 - 000000000 ____D C:\Users\David GP\Desktop\SEPE
2020-08-31 14:14 - 2020-08-31 14:14 - 000355036 _____ C:\Users\David GP\Downloads\AudioCaptcha.wav
2020-08-18 00:28 - 2020-08-18 00:28 - 002040904 _____ (Malwarebytes) C:\Users\David GP\Downloads\MBSetup.exe
2020-08-18 00:28 - 2020-08-18 00:28 - 000588391 _____ C:\Users\David GP\Downloads\Sin confirmar 520549.crdownload
2020-08-18 00:20 - 2020-08-18 00:20 - 027072192 _____ (Piriform Software Ltd) C:\Users\David GP\Downloads\ccsetup570.exe
2020-08-18 00:10 - 2020-08-18 00:10 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-08-17 23:36 - 2020-08-17 23:55 - 000000150 _____ C:\Windows\restoro.ini
2020-08-17 23:36 - 2020-08-17 23:36 - 000931056 _____ (Restoro) C:\Users\David GP\Downloads\Restoro.exe
2020-08-17 23:35 - 2020-08-17 23:35 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-08-17 23:35 - 2020-08-17 23:35 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-08-17 22:51 - 2020-08-17 22:51 - 002083464 _____ (Oracle Corporation) C:\Users\David GP\Downloads\jre-8u261-windows-i586-iftw.exe
2020-08-14 23:48 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 328187
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 97571
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 230726
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 206640
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 204837
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 109618
2020-08-14 23:47 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 56394

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-08 17:01 - 2011-06-29 17:06 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2020-09-08 16:14 - 2015-05-12 18:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-09-08 16:13 - 2013-10-04 18:07 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-09-08 16:13 - 2013-10-04 18:07 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-08 16:13 - 2013-10-04 18:07 - 000004322 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-09-08 16:13 - 2011-11-12 00:07 - 000000000 ____D C:\Windows\system32\Macromed
2020-09-08 16:13 - 2011-01-25 00:25 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-09-08 16:05 - 2018-04-28 18:52 - 000000000 ____D C:\Users\David GP\AppData\Local\AVAST Software
2020-09-08 16:01 - 2012-05-25 23:01 - 000000000 ____D C:\ProgramData\AVAST Software
2020-09-08 15:55 - 2011-06-29 18:19 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-09-08 15:48 - 2011-01-25 01:56 - 000748438 _____ C:\Windows\system32\perfh00A.dat
2020-09-08 15:48 - 2011-01-25 01:56 - 000159620 _____ C:\Windows\system32\perfc00A.dat
2020-09-08 15:48 - 2009-07-14 07:13 - 001679906 _____ C:\Windows\system32\PerfStringBackup.INI
2020-09-08 15:48 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-09-08 15:31 - 2015-08-21 22:45 - 000000000 ____D C:\Users\David GP\AppData\Local\CrashDumps
2020-09-08 15:30 - 2017-03-03 00:13 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-09-08 15:29 - 2011-06-29 17:15 - 000000000 ____D C:\ProgramData\TEMP
2020-09-08 15:28 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-09-07 18:44 - 2017-05-01 20:36 - 000000000 ____D C:\Users\David GP\AppData\LocalLow\Mozilla
2020-08-31 14:14 - 2017-08-01 15:12 - 000000000 ____D C:\Users\David GP\AppData\Local\Adobe
2020-08-18 00:49 - 2019-11-10 21:18 - 000001068 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-08-18 00:48 - 2019-11-10 21:19 - 000001308 _____ C:\Users\Public\Desktop\Skype.lnk
2020-08-18 00:48 - 2018-05-18 13:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-08-18 00:48 - 2011-07-27 17:21 - 000000000 ____D C:\Program Files\WinRAR
2020-08-18 00:47 - 2018-05-18 12:54 - 000004502 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-08-18 00:40 - 2011-07-03 22:36 - 000000000 ____D C:\Users\David GP\Desktop\Spywares
2020-08-18 00:37 - 2012-04-25 19:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-18 00:31 - 2016-08-22 00:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2020-08-18 00:22 - 2017-11-22 20:47 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-08-18 00:14 - 2011-06-08 13:47 - 000000000 ____D C:\Users\David GP
2020-08-18 00:11 - 2014-12-29 17:18 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-08-18 00:09 - 2015-10-08 22:38 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-08-17 23:53 - 2017-08-01 15:12 - 000000000 ____D C:\Users\David GP\AppData\Roaming\Adobe
2020-08-17 23:46 - 2014-08-26 20:38 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-17 23:45 - 2018-04-28 18:54 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-08-17 23:44 - 2019-06-16 18:35 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-08-17 23:36 - 2013-03-14 00:11 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-08-17 23:35 - 2020-04-16 14:12 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-08-17 23:35 - 2019-01-16 18:52 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-08-17 23:35 - 2019-01-16 18:52 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-08-17 23:35 - 2019-01-16 18:52 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-08-17 23:35 - 2019-01-16 18:52 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-08-17 23:35 - 2018-10-15 16:24 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-08-17 23:35 - 2017-11-16 18:41 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-08-17 23:35 - 2013-03-14 00:11 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-08-17 23:35 - 2012-05-25 23:02 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-08-17 23:35 - 2012-05-25 23:02 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-08-17 23:35 - 2012-05-25 23:02 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-08-17 23:33 - 2019-03-13 18:23 - 000004510 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-08-17 23:31 - 2009-07-14 06:45 - 000022704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-17 23:31 - 2009-07-14 06:45 - 000022704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-17 23:22 - 2011-12-11 21:11 - 000000000 ____D C:\Program Files (x86)\PC Tools Firewall Plus
2020-08-17 23:19 - 2017-06-01 19:10 - 000000000 ____D C:\Users\David GP\Desktop\Adobe After Effects CC 2017 v14.0.0
2020-08-17 23:19 - 2017-05-24 16:47 - 000000000 ____D C:\Users\David GP\Desktop\PS CS6 Portable By Nevermind
2020-08-17 23:19 - 2013-10-07 01:57 - 000000000 ____D C:\Users\David GP\AppData\Roaming\vlc
2020-08-17 23:19 - 2013-10-07 01:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-08-17 23:18 - 2011-07-10 16:40 - 000000000 ____D C:\Program Files (x86)\Astroburn Pro
2020-08-17 23:18 - 2011-06-29 17:53 - 000000000 ____D C:\Program Files\CCleaner
2020-08-17 23:17 - 2020-04-16 19:24 - 000000000 ____D C:\Program Files (x86)\Atheros
2020-08-17 23:17 - 2017-08-02 00:29 - 000000000 ____D C:\ProgramData\Adobe
2020-08-17 23:17 - 2017-04-21 19:28 - 000000000 ____D C:\Program Files\GIMP 2
2020-08-17 23:17 - 2015-12-04 00:44 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-08-17 23:17 - 2011-06-29 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-17 23:17 - 2011-06-26 19:39 - 000000000 ___RD C:\Users\David GP\Documents\Scanned Documents
2020-08-17 23:17 - 2009-07-14 05:20 - 000000000 __RHD C:\Users\Public\Libraries
2020-08-17 23:17 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Msdtc
2020-08-17 23:16 - 2020-04-16 17:28 - 000000000 ____D C:\Program Files\DisplayLink Core Software
2020-08-17 23:16 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2020-08-17 23:14 - 2011-06-08 18:33 - 000000000 ____D C:\Users\David GP\AppData\Roaming\SoftGrid Client
2020-08-17 23:14 - 2011-06-08 14:31 - 000000000 ____D C:\Users\David GP\AppData\Local\Mozilla
2020-08-17 23:09 - 2011-06-08 18:38 - 000000000 __RHD C:\MSOCache
2020-08-17 23:09 - 2011-01-25 03:03 - 000000000 ____D C:\Dell

==================== Archivos en la raíz de algunos directorios ========

2011-06-11 22:21 - 2011-06-11 22:23 - 000179324 _____ () C:\Users\David GP\AppData\Roaming\DXDriver_Install.log
2011-06-11 22:23 - 2011-06-11 22:24 - 000182578 _____ () C:\Users\David GP\AppData\Roaming\FlamethrowerDriver_Install.log
2011-06-11 22:26 - 2011-06-11 22:30 - 010045094 _____ () C:\Users\David GP\AppData\Roaming\MediaComposer_Install.log
2011-06-11 22:20 - 2011-06-11 22:21 - 000200454 _____ () C:\Users\David GP\AppData\Roaming\PACEDrivers_Install.log
2020-03-31 19:37 - 2020-04-10 17:43 - 000000132 _____ () C:\Users\David GP\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2013-04-14 19:32 - 2013-04-14 19:32 - 064330619 _____ () C:\Users\David GP\AppData\Local\AdobeSetupUtility.zip.aamdownload
2013-04-14 19:32 - 2013-04-14 19:32 - 000000998 _____ () C:\Users\David GP\AppData\Local\AdobeSetupUtility.zip.aamdownload.aamd
2011-06-08 14:55 - 2012-07-06 01:43 - 000011264 _____ () C:\Users\David GP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-30 14:09 - 2012-09-30 14:09 - 000000017 _____ () C:\Users\David GP\AppData\Local\resmon.resmoncfg
2015-08-22 23:31 - 2015-08-22 23:31 - 000000000 _____ () C:\Users\David GP\AppData\Local\{8EE2430D-F487-4287-9EA1-97BE1DE0B373}

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-04-29 17:19
==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 06-09-2020
Ejecutado por David GP (08-09-2020 19:45:57)
Ejecutado desde C:\Users\David GP\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-06-08 11:47:53)
Modo de Inicio: Safe Mode (minimal)
==========================================================


==================== Cuentas: =============================

9C20AD6D49B74EB59A31 (S-1-5-21-2756063190-210330184-3870898647-1004 - Limited - Enabled)
Administrador (S-1-5-21-2756063190-210330184-3870898647-500 - Administrator - Disabled)
David GP (S-1-5-21-2756063190-210330184-3870898647-1001 - Administrator - Enabled) => C:\Users\David GP
HomeGroupUser$ (S-1-5-21-2756063190-210330184-3870898647-1002 - Limited - Enabled)
Invitado (S-1-5-21-2756063190-210330184-3870898647-501 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: PC Tools Firewall Plus (Enabled) {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adblock Plus para IE (32 bit y 64 bit) (HKLM\...\{13F8A464-64C7-4C70-A28B-A2DCB51DAD5F}) (Version: 1.6 - Eyeo GmbH)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.012.20041 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_0) (Version: 14.0.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.414 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.414 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.414 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\{3BD13111-2F32-4AB7-B9BB-16E07C9AA894}) (Version: 12.3.4.204 - Adobe Systems, Inc)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Astroburn Pro (HKLM-x32\...\Astroburn Pro) (Version: 2.2.0.0111 - DT Soft Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.6.2420 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 84.0.5270.105 - Los creadores de Avast Secure Browser)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Camtasia Studio 8 (HKLM-x32\...\{45F34E54-DAD9-405B-A4F6-B12B0A46B984}) (Version: 8.4.1.1745 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Cisco WebEx Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
ConvertHelper 2.2 (HKLM-x32\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1) (Version:  - DownloadHelper)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
Dell Dock (HKLM\...\{C73A3942-84C8-4597-9F9B-EE227DCBA758}) (Version: 2.0 - Stardock Corporation) Hidden
Dell Dock (HKLM-x32\...\Dell Dock) (Version: 2.0 - Stardock Corporation)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Resource CD (HKLM-x32\...\{42929F0F-CE14-47AF-9FC7-FF297A603021}) (Version: 1.00.0000 - Nombre de su organización)
Dell Support Center (HKLM\...\{0090A87C-3E0E-43D4-AA71-A71B06563A4A}) (Version: 3.0.5621.01 - PC-Doctor, Inc.) Hidden
Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.0.5621.01 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1107.101.209 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd)
Dell Wireless Driver Installation (HKLM-x32\...\{451517F1-7E41-400B-AA36-FB7E2563526D}) (Version: 8.0 - Dell)
Dropbox (HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Dropbox) (Version: 36.4.22 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Facebook Video Calling 1.2.0.159 (HKLM-x32\...\{7CAC6A44-C3DE-4153-ACA6-7524602C789E}) (Version: 1.2.159 - Skype Limited)
FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version:  - FX Interactive) <==== ATENCIÓN
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
Google AdWords Editor (HKLM-x32\...\{C2F536D9-91E1-4B5C-8A97-9BEB2943EFD1}) (Version: 10.4.1 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.83 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoTo Opener (HKLM-x32\...\{C0A5FA19-686C-490A-91CF-513FE6832187}) (Version: 1.0.459 - LogMeIn, Inc.)
GoToMeeting 8.7.0.7155 (HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\GoToMeeting) (Version: 8.7.0.7155 - CitrixOnline)
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2302 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
Internet Everywhere (HKLM-x32\...\InternetEverywhere) (Version: Orange ES 1.0 - Internet Everywhere)
Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Live! Cam Avatar Creator (HKLM-x32\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.3009.1 - Creative Technology Ltd)
Loquendo TTS: Jorge (Spanish) (HKLM-x32\...\LoqTTS-Jorge_is1) (Version:  - )
Ludoteka versión 1.1 (HKLM-x32\...\{A8A82F27-5E59-423D-A9D0-9CBF7EF69378}_is1) (Version: 1.1 - Jokosare S.L.)
Microsoft .NET Framework 4.7 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0C0A-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 80.0.1 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 80.0.1 (x86 es-ES)) (Version: 80.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 79.0.0.7506 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Panda USB Vaccine 1.0.1.16 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PASW Statistics 18 (HKLM-x32\...\{C25215FC-5900-48B0-B93C-8D3379027312}) (Version: 18.0.0 - SPSS Inc.)
Patrician III - Imperio de los Mares (HKLM-x32\...\Patrician III - Imperio de los Mares) (Version:  - FX Interactive)
PC Tools Firewall Plus 7.0 (HKLM-x32\...\PC Tools Firewall Plus) (Version: 7.0 - PC Tools)
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Project64 1.7 (HKLM-x32\...\Project64 1.7) (Version:  - )
PxMergeModule (HKLM-x32\...\{024521CF-C07E-4F8E-8481-0D75695E03AF}) (Version: 1.00.0000 - Your Company Name) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.06.02 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6136 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30109 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.1.7 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.7 - VS Revo Group, Ltd.)
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype versión 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.)
Skype Web Plugin (HKLM-x32\...\{EB96DF8B-65A7-4E72-BFB1-38DB36870D16}) (Version: 7.32.6.278 - Skype Technologies S.A.)
Sophos Anti-Rootkit 1.5.20 (HKLM-x32\...\Sophos-AntiRootkit) (Version: 1.5.20 - Sophos Plc)
Spotify (HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\Spotify) (Version: 1.0.85.257.g0f8531bd - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1108 - SUPERAntiSpyware.com)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC)
TextAloud 3.0 (HKLM-x32\...\TextAloud3_is1) (Version: 3.0 - NextUp.com)
TuneUp Utilities 2011 (HKLM-x32\...\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}) (Version: 10.0.4510.2 - TuneUp Software) Hidden
TuneUp Utilities 2011 (HKLM-x32\...\TuneUp Utilities 2011) (Version: 10.0.4510.2 - TuneUp Software)
TuneUp Utilities Language Pack (es-ES) (HKLM-x32\...\{E7C0E7E9-B404-4A98-A8D1-FEFB9482866E}) (Version: 10.0.4510.2 - TuneUp Software) Hidden
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
WinDS PRO 2012.2 (HKLM\...\{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}_is1) (Version: 2012.02.0.0 - WinDS PRO Central)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{41052F6E-3662-4584-BCD3-77BCCAAE8470}\InprocServer32 -> C:\Users\David GP\AppData\Local\SkypePlugin\7.32.6.278\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\David GP\AppData\Local\Citrix\GoToMeeting\7155\G2MOutlookAddin64.dll (LogMeIn, Inc. -> Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2756063190-210330184-3870898647-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc -> Dropbox, Inc.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2011\SDShelEx-x64.dll [2012-01-10] (TuneUp Software -> TuneUp Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll -> Ningún archivo
ContextMenuHandlers4: [TuneUp Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\TuneUp Utilities 2011\DseShExt-x64.dll [2012-01-10] (TuneUp Software -> TuneUp Software)
ContextMenuHandlers4: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2011\SDShelEx-x64.dll [2012-01-10] (TuneUp Software -> TuneUp Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-08-17] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll -> Ningún archivo
ContextMenuHandlers1_S-1-5-21-2756063190-210330184-3870898647-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-2756063190-210330184-3870898647-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-2756063190-210330184-3870898647-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\David GP\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc -> Dropbox, Inc.)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\David GP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Awesome Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=afkccfnochoebimhhniekgcegeeiepmi

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6 [244]
AlternateDataStreams: C:\Users\David GP\Desktop\curriculumDavid.doc:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\David GP\AppData\Local\Temp:Dn5bA7i8kvgo2aNls [2074]
AlternateDataStreams: C:\Users\David GP\Documents\cu piscinero:com.dropbox.attributes [168]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Asociación (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)

HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\batfile:  <==== ATENCIÓN
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\cmdfile:  <==== ATENCIÓN

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Hay 7657 más sitios.

IE trusted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\sony.com -> sony.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2756063190-210330184-3870898647-1001\...\1-se.com -> 1-se.com

Hay 12225 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-14 04:34 - 2019-01-08 18:54 - 000000310 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;%SYSTEMROOT%\SYSTEM32\WINDOWSPOWERSHELL\V1.0\;C:\PROGRAM FILES (X86)\COMMON FILES\ROXIO SHARED\DLLSHARED\;C:\PROGRAM FILES (X86)\COMMON FILES\ROXIO SHARED\OEM\DLLSHARED\;C:\PROGRAM FILES (X86)\COMMON FILES\ROXIO SHARED\OEM\DLLSHARED\;C:\PROGRAM FILES (X86)\COMMON FILES\ROXIO SHARED\OEM\12.0\DLLSHARED\;C:\PROGRAM FILES (X86)\ROXIO\OEM\AUDIOCORE\;C:\PROGRAM FILES (X86)\COMMON FILES\AVID;C:\PROGRAM FILES\COMMON FILES\AVID;C:\PROGRAM FILES (X86)\COMMON FILES\ULEAD SYSTEMS\MPEG;C:\PROGRAM FILES (X86)\WINDOWS LIVE\SHARED
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\David GP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^David GP^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5.5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Apoint => C:\Program Files\DellTPad\Apoint.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickSet => C:\Program Files\Dell\QuickSet\QuickSet.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\David GP\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{A35DB2DA-6C1E-495F-BB9B-F65076C0736A}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.exe (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{5BEB1E7A-1E9B-438A-B3E9-B93944A5A773}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\WinWrapIDE.exe (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{E8328BC7-08BA-49B8-BE45-7F2969B8A6DB}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.com (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{55A77A4F-A81F-4551-A61B-09B78412791B}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.com (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{2410C5FC-B1B8-4883-BCB1-D99CD5C11D2B}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\WinWrapIDE.exe (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{FC7BB275-75A4-40A8-B2D7-4347C2D0DF39}] => (Allow) C:\Program Files (x86)\SPSSInc\PASWStatistics18\paswstat.exe (SPSS Inc. -> SPSS Inc.) [Archivo no firmado]
FirewallRules: [{7FA06DCF-F29F-413D-ACEE-CB01E8A72E67}] => (Allow) C:\Users\David GP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{96CFCABA-3E83-438B-9AFE-14B460635490}] => (Allow) C:\Users\David GP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [TCP Query User{58768CCE-564C-471B-9B38-FD7C46399C93}C:\users\david gp\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\david gp\appdata\roaming\dropbox\bin\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [UDP Query User{C366076A-91AE-4829-B98E-77A050EB2CFD}C:\users\david gp\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\david gp\appdata\roaming\dropbox\bin\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{1E686BDD-6B3D-4132-96EE-FD1557337806}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D89FA1DD-642D-4D2A-A0A0-7342791275BA}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{513D178D-D3AF-4BB7-8CD8-CB3F536AC83A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8713BDB8-4924-4BCC-B16E-66676E8D1A27}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E617D9F9-A2BE-4468-B524-F738282F412C}] => (Allow) LPort=2869
FirewallRules: [{4E466995-8A28-4C84-913B-85C208555DDC}] => (Allow) LPort=1900
FirewallRules: [{E3E817F8-F74E-4A68-9F18-75C2CD17761A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{656FB01B-7949-4D73-8559-2776EFDE0AF2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FA5945DB-2366-4201-81B1-0E801929A981}] => (Allow) LPort=8317
FirewallRules: [{6224EC65-2B6A-4858-8411-F0FFA68A50FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5996E4FF-0FA8-4E5B-B041-ADEFA638644A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{62A305E0-3404-479F-BE4A-DF769F78A9A0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1D863FCC-F449-4E11-AFEE-990CEAD10619}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F03A47A6-1DF6-4830-A05F-DA65800E00EA}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B4FE9987-4A7E-4C62-B2D8-E1DA45EEAE5E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{80D6A14B-E49C-4AD1-ADF7-ABA525FC8FDB}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6ED26A0C-DD8F-4315-8D8B-BFB5D668BF29}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

07-05-2020 13:10:30 Copias de seguridad de Windows
23-07-2020 11:07:55 Removed Adobe Acrobat Reader DC - Español.
17-08-2020 23:36:06 Copias de seguridad de Windows
18-08-2020 00:00:12 Removed Adobe Acrobat Reader DC - Español.
18-08-2020 00:14:06 Quitado Steam
18-08-2020 00:15:59 Removed 4K Video Downloader 4.3
18-08-2020 00:32:24 Revo Uninstaller's restore point - Malwarebytes Anti-Malware versión 2.1.4.1018

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: aswRvrt
Description: aswRvrt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: aswRvrt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: sptd
Description: sptd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: sptd
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: aswVmm
Description: aswVmm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: aswVmm
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (09/08/2020 03:30:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: CCleaner.exe, versión: 5.70.0.7909, marca de tiempo: 0x5f2ad3bc
Nombre del módulo con errores: ntdll.dll, versión: 6.1.7601.23915, marca de tiempo: 0x59b94a16
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0004eb23
Id. del proceso con errores: 0x10d8
Hora de inicio de la aplicación con errores: 0x01d685e41c1369c7
Ruta de acceso de la aplicación con errores: C:\Program Files\CCleaner\CCleaner.exe
Ruta de acceso del módulo con errores: C:\Windows\SysWOW64\ntdll.dll
Id. del informe: 838bbe17-f1d7-11ea-afea-8a7f3a938156

Error: (09/08/2020 03:29:43 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (09/07/2020 06:03:34 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (2024) Al intentar abrir el archivo "C:\Users\David GP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" para acceso de sólo lectura se produjo el error de sistema 32 (0x00000020): "El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso. ". La operación para abrir el archivo se cerrará con el error -1032 (0xfffffbf8).

Error: (09/07/2020 05:57:19 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/17/2020 11:59:56 PM) (Source: MsiInstaller) (EventID: 11311) (User: DavidGP-PC)
Description: Producto: Adobe Acrobat Reader DC - Español -- Error 1311. No se ha encontrado el archivo de origen (.CAB) C:\ProgramData\Adobe\Setup\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\Data1.cab. Compruebe que el archivo existe y que puede obtener acceso a él.

Error: (08/17/2020 11:59:55 PM) (Source: MsiInstaller) (EventID: 11311) (User: DavidGP-PC)
Description: Producto: Adobe Acrobat Reader DC - Español -- Error 1311. No se ha encontrado el archivo de origen (.CAB) C:\ProgramData\Adobe\Setup\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\Data1.cab. Compruebe que el archivo existe y que puede obtener acceso a él.

Error: (08/17/2020 11:59:55 PM) (Source: MsiInstaller) (EventID: 11311) (User: DavidGP-PC)
Description: Producto: Adobe Acrobat Reader DC - Español -- Error 1311. No se ha encontrado el archivo de origen (.CAB) C:\ProgramData\Adobe\Setup\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\Data1.cab. Compruebe que el archivo existe y que puede obtener acceso a él.

Error: (08/17/2020 11:59:54 PM) (Source: MsiInstaller) (EventID: 11311) (User: DavidGP-PC)
Description: Producto: Adobe Acrobat Reader DC - Español -- Error 1311. No se ha encontrado el archivo de origen (.CAB) C:\ProgramData\Adobe\Setup\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\Data1.cab. Compruebe que el archivo existe y que puede obtener acceso a él.


Errores del sistema:
=============
Error: (09/08/2020 07:42:31 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1084" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

Error: (09/08/2020 07:42:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:42:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:42:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:42:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:42:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:42:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.

Error: (09/08/2020 07:41:57 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de lista de redes depende del servicio Reconocimiento de ubicación de red, el cual no pudo iniciarse debido al siguiente error: 
No se puede iniciar el servicio o grupo de dependencia.


Windows Defender:
===================================
Date: 2015-03-21 16:43:55.800
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{317F1903-E80A-43B1-92FB-11A816B4761B}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:DavidGP-PC\David GP

Date: 2011-07-04 14:16:55.064
Description: 
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Pameseg.V&threatid=161326
Nombre:Program:Win32/Pameseg.V
Id.:161326
Gravedad:Baja
Categoría:Software potencialmente no deseado
Ruta de acceso encontrada:containerfile:C:\Users\David GP\Downloads\JDownloader.exe;file:C:\Users\David GP\Downloads\JDownloader.exe->(UPX);process:pid:1680
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:

Date: 2016-03-24 14:13:47.428
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Actual
Código de error:0x80070002
Descripción de error:El sistema no puede encontrar el archivo especificado. 
Versión de firma:0.0.0.0
Versión de motor:0.0.0.0

Date: 2016-03-24 14:13:47.413
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:
Versión de motor anterior:
Código de error:0x80070002
Descripción de error:El sistema no puede encontrar el archivo especificado. 

Date: 2013-07-19 21:01:58.862
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Actual
Código de error:0x80070002
Descripción de error:El sistema no puede encontrar el archivo especificado. 
Versión de firma:0.0.0.0
Versión de motor:0.0.0.0

Date: 2013-07-19 21:01:58.856
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:
Versión de firma anterior:
Origen de actualización:Carpeta de actualizaciones de firmas
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:
Versión de motor anterior:
Código de error:0x80070002
Descripción de error:El sistema no puede encontrar el archivo especificado. 

CodeIntegrity:
===================================

Date: 2016-09-10 00:46:28.863
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-10 00:46:28.676
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 23:55:16.925
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 23:55:16.722
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 00:59:16.988
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-08 00:59:16.769
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-06 23:36:01.925
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswKbd.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2016-09-06 23:36:01.863
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\drivers\aswSnx.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Información de la memoria =========================== 

BIOS: Dell Inc. A02 09/13/2010
Placa base: Dell Inc. 0N7J7M
Procesador: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Porcentaje de memoria en uso: 43%
RAM física total: 4058.36 MB
RAM física disponible: 2278.13 MB
Virtual total: 8114.91 MB
Virtual disponible: 6398.24 MB

==================== Unidades ================================

Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:322.84 GB) NTFS ==>[unidad con componentes de arranque (obtenido de BCD)]

\\?\Volume{89aae254-2805-11e0-8a99-806e6f6e6963}\ (Recovery) (Fixed) (Total:14.65 GB) (Free:7 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 387D07CC)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)

==================== Final de Addition.txt =======================

Cita

Y el reporte del disc sentinel por si te sirve, gracias:

  -- General Information --

    Application Information
   -------------------------
    Installed Version  . . . . . . . . . . . . . . . : Hard Disk Sentinel 5.61 PRO
    Registered To  . . . . . . . . . . . . . . . . . : Unregistered version, please register.
    Current Date And Time  . . . . . . . . . . . . . : 08/09/2020 20:07:51
    Health Calculation Method  . . . . . . . . . . . : Analyse data field (default)

    Computer Information
   ----------------------
    Computer Name  . . . . . . . . . . . . . . . . . : DAVIDGP-PC
    User Name  . . . . . . . . . . . . . . . . . . . : David GP
    Computer Type  . . . . . . . . . . . . . . . . . : Mobile
    MAC Address  . . . . . . . . . . . . . . . . . . : 00-00-00-00-00-00
    System Uptime  . . . . . . . . . . . . . . . . . : 0 days, 0 hours, 3 minutes, 20 seconds
    System Idle Time . . . . . . . . . . . . . . . . : 0 days, 0 hours, 0 minutes, 0 seconds
    System Up Since  . . . . . . . . . . . . . . . . : 08/09/2020 20:04:31
    CPU Usage  . . . . . . . . . . . . . . . . . . . : CPU #1: 13 %, CPU #2: 0 %
    Virtual Memory . . . . . . . . . . . . . . . . . : 8114 MB, Used: 1049 MB (13 %)

    System Information
   --------------------
    Windows Version  . . . . . . . . . . . . . . . . : Windows 7 Home Premium 
    CPU Type & Speed #1  . . . . . . . . . . . . . . : Pentium(R) Dual-Core CPU       T4500  @ 2.30GHz, 2294 MHz
    CPU Type & Speed #2  . . . . . . . . . . . . . . : Pentium(R) Dual-Core CPU       T4500  @ 2.30GHz, 2294 MHz
    BIOS Manufacturer  . . . . . . . . . . . . . . . : Phoenix
    Physical Memory Size . . . . . . . . . . . . . . : 4058 MB, Used: 1083 MB (27 %)
    Display Adapter  . . . . . . . . . . . . . . . . : Mobile Intel(R) 4 Series Express Chipset Family
    Display Resolution . . . . . . . . . . . . . . . : 800 x 600 (32 bit)
    Printer #1 . . . . . . . . . . . . . . . . . . . : Fax
    Printer #2 . . . . . . . . . . . . . . . . . . . : HP PSC 1400 series
    Printer #3 . . . . . . . . . . . . . . . . . . . : HP PSC 1400 series,3
    Printer #4 . . . . . . . . . . . . . . . . . . . : Microsoft XPS Document Writer
    Network Controller #1  . . . . . . . . . . . . . : Atheros AR9285 802.11b/g/n WiFi Adapter
    Network Controller #2  . . . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
    Optical Drive #1 . . . . . . . . . . . . . . . . : D: HL-DT-ST DVD+-RW GT32N / A201 (DVD-RAM, DVD-RW, CD-RW)
    Optical Drive #2 . . . . . . . . . . . . . . . . : E: DTSOFT  BDROM / 1.05 (CD)

    PCI Device Information
   ------------------------
    PCI Bus 0; Device 0; Function 0  . . . . . . . . : Controladora de procesador del chipset Mobile Intel(R) 4 Series a DRAM - 2A40
    PCI Bus 0; Device 2; Function 0  . . . . . . . . : Mobile Intel(R) 4 Series Express Chipset Family
    PCI Bus 0; Device 2; Function 1  . . . . . . . . : Mobile Intel(R) 4 Series Express Chipset Family
    PCI Bus 0; Device 26; Function 0 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH9 - 2937
    PCI Bus 0; Device 26; Function 1 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH9 - 2938
    PCI Bus 0; Device 26; Function 2 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH9 - 2939
    PCI Bus 0; Device 26; Function 7 . . . . . . . . : Controlador de host mejorado USB2 de la familia Intel(R) ICH9 - 293C
    PCI Bus 0; Device 27; Function 0 . . . . . . . . : Controladora de High Definition Audio
    PCI Bus 0; Device 28; Function 0 . . . . . . . . : Puerto raíz PCI Express 1 de la familia Intel(R) ICH9 - 2940
    PCI Bus 0; Device 28; Function 1 . . . . . . . . : Puerto raíz PCI Express 2 de la familia Intel(R) ICH9 - 2942
    PCI Bus 0; Device 28; Function 2 . . . . . . . . : Puerto raíz PCI Express 3 de la familia Intel(R) ICH9 - 2944
    PCI Bus 0; Device 28; Function 4 . . . . . . . . : Puerto raíz PCI Express 5 de la familia Intel(R) ICH9 - 2948
    PCI Bus 0; Device 29; Function 0 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH8 - 2934
    PCI Bus 0; Device 29; Function 1 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH9 - 2935
    PCI Bus 0; Device 29; Function 2 . . . . . . . . : Controlador de host universal USB de la familia Intel(R) ICH9 - 2936
    PCI Bus 0; Device 29; Function 7 . . . . . . . . : Controlador de host mejorado USB2 de la familia Intel(R) ICH9 - 293A
    PCI Bus 0; Device 30; Function 0 . . . . . . . . : Puente PCI Intel(R) 82801 - 2448
    PCI Bus 0; Device 31; Function 0 . . . . . . . . : Controladora de interfaz LPC Intel(R) ICH9M - 2919
    PCI Bus 0; Device 31; Function 2 . . . . . . . . : Intel(R) ICH9M-E/M SATA AHCI Controller
    PCI Bus 0; Device 31; Function 3 . . . . . . . . : Intel(R) ICH9 Family SMBus Controller - 2930
    PCI Bus 9; Device 0; Function 0  . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
    PCI Bus 12; Device 0; Function 0 . . . . . . . . : Atheros AR9285 802.11b/g/n WiFi Adapter



  -- Physical Disk Information - Disk: #0: WDC WD5000BEVT-75A0RT0 --

    Hard Disk Summary
   -------------------
    Hard Disk Number . . . . . . . . . . . . . . . . : 0
    Interface  . . . . . . . . . . . . . . . . . . . : S-ATA II
    Disk Controller  . . . . . . . . . . . . . . . . : Intel(R) ICH9M-E/M SATA AHCI Controller (AHCI) [VEN: 8086, DEV: 2929] Version: 9.6.4.1002, 6-8-2010
    Hard Disk Model ID . . . . . . . . . . . . . . . : WDC WD5000BEVT-75A0RT0
    Firmware Revision  . . . . . . . . . . . . . . . : 01.01A01
    Hard Disk Serial Number  . . . . . . . . . . . . : WD-WXF1EB0HF294
    Total Size . . . . . . . . . . . . . . . . . . . : 476937 MB
    Power State  . . . . . . . . . . . . . . . . . . : Active
    Logical Drive(s) . . . . . . . . . . . . . . . . : C: [OS] 
    Current Temperature  . . . . . . . . . . . . . . : 44 °C
    Power On Time  . . . . . . . . . . . . . . . . . : 579 days, 10 hours
    Estimated Remaining Lifetime . . . . . . . . . . : more than 1000 days
    Health . . . . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)
    Performance  . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)

    The hard disk status is PERFECT. Problematic or weak sectors were not found and there are no spin up or data transfer errors. 
      No actions needed.

    ATA Information
   -----------------
    Hard Disk Cylinders  . . . . . . . . . . . . . . : 969021
    Hard Disk Heads  . . . . . . . . . . . . . . . . : 16
    Hard Disk Sectors  . . . . . . . . . . . . . . . : 63
    ATA Revision . . . . . . . . . . . . . . . . . . : ATA8-ACS
    Transport Version  . . . . . . . . . . . . . . . : SATA Rev 2.6
    Total Sectors  . . . . . . . . . . . . . . . . . : 976773168
    Bytes Per Sector . . . . . . . . . . . . . . . . : 512
    Buffer Size  . . . . . . . . . . . . . . . . . . : 8192 KB
    Multiple Sectors . . . . . . . . . . . . . . . . : 16
    Error Correction Bytes . . . . . . . . . . . . . : 50
    Unformatted Capacity . . . . . . . . . . . . . . : 476940 MB
    Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
    Maximum Multiword DMA Mode . . . . . . . . . . . : 2
    Maximum UDMA Mode  . . . . . . . . . . . . . . . : 300 MB/s (6)
    Active UDMA Mode . . . . . . . . . . . . . . . . : 300 MB/s (5)
    Minimum Multiword DMA Transfer Time  . . . . . . : 120 ns
    Recommended Multiword DMA Transfer Time  . . . . : 120 ns
    Minimum PIO Transfer Time Without IORDY  . . . . : 120 ns
    Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
    ATA Control Byte . . . . . . . . . . . . . . . . : Valid
    ATA Checksum Value . . . . . . . . . . . . . . . : Invalid

    Acoustic Management Configuration
   -----------------------------------
    Acoustic Management  . . . . . . . . . . . . . . : Supported
    Acoustic Management  . . . . . . . . . . . . . . : Disabled
    Current Acoustic Level . . . . . . . . . . . . . : Max performance and volume (FEh)
    Recommended Acoustic Level . . . . . . . . . . . : Min performance and volume (80h)

    ATA Features
   --------------
    Read Ahead Buffer  . . . . . . . . . . . . . . . : Supported, Enabled
    DMA  . . . . . . . . . . . . . . . . . . . . . . : Supported
    Ultra DMA  . . . . . . . . . . . . . . . . . . . : Supported
    S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
    Power Management . . . . . . . . . . . . . . . . : Supported
    Write Cache  . . . . . . . . . . . . . . . . . . : Supported
    Host Protected Area  . . . . . . . . . . . . . . : Supported
    HPA Security Extensions  . . . . . . . . . . . . : Supported
    Advanced Power Management  . . . . . . . . . . . : Supported, Enabled
    Advanced Power Management Level  . . . . . . . . : Minimum power consumption without standby (128)
    Extended Power Management  . . . . . . . . . . . : Not supported
    Power Up In Standby  . . . . . . . . . . . . . . : Not supported
    48-Bit LBA Addressing  . . . . . . . . . . . . . : Supported
    Device Configuration Overlay . . . . . . . . . . : Supported
    IORDY Support  . . . . . . . . . . . . . . . . . : Supported
    Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
    NOP Command  . . . . . . . . . . . . . . . . . . : Supported
    Trusted Computing  . . . . . . . . . . . . . . . : Not supported
    64-Bit World Wide ID . . . . . . . . . . . . . . : 50014EE6561D62DF
    Streaming  . . . . . . . . . . . . . . . . . . . : Not supported
    Media Card Pass Through  . . . . . . . . . . . . : Not supported
    General Purpose Logging  . . . . . . . . . . . . : Supported
    Error Logging  . . . . . . . . . . . . . . . . . : Supported
    CFA Feature Set  . . . . . . . . . . . . . . . . : Not supported
    CFast Device . . . . . . . . . . . . . . . . . . : Not supported
    Long Physical Sectors (1)  . . . . . . . . . . . : Not supported
    Long Logical Sectors . . . . . . . . . . . . . . : Not supported
    Write-Read-Verify  . . . . . . . . . . . . . . . : Not supported
    NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
    NV Cache Power Mode  . . . . . . . . . . . . . . : Not supported
    NV Cache Size  . . . . . . . . . . . . . . . . . : Not supported
    Free-fall Control  . . . . . . . . . . . . . . . : Not supported
    Free-fall Control Sensitivity  . . . . . . . . . : Not supported
    Service Interrupt  . . . . . . . . . . . . . . . : Not supported
    IDLE IMMEDIATE Command With UNLOAD Feature . . . : Supported
    Zoned Capabilities . . . . . . . . . . . . . . . : Not supported
    SCT Command Transport  . . . . . . . . . . . . . : Supported
    SCT Error Recovery Control . . . . . . . . . . . : Not supported
    Nominal Media Rotation Rate  . . . . . . . . . . : 5400 RPM

    SSD Features
   --------------
    Data Set Management  . . . . . . . . . . . . . . : Not supported
    TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
    Deterministic Read After TRIM  . . . . . . . . . : Not supported
    Read Zeroes After TRIM . . . . . . . . . . . . . : Not supported

    S.M.A.R.T. Details
   --------------------
    Off-line Data Collection Status  . . . . . . . . : Never Started
    Self Test Execution Status . . . . . . . . . . . : Successfully Completed
    Total Time To Complete Off-line Data Collection  : 13200 seconds
    Execute Off-line Immediate . . . . . . . . . . . : Supported
    Abort/restart Off-line By Host . . . . . . . . . : Not supported
    Off-line Read Scanning . . . . . . . . . . . . . : Supported
    Short Self-test  . . . . . . . . . . . . . . . . : Supported
    Extended Self-test . . . . . . . . . . . . . . . : Supported
    Conveyance Self-test . . . . . . . . . . . . . . : Supported
    Selective Self-Test  . . . . . . . . . . . . . . : Supported
    Save Data Before/After Power Saving Mode . . . . : Supported
    Enable/Disable Attribute Autosave  . . . . . . . : Supported
    Error Logging Capability . . . . . . . . . . . . : Supported
    Short Self-test Estimated Time . . . . . . . . . : 2 minutes
    Extended Self-test Estimated Time  . . . . . . . : 154 minutes
    Conveyance Self-test Estimated Time  . . . . . . : 5 minutes
    Last Short Self-test Result  . . . . . . . . . . : Never Started
    Last Short Self-test Date  . . . . . . . . . . . : Never Started
    Last Extended Self-test Result . . . . . . . . . : Never Started
    Last Extended Self-test Date . . . . . . . . . . : Never Started
    Last Conveyance Self-test Result . . . . . . . . : Never Started
    Last Conveyance Self-test Date . . . . . . . . . : Never Started

    Security Mode
   ---------------
    Security Mode  . . . . . . . . . . . . . . . . . : Supported
    Security Erase . . . . . . . . . . . . . . . . . : Supported
    Security Erase Time  . . . . . . . . . . . . . . : 134 minutes
    Security Enhanced Erase Feature  . . . . . . . . : Supported
    Security Enhanced Erase Time . . . . . . . . . . : 134 minutes
    Security Enabled . . . . . . . . . . . . . . . . : No
    Security Locked  . . . . . . . . . . . . . . . . : No
    Security Frozen  . . . . . . . . . . . . . . . . : Yes
    Security Counter Expired . . . . . . . . . . . . : No
    Security Level . . . . . . . . . . . . . . . . . : High
    Device Encrypts All User Data  . . . . . . . . . : No
    Sanitize . . . . . . . . . . . . . . . . . . . . : Not supported
    Overwrite  . . . . . . . . . . . . . . . . . . . : Not supported
    Crypto Scramble  . . . . . . . . . . . . . . . . : Not supported
    Block Erase  . . . . . . . . . . . . . . . . . . : Not supported
    Sanitize Antifreeze Lock . . . . . . . . . . . . : Not supported
    ACS-3 Commands Allowed By Sanitize . . . . . . . : No

    Serial ATA Features
   ---------------------
    S-ATA Compliance . . . . . . . . . . . . . . . . : Yes
    S-ATA I Signaling Speed (1.5 Gps)  . . . . . . . : Supported
    S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Supported
    S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
    Receipt Of Power Management Requests From Host . : Supported
    PHY Event Counters . . . . . . . . . . . . . . . : Supported
    Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Not supported
    DMA Setup Auto-Activate Optimization . . . . . . : Supported, Enabled
    Device Initiating Interface Power Management . . : Supported, Enabled
    In-Order Data Delivery . . . . . . . . . . . . . : Not supported
    Asynchronous Notification  . . . . . . . . . . . : Not supported
    Software Settings Preservation . . . . . . . . . : Supported, Enabled
    Native Command Queuing (NCQ) . . . . . . . . . . : Supported
    Queue Length . . . . . . . . . . . . . . . . . . : 32
    NCQ Streaming  . . . . . . . . . . . . . . . . . : Not supported
    NCQ Autosense  . . . . . . . . . . . . . . . . . : Not supported
    Automatic Partial To Slumber Translations  . . . : Not supported
    Rebuild Assist . . . . . . . . . . . . . . . . . : Not supported
    Hybrid Information . . . . . . . . . . . . . . . : Not supported
    Device Sleep (DevSleep)  . . . . . . . . . . . . : Not supported
    DevSleep To ReducedPwrState  . . . . . . . . . . : Not supported

    Disk Information
   ------------------
    Disk Family  . . . . . . . . . . . . . . . . . . : Scorpio Blue
    Form Factor  . . . . . . . . . . . . . . . . . . : 2.5" 
    Capacity . . . . . . . . . . . . . . . . . . . . : 500 GB (500 x 1.000.000.000 bytes)
    Number Of Disks  . . . . . . . . . . . . . . . . : 2
    Number Of Heads  . . . . . . . . . . . . . . . . : 4
    Rotational Speed . . . . . . . . . . . . . . . . : 5400 RPM
    Rotation Time  . . . . . . . . . . . . . . . . . : 11,11 ms
    Average Rotational Latency . . . . . . . . . . . : 5,56 ms
    Disk Interface . . . . . . . . . . . . . . . . . : Serial-ATA/300
    Buffer-Host Max. Rate  . . . . . . . . . . . . . : 300 MB/seconds
    Buffer Size  . . . . . . . . . . . . . . . . . . : 8192 KB
    Drive Ready Time (Typical) . . . . . . . . . . . : 4 seconds
    Average Seek Time  . . . . . . . . . . . . . . . : 12,0 ms
    Track To Track Seek Time . . . . . . . . . . . . : 2,0 ms
    Full Stroke Seek Time  . . . . . . . . . . . . . : ? ms
    Width  . . . . . . . . . . . . . . . . . . . . . : 69,9 mm (2,8 inch)
    Depth  . . . . . . . . . . . . . . . . . . . . . : 100,2 mm (3,9 inch)
    Height . . . . . . . . . . . . . . . . . . . . . : 9,5 mm (0,4 inch)
    Weight . . . . . . . . . . . . . . . . . . . . . : 100 grams (0,2 pounds)
    Acoustic (Idle)  . . . . . . . . . . . . . . . . : 2,4 Bel
    Acoustic (Min Performance And Volume)  . . . . . : 2,6 Bel
    Acoustic (Max Performance And Volume)  . . . . . : 2,6 Bel
    Required Power For Spinup  . . . . . . . . . . . : 500 mA
    Power Required (Seek)  . . . . . . . . . . . . . : 2,5 W
    Power Required (Idle)  . . . . . . . . . . . . . : 2,0 W
    Power Required (Standby) . . . . . . . . . . . . : 0,3 W
    Manufacturer . . . . . . . . . . . . . . . . . . : Western Digital Corporation
    Manufacturer Website . . . . . . . . . . . . . . : http://www.westerndigital.com/en/products

    S.M.A.R.T.
   ------------
No.  Attribute                Thre.. Value  Worst  Data                Status                   Flags                                                  
1    Raw Read Error Rate      51     200    200    000000000000        OK                       Self Preserving, Error-Rate, Performance, Statistica.. 
3    Spin Up Time             21     186    177    00000000067A        OK                       Self Preserving, Performance, Statistical, Critical    
4    Start/Stop Count         0      94     94     0000000017B1        OK (Always passing)      Self Preserving, Event Count, Statistical              
5    Reallocated Sectors Co.. 140    200    200    000000000000        OK                       Self Preserving, Event Count, Statistical, Critical    
7    Seek Error Rate          0      100    253    000000000000        OK (Always passing)      Self Preserving, Error-Rate, Performance, Statistical  
9    Power On Time Count      0      81     81     000000003652        OK (Always passing)      Self Preserving, Event Count, Statistical              
10   Spin Retry Count         0      100    100    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
11   Drive Calibration Retr.. 0      100    100    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
12   Drive Power Cycle Count  0      94     94     0000000017A3        OK (Always passing)      Self Preserving, Event Count, Statistical              
191  G-Sense Error Rate       0      1      1      000000006307        OK (Always passing)      Self Preserving, Event Count, Statistical              
192  Power off Retract Cycl.. 0      200    200    0000000000B8        OK (Always passing)      Self Preserving, Event Count, Statistical              
193  Load/Unload Cycle Count  0      186    186    00000000A5FC        OK (Always passing)      Self Preserving, Event Count, Statistical              
194  Disk Temperature         0      103    94     00000000002C        OK (Always passing)      Self Preserving, Statistical                           
196  Reallocation Event Count 0      200    200    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
197  Current Pending Sector.. 0      200    200    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
198  Off-Line Uncorrectable.. 0      100    253    000000000000        OK (Always passing)      Self Preserving, Event Count                           
199  Ultra ATA CRC Error Co.. 0      200    200    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
200  Write Error Rate         0      100    253    000000000000        OK (Always passing)      Error-Rate                                             
240  Head Flying Hours        0      81     81     000000003641        OK (Always passing)      Self Preserving, Event Count, Statistical              
241  Total LBA Written        0      200    200    000A24A0DAF6        OK (Always passing)      Self Preserving, Event Count, Statistical              
242  Total LBA Read           0      200    200    000F41497166        OK (Always passing)      Self Preserving, Event Count, Statistical              
254  Free Fall Event Count    0      200    200    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              

    Transfer Rate Information
   ---------------------------
    Total Data Read  . . . . . . . . . . . . . . . . : 25 MB,  25 MB since installation  (08/09/2020)
    Total Data Write . . . . . . . . . . . . . . . . : 4 MB,  4 MB since installation
    Average Reads Per Day  . . . . . . . . . . . . . : 25,00 MB
    Average Writes Per Day . . . . . . . . . . . . . : 4,00 MB
    Current Transfer Rate  . . . . . . . . . . . . . : 0 KB/s
    Maximum Transfer Rate  . . . . . . . . . . . . . : 3651 KB/s
    Current Read Rate  . . . . . . . . . . . . . . . : 0 KB/s
    Current Write Rate . . . . . . . . . . . . . . . : 0 KB/s
    Current Disk Activity  . . . . . . . . . . . . . : 0 %



  -- Partition Information --

Logical Drive                           Total Space         Free Space          Free Space               Used Space
C: OS (Disk: #0)                        451,0 GB            322,7 GB             72 %                    #####---------------



  -- System Management Information --


    Motherboard Information
   -------------------------
    Manufacturer . . . . . . . . : Dell Inc.
    Product  . . . . . . . . . . : 0N7J7M   
    Serial Number  . . . . . . . : .J9CN2N1.CN7016611N023J.
    BIOS . . . . . . . . . . . . : Dell Inc. ver. A02 [09/13/2010]
    Memory Module 1  . . . . . . : 2048 MB [800 MHz]
    Memory Module 2  . . . . . . : 2048 MB [800 MHz]

    System Information
   --------------------
    Manufacturer . . . . . . . . : Dell Inc.
    Product  . . . . . . . . . . : Inspiron N5030   
    Serial Number  . . . . . . . : J9CN2N1
    UUID . . . . . . . . . . . . : 44454C4C-3900-1043-804E-CAC04F324E31
    Chassis  . . . . . . . . . . : Dell Inc.
    Chassis Serial Number  . . . : J9CN2N1

No pudiste ejecutar Fbar en modo normal?

Porque no se indicaba hacerlo en modo seguro…si no,por favor, realizalo de nuevo

No, se queda colgado. Por eso lo he hecho en modo seguro.

El pc esta un poco de desastre…uff

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente las casillas Registry Backup, las demás NO

  • Pulsar en Run.

Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
IFEO\iastorui.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere_launcher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\pcdlauncher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\uninstaller.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
GroupPolicyScripts-x32: Restricción <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {161CBD90-E4D7-4417-9347-DF8D069DA893} - System32\Tasks\{C0C9519D-F540-411F-8929-959030ED8613} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files (x86)\Trend Micro
Task: {417CEE58-0597-45B1-B9FA-913C54E4BF81} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
C:\Program Files (x86)\Lavasoft
Task: {6A762ED2-2DB1-4038-A771-A12F8255F153} - System32\Tasks\{F78DC087-29B5-4FA1-A84B-E24E020B7695} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
Task: {8C2C64AC-5741-43B5-8A86-0EB6F7E7786C} - System32\Tasks\{31F2BD49-4D82-43B4-9C9C-1691A191B24B} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz5234\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCIÓN
Task: {9A45F2A7-0A9F-4012-A832-C08E480F4E68} - System32\Tasks\{46D804CC-DC3C-4C42-86AD-A60387BCC505} => C:\Windows\system32\pcalua.exe -a C:\Users\DAVIDG~1\AppData\Local\Temp\{F658F04B-7BA8-4566-9496-275E4B1CE811}\adobeshockwavextrabundle.exe -d C:\Windows -c /xtrabundle=Shockwave_3D_Asset <==== ATENCIÓN
Task: {A3EC9E91-4C64-4DBE-B8B9-9D18A22B7859} - System32\Tasks\{634725ED-5590-46D2-8F29-3A72C5A31C36} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz07bd\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCIÓN
Task: {C6EE84F0-C758-4CE7-B03B-0EBDD6D62B7B} - System32\Tasks\BrowserProtect => C:\Windows\system32\sc.exe start BrowserProtect <==== ATENCIÓN
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
SearchScopes: HKLM -> DefaultScope no se encuentra el valor
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Ningún archivo
Toolbar: HKLM - Sin Nombre - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  Ningún archivo
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Ningún archivo
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
S3 Prot6Flt; system32\DRIVERS\Prot6Flt.sys [X]
2020-08-14 23:48 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 328187
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 97571
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 230726
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 206640
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 204837
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 109618
2020-08-14 23:47 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 56394
2015-08-22 23:31 - 2015-08-22 23:31 - 000000000 _____ () C:\Users\David GP\AppData\Local\{8EE2430D-F487-4287-9EA1-97BE1DE0B373}
ShortcutWithArgument: C:\Users\David GP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Awesome Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=afkccfnochoebimhhniekgcegeeiepmi
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6 [244]
AlternateDataStreams: C:\Users\David GP\Desktop\curriculumDavid.doc:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\David GP\AppData\Local\Temp:Dn5bA7i8kvgo2aNls [2074]
AlternateDataStreams: C:\Users\David GP\Documents\cu piscinero:com.dropbox.attributes [168]
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\batfile:  <==== ATENCIÓN
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\cmdfile:  <==== ATENCIÓN
Task: {A54F77C8-7141-484D-A94D-4E7BDCA0ECCA} - System32\Tasks\Malwarebytes Anti-Exploit => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe
C:\Program Files\Malwarebytes Anti-Exploit
Task: C:\Windows\Tasks\Malwarebytes Anti-Exploit.job => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe C:\Program Files\Malwarebytes Anti-Exploit\mbae64.exe
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll -> Ningún archivo
C:\Program Files (x86)\Malwarebytes Anti-Malware




HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Y ahora inicia el pc en MODO SEGURO

  • Ejecutas Frst.exe.

  • Presionas el botón Corregir y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema y para ello trata de desinstalar:

  • Pc Tools Firewall
  • Superantispyware
  • Spybot
  • Eset Onlie
  • Sphos antirookit

Si no puedes quitarlos, usa el modo seguro para desinstalarlos

Vas comentado

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 06-09-2020
Ejecutado por David GP (08-09-2020 21:22:28) Run:1
Ejecutado desde C:\Users\David GP\Desktop
Perfiles cargados: David GP
Modo de Inicio: Safe Mode (minimal)
==============================================

fixlist contenido:
*****************
Start
CreateRestorePoint:
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricci�n <==== ATENCI�N
IFEO\iastorui.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\interneteverywhere_launcher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\pcdlauncher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\uninstaller.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
GroupPolicyScripts-x32: Restricci�n <==== ATENCI�N
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
CHR HKLM\SOFTWARE\Policies\Google: Restricci�n <==== ATENCI�N
Task: {161CBD90-E4D7-4417-9347-DF8D069DA893} - System32\Tasks\{C0C9519D-F540-411F-8929-959030ED8613} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files (x86)\Trend Micro
Task: {417CEE58-0597-45B1-B9FA-913C54E4BF81} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
C:\Program Files (x86)\Lavasoft
Task: {6A762ED2-2DB1-4038-A771-A12F8255F153} - System32\Tasks\{F78DC087-29B5-4FA1-A84B-E24E020B7695} => C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
Task: {8C2C64AC-5741-43B5-8A86-0EB6F7E7786C} - System32\Tasks\{31F2BD49-4D82-43B4-9C9C-1691A191B24B} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz5234\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCI�N
Task: {9A45F2A7-0A9F-4012-A832-C08E480F4E68} - System32\Tasks\{46D804CC-DC3C-4C42-86AD-A60387BCC505} => C:\Windows\system32\pcalua.exe -a C:\Users\DAVIDG~1\AppData\Local\Temp\{F658F04B-7BA8-4566-9496-275E4B1CE811}\adobeshockwavextrabundle.exe -d C:\Windows -c /xtrabundle=Shockwave_3D_Asset <==== ATENCI�N
Task: {A3EC9E91-4C64-4DBE-B8B9-9D18A22B7859} - System32\Tasks\{634725ED-5590-46D2-8F29-3A72C5A31C36} => C:\Windows\system32\pcalua.exe -a "C:\Users\David GP\AppData\Local\Temp\wz07bd\HJT-InfoSpyware.exe" -d "C:\Users\David GP\Downloads" <==== ATENCI�N
Task: {C6EE84F0-C758-4CE7-B03B-0EBDD6D62B7B} - System32\Tasks\BrowserProtect => C:\Windows\system32\sc.exe start BrowserProtect <==== ATENCI�N
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
SearchScopes: HKLM -> DefaultScope no se encuentra el valor
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Ning�n archivo
Toolbar: HKLM - Sin Nombre - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  Ning�n archivo
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Ning�n archivo
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
S3 Prot6Flt; system32\DRIVERS\Prot6Flt.sys [X]
2020-08-14 23:48 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 328187
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 97571
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 230726
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 206640
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 204837
2020-08-14 23:48 - 2020-08-14 23:48 - 000000000 ____D C:\MFT 109618
2020-08-14 23:47 - 2020-08-17 23:17 - 000000000 ____D C:\MFT 56394
2015-08-22 23:31 - 2015-08-22 23:31 - 000000000 _____ () C:\Users\David GP\AppData\Local\{8EE2430D-F487-4287-9EA1-97BE1DE0B373}
ShortcutWithArgument: C:\Users\David GP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Awesome Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=afkccfnochoebimhhniekgcegeeiepmi
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6 [244]
AlternateDataStreams: C:\Users\David GP\Desktop\curriculumDavid.doc:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\David GP\AppData\Local\Temp:Dn5bA7i8kvgo2aNls [2074]
AlternateDataStreams: C:\Users\David GP\Documents\cu piscinero:com.dropbox.attributes [168]
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\batfile:  <==== ATENCI�N
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\cmdfile:  <==== ATENCI�N
Task: {A54F77C8-7141-484D-A94D-4E7BDCA0ECCA} - System32\Tasks\Malwarebytes Anti-Exploit => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe
C:\Program Files\Malwarebytes Anti-Exploit
Task: C:\Windows\Tasks\Malwarebytes Anti-Exploit.job => C:\Program Files\Malwarebytes Anti-Exploit\mbaeloader64.exe C:\Program Files\Malwarebytes Anti-Exploit\mbae64.exe
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation -> Malwarebytes Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll -> Ning�n archivo
C:\Program Files (x86)\Malwarebytes Anti-Malware




HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\iastorui.exe => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\interneteverywhere.exe => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\interneteverywhere_launcher.exe => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\pcdlauncher.exe => eliminado correctamente
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\uninstaller.exe => eliminado correctamente
C:\Windows\SysWOW64\GroupPolicy\Machine => movido correctamente
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => movido correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{161CBD90-E4D7-4417-9347-DF8D069DA893}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{161CBD90-E4D7-4417-9347-DF8D069DA893}" => eliminado correctamente
C:\Windows\System32\Tasks\{C0C9519D-F540-411F-8929-959030ED8613} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C0C9519D-F540-411F-8929-959030ED8613}" => eliminado correctamente
"C:\Program Files (x86)\Trend Micro" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{417CEE58-0597-45B1-B9FA-913C54E4BF81}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{417CEE58-0597-45B1-B9FA-913C54E4BF81}" => eliminado correctamente
C:\Windows\System32\Tasks\Ad-Aware Update (Weekly) => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Ad-Aware Update (Weekly)" => eliminado correctamente
"C:\Program Files (x86)\Lavasoft" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A762ED2-2DB1-4038-A771-A12F8255F153}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A762ED2-2DB1-4038-A771-A12F8255F153}" => eliminado correctamente
C:\Windows\System32\Tasks\{F78DC087-29B5-4FA1-A84B-E24E020B7695} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F78DC087-29B5-4FA1-A84B-E24E020B7695}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C2C64AC-5741-43B5-8A86-0EB6F7E7786C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C2C64AC-5741-43B5-8A86-0EB6F7E7786C}" => eliminado correctamente
C:\Windows\System32\Tasks\{31F2BD49-4D82-43B4-9C9C-1691A191B24B} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{31F2BD49-4D82-43B4-9C9C-1691A191B24B}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9A45F2A7-0A9F-4012-A832-C08E480F4E68}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A45F2A7-0A9F-4012-A832-C08E480F4E68}" => eliminado correctamente
C:\Windows\System32\Tasks\{46D804CC-DC3C-4C42-86AD-A60387BCC505} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{46D804CC-DC3C-4C42-86AD-A60387BCC505}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3EC9E91-4C64-4DBE-B8B9-9D18A22B7859}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3EC9E91-4C64-4DBE-B8B9-9D18A22B7859}" => eliminado correctamente
C:\Windows\System32\Tasks\{634725ED-5590-46D2-8F29-3A72C5A31C36} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{634725ED-5590-46D2-8F29-3A72C5A31C36}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6EE84F0-C758-4CE7-B03B-0EBDD6D62B7B}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6EE84F0-C758-4CE7-B03B-0EBDD6D62B7B}" => eliminado correctamente
C:\Windows\System32\Tasks\BrowserProtect => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserProtect" => eliminado correctamente
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => valor restaurado correctamente
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => valor restaurado correctamente
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valor restaurado correctamente
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => eliminado correctamente
HKLM\Software\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => eliminado correctamente
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => eliminado correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation" => no encontrado
C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation" => no encontrado
"C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation" => no encontrado
"C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
HKLM\System\CurrentControlSet\Services\Prot6Flt => eliminado correctamente
Prot6Flt => servicio eliminado correctamente
C:\MFT 328187 => movido correctamente
C:\MFT 97571 => movido correctamente
C:\MFT 230726 => movido correctamente
C:\MFT 206640 => movido correctamente
C:\MFT 204837 => movido correctamente
C:\MFT 109618 => movido correctamente
C:\MFT 56394 => movido correctamente
C:\Users\David GP\AppData\Local\{8EE2430D-F487-4287-9EA1-97BE1DE0B373} => movido correctamente
C:\Users\David GP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Awesome Screenshot App.lnk => Acceso directo argumento eliminado correctamente
C:\Windows => ":nlsPreferences" ADS eliminado correctamente
C:\ProgramData\TEMP => ":5C321E34" ADS eliminado correctamente
C:\ProgramData\TEMP => ":C31F31E6" ADS eliminado correctamente
"C:\Users\David GP\Desktop\curriculumDavid.doc" => ":com.dropbox.attributes" ADS no encontrado.
C:\Users\David GP\AppData\Local\Temp => ":Dn5bA7i8kvgo2aNls" ADS eliminado correctamente
C:\Users\David GP\Documents\cu piscinero => ":com.dropbox.attributes" ADS eliminado correctamente
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\batfile => eliminado correctamente
HKU\S-1-5-21-2756063190-210330184-3870898647-1001\Software\Classes\cmdfile => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A54F77C8-7141-484D-A94D-4E7BDCA0ECCA}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A54F77C8-7141-484D-A94D-4E7BDCA0ECCA}" => eliminado correctamente
C:\Windows\System32\Tasks\Malwarebytes Anti-Exploit => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Malwarebytes Anti-Exploit" => eliminado correctamente
C:\Program Files\Malwarebytes Anti-Exploit => movido correctamente
C:\Windows\Tasks\Malwarebytes Anti-Exploit.job => movido correctamente
HKLM\System\CurrentControlSet\Services\MBAMProtector => eliminado correctamente
MBAMProtector => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\MBAMWebAccessControl => eliminado correctamente
MBAMWebAccessControl => servicio eliminado correctamente
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MBAMShlExt => eliminado correctamente
HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => eliminado correctamente
"C:\Program Files (x86)\Malwarebytes Anti-Malware" => no encontrado
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.



========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1384828 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 247335776 B
Edge => 0 B
Chrome => 66224531 B
Firefox => 23724299 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 66228 B
ProgramData => 66228 B
systemprofile => 7888116 B
systemprofile32 => 34831510 B
LocalService => 34963882 B
NetworkService => 35030110 B
David GP => 65927676 B

RecycleBin => 0 B
EmptyTemp: => 501.5 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 21:23:23 ====

No me deja desinstalar los programas, se cuelga al entrar al instalador, lo abre, empieza el proceso pero se para nada más empezar. Voy a borrarlos en modo seguro.

En modo seguro me ha dejado borrarlos.

Vale…ahora en modo normal, realzias.

1) Descarga, instala y ejecuta Malwarebytes’ Anti-Malware.

  • Presiona clic en “Use Malewarebytes Free” (Usar Malewarebyte gratis).

  • Pulsa en el botón “Open Malewarebytes Free”.

imagen

  • Presiona el botón “Scan” (Escaneo).

imagen

Una vez finalizado el escaneo aparecerá la siguiente pantalla:

imagen

  • Pulsa en “View report” (Ver informe).

  • Luego presionar el botón “Export” (Exportar). Elijes “Text file” (fichero de texto). Elijes un nombre y guardas ese archivo en el escritorio…

2) Descarga Adwcleaner en el escritorio.

  • Desactiva tu antivirus :arrow_forward:Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad.

  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • Si no encuentra nada, pulsamos “Omitir Reparación

  • El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"

Puedes mirar su manual >> Manual de Adwcleaner

3) Descarga Ccleaner

Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.

Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.


Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 8/9/20
Hora del análisis: 22:34
Archivo de registro: c251b004-f212-11ea-8e8a-f04da2d16141.json

-Información del software-
Versión: 4.2.0.82
Versión de los componentes: 1.0.1036
Versión del paquete de actualización: 1.0.29609
Licencia: Prueba

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: DavidGP-PC\David GP

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 286259
Amenazas detectadas: 36
Amenazas en cuarentena: 0
Tiempo transcurrido: 22 min, 50 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 10
PUP.Optional.Restoro, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\Restoro, Sin acciones por parte del usuario, 778, 551610, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Sin acciones por parte del usuario, 83, 239414, , , , , , 
PUP.Optional.Iminent, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Sin acciones por parte del usuario, 83, 239414, 1.0.29609, , ame, , , 
PUP.Optional.Restoro, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\Local AppWizard-Generated Applications\Restoro, Sin acciones por parte del usuario, 778, 551612, 1.0.29609, , ame, , , 
PUP.Optional.Restoro, HKLM\SOFTWARE\Restoro, Sin acciones por parte del usuario, 778, 551614, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nbljechdpodpbchbmjcoamidppmpnmlc, Sin acciones por parte del usuario, 83, 239422, 1.0.29609, , ame, , , 
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Update Zebar, Sin acciones por parte del usuario, 27, 254052, 1.0.29609, , ame, , , 
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\CLSID\{BA827421-E282-479E-AE60-34796877B8AE}, Sin acciones por parte del usuario, 778, 551619, , , , , , 
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine.1, Sin acciones por parte del usuario, 778, 551619, , , , , , 
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine, Sin acciones por parte del usuario, 778, 551619, 1.0.29609, , ame, , , 

Valor del registro: 6
PUP.Optional.Iminent, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Sin acciones por parte del usuario, 83, 239414, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKU\S-1-5-21-2756063190-210330184-3870898647-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FAVICONPATH, Sin acciones por parte del usuario, 83, 239414, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}, Sin acciones por parte del usuario, 83, 538246, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, Sin acciones por parte del usuario, 83, 538247, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}, Sin acciones por parte del usuario, 83, 538246, 1.0.29609, , ame, , , 
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}, Sin acciones por parte del usuario, 83, 538247, 1.0.29609, , ame, , , 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 4
PUP.Optional.IMGUpdater, C:\PROGRAM FILES (X86)\COMMON FILES\IMGUPDATER, Sin acciones por parte del usuario, 1783, 177737, 1.0.29609, , ame, , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Download, Sin acciones por parte del usuario, 1127, 512876, , , , , , 
PUP.Optional.DriverToolkit, C:\Program Files (x86)\DriverToolkit\Backup, Sin acciones por parte del usuario, 1127, 512876, , , , , , 
PUP.Optional.DriverToolkit, C:\PROGRAM FILES (X86)\DRIVERTOOLKIT, Sin acciones por parte del usuario, 1127, 512876, 1.0.29609, , ame, , , 

Archivo: 16
PUP.Optional.Restoro, C:\WINDOWS\RESTORO.INI, Sin acciones por parte del usuario, 778, 551609, 1.0.29609, , ame, , 9D22D6C4116ACEAD6EF2A78E66F973DB, 80E3D76940FB01423B55B7CE773556BB87BEDEAB1715EAF3D50D6D575D3F1CE4
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\PREFS.JS, Sin acciones por parte del usuario, 83, 301714, 1.0.29609, , ame, , 8AD0A8E1AE652EEF1505493033869FE7, C055E96171FD4387124CECE856619C9B8C8B739DE1FE158A4B0DB3E0F2D4711A
PUM.Optional.FireFoxSearchOverride, C:\USERS\DAVID GP\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QZRIE0WB.DEFAULT\USER.JS, Sin acciones por parte del usuario, 15213, 302334, 1.0.29609, , ame, , C2987ED6E6BFB1349D8D404913733B76, CDFE8A87FDDD2B3CC76706785F8ABF2B9831848B687E860F1829D68D1A00CD8A
PUP.Optional.Restoro, C:\USERS\DAVID GP\DOWNLOADS\RESTORO.EXE, Sin acciones por parte del usuario, 778, 551611, 1.0.29609, , ame, , 5755D55AAD262408A116BF77EC8DA51D, 55757E1A0B20F880AE146B3409ECDB0D40EEB170D0562AE3028037B56B060849
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 83, 455248, 1.0.29609, , ame, , 156CC8CDA5FC69BBCB68B581DA411E1E, E75AB6744A8045868EC7EF41E87E7F9A89D1B0447B8243B35547CC685B67C651
PUP.Optional.Iminent, C:\USERS\DAVID GP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 83, 455248, 1.0.29609, , ame, , 156CC8CDA5FC69BBCB68B581DA411E1E, E75AB6744A8045868EC7EF41E87E7F9A89D1B0447B8243B35547CC685B67C651
CrackTool.Agent, C:\USERS\DAVID GP\DESKTOP\ADOBE AFTER EFFECTS CC 2017 V14.0.0\AMTEMU.V0.9.2-PAINTER.EXE, Sin acciones por parte del usuario, 5950, 445980, 1.0.29609, 9FC68D11DDB1EC39F448D476, dds, 00888169, 8ABDC20F619641E29AA9AD2B999A0DCC, CDC95D0113A2AF05C2E70FAB23F6C218AE583EBCB47077DD5B705A476F9D6B96
HackTool.Agent, C:\USERS\DAVID GP\DESKTOP\ADOBE AFTER EFFECTS CC 2017 V14.0.0\ADOBEAFTEREFFECTS14ALL\AMTEMU.V0.9.1-PAINTER.EXE, Sin acciones por parte del usuario, 3934, 448498, 1.0.29609, 386301F98137DEA116520FD8, dds, 00888169, A209B88B9B2CF7339BE0AC5126417875, C2F6D462A20F92B97C49C3AF19872FC4DF6AABD4F66F4B8B298A1303881422F6
Generic.Malware/Suspicious, C:\USERS\DAVID GP\DESKTOP\SPYWARES\AT-DESTROYER.EXE, Sin acciones por parte del usuario, 0, 392686, 1.0.29609, , shuriken, , 3E59EF13A28936AA6EF79CA96E81F52F, C0BA6C4BA2F77D4146D30F0BE336E7760E3C680880E4FF7DF19A2C628C77143B

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

El informe que has puesto pone que si naciones por el usuario y que no hay ningún elemento en cuarentena.

cuando finalice el análisis debes tener marcados todos los elementos y pulsar en enviar a Cuarentens, para poder eliminarlos del PC.

revisa en el apartado historial y después en cuarentena si están esos elementos y si no debe repetir el análisis y me vuelves a pegar el informe

los mandé a la cuarentena todos

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build:    07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    09-08-2020
# Duration: 00:00:41
# OS:       Windows 7 Home Premium
# Cleaned:  34
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\Driver Mender
Deleted       C:\Users\David GP\AppData\Local\DriverToolkit
Deleted       C:\Users\David GP\AppData\Roaming\mipony
Deleted       C:\Users\David GP\Documents\mipony

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted       HKCU\Software\UpToDown
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCleaner64.exe
Deleted       HKLM\Software\Classes\CLSID\{AE198C69-7358-4856-9029-F4C0FAD524C1}
Deleted       HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted       HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Deleted       HKLM\Software\Wow6432Node\\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted       HKLM\Software\Wow6432Node\\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCleaner64.exe
Deleted       HKLM\Software\Wow6432Node\dt soft\daemon tools toolbar

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.DellGamesBundle   Folder   C:\Program Files (x86)\WILDTANGENT\DELL GAMES
Deleted       Preinstalled.DellQuickset   Folder   C:\Program Files\DELL\QUICKSET
Deleted       Preinstalled.DellQuickset   Folder   C:\ProgramData\DELL\QUICKSET
Deleted       Preinstalled.DellQuickset   Registry   HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\QuickSet
Deleted       Preinstalled.DellQuickset   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{87CF757E-C1F1-4D22-865C-00C6950B5258}
Deleted       Preinstalled.DellSupportAssistAgent   Folder   C:\Program Files\DELL\SUPPORTASSISTAGENT
Deleted       Preinstalled.DellSupportAssistAgent   Folder   C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Deleted       Preinstalled.DellSupportCenter   Folder   C:\Program Files\DELL SUPPORT CENTER
Deleted       Preinstalled.DellSupportCenter   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0090A87C-3E0E-43D4-AA71-A71B06563A4A}
Deleted       Preinstalled.DellUpdateforWindows10   Folder   C:\Program Files (x86)\DELL\UPDATESERVICE
Deleted       Preinstalled.DellUpdateforWindows10   Folder   C:\ProgramData\DELL\UPDATESERVICE
Deleted       Preinstalled.HPCleanFLC   File   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
Deleted       Preinstalled.LenovoThinkVantageToolbox   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7AFE0EF1-30D0-47DC-BB49-4BCB450310C4}
Deleted       Preinstalled.LenovoThinkVantageToolbox   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7AFE0EF1-30D0-47DC-BB49-4BCB450310C4}
Deleted       Preinstalled.LenovoThinkVantageToolbox   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDEventLauncher
Deleted       Preinstalled.LenovoThinkVantageToolbox   Task   C:\Windows\System32\Tasks\PCDEVENTLAUNCHER
Deleted       Preinstalled.MyDell   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dell Support Center


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4927 octets] - [08/09/2020 23:12:14]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Intenta ahora desinstalar un programa en modo normal como ccleaner