PC lenta

tengo el windows seven y mi PC esta un poco lenta. ya le he pasado lo recomendado pero igual sigue lenta, aunque mejoro un poquito. Estos son los programas que uso frecuentemente: CCLEANER / GLARY / ADW CLEANER / PANDA DOME / SPYWARE BLASTER / MALAWARE BYTE

Hola @varela007

¿Tendrás alguno de los reportes de los programas ejecutados?

De ser así por favor pégalos. Fuera de eso, coméntanos más sobre la lentitud (al iniciar, al abrir cualquier programa, al abrir uno en especial, de momentos, etc.); si al estar lenta notas que los ventiladores trabajen mucho sería importante saberlo. Y coméntanos si es un equipo de escritorio o portátil.

Nos comentas.

Saludos

Lamentablemente no guarde los reportes, pero todos dieron bien. Esta un poco lenta al abrir todos los programas en general. El ventilador esta como siempre. Es una PC de escritorio.

Hola nuevamente,

Bueno, entonces vamos a revisar a fondo que puede estar ocurriendo en tu equipo. Realiza lo siguiente:

:one: Descarga y ejecuta Argente registry cleaner: de cualquiera de los siguientes links:

Argente Registry Cleaner - Versión completa

Argente Registry Cleaner - Versión portable

Si al ejecutar te pregunta sobre activar el mantenimiento automático dile que NO. Después has que busque y repare todos los errores que encuentre.

:two: Revisa el siguiente manual a detalle y ejecuta FRST:

  • No olvides ejecutarlo desde el escritorio.
  • Presta especial atención a las instrucciones de como pegar el reporte.

Nos traerías los reportes de FRST: Frst.txt y Adition.txt.

Saludos

NOTAS IMPORTANTES:

° Evite realizar procedimientos fuera de este tema a partir de este punto.

° NO descargue o instale mas programas mientras terminamos la desinfección.

° No vuelva a ejecutar ningún otro programa antivirus/antimalwares ni FRST hasta que vuelva con una respuesta.

argente detecto 424 errorres en el registro y los reparo

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 22-04-2022
Ejecutado por rafael (administrador) sobre OVERCASE-WIN7 (INTEL_ WBIBX10J) (27-04-2022 13:46:19)
Ejecutado desde C:\Users\rafael\Desktop
Perfiles cargados: rafael
Plataforma: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(explorer.exe ->) (Christian Kaiser) [Archivo no firmado] C:\Program Files\Lightscreen\lightscreen.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <4>
(explorer.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <30>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files\Glary Utilities 5\GUPMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (philandro Software GmbH -> philandro Software GmbH) C:\Program Files\AnyDesk\AnyDesk.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [PSUAMain] => C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [30836464 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [44416 2022-01-21] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-07-31] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\W32X86\hpzppw71.dll [280064 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [37376 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [99208 2015-08-04] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\100.0.4896.127\Installer\chrmstp.exe [2022-04-19] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *  
GroupPolicy: Restricción - Chrome <==== ATENCIÓN
GroupPolicyScripts: Restricción <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {241686A0-5150-4F45-8212-85F7B04FF0A2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {441D19F5-60B5-45B1-8FB2-332DBBC42E1C} - System32\Tasks\{EF286852-C95E-4667-9F74-B279A8B45CE2} => C:\Windows\system32\pcalua.exe -a "D:\GAMES\the settlers 7\the_settlers_7_1.10full.exe" -d "D:\GAMES\the settlers 7"
Task: {4AC1470F-FD19-4B70-B8A1-34D74B35C681} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-04-07] (Piriform Software Ltd -> Piriform)
Task: {4C99B57D-C1BD-408F-9CF7-C3FDE97A592A} - System32\Tasks\{31A13051-FC5F-463A-AF67-317AE7441658} => C:\Windows\system32\pcalua.exe -a F:\instalar.exe -d F:\
Task: {509D680B-6E9C-4002-9813-35FA8DB7BFFC} - System32\Tasks\{06B263C9-7827-4FD8-A8CD-56945670609F} => C:\Windows\system32\pcalua.exe -a "E:\premiere\Espa_ol\Software de terceros\2d3 SteadyMove\setup.exe" -d "E:\premiere\Espa_ol\Software de terceros\2d3 SteadyMove"
Task: {5BCA8DD8-6F93-4A22-8420-49C34936F7ED} - System32\Tasks\{7256CD27-5D7B-45E3-88C8-F373383F54C8} => C:\Windows\system32\pcalua.exe -a C:\Windows\IsUn040a.exe -c -f"C:\BlueByte\The Settlers IV\uninst.isu" -c"C:\BlueByte\The Settlers IV\bbinst.dll"
Task: {5F6DDF70-8137-4476-871C-F035BE8C2336} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {77B8D46E-9986-4633-9DA3-B15FCAF9E0D1} - System32\Tasks\{79ABF03D-A28B-4DB7-8780-AA623B686284} => C:\Windows\system32\pcalua.exe -a C:\Users\rafael\Downloads\ScanFs_build388_Setup.exe -d C:\Users\rafael\Downloads
Task: {A07C4247-AB75-4656-9412-2BB2BA2652EE} - System32\Tasks\{E1B27EE0-EF9B-492F-B23C-2831091A49DA} => C:\Windows\system32\pcalua.exe -a E:\AOCSETUP.EXE -d E:\
Task: {A9065684-7C84-4C68-9981-59EABC2AE997} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2021-02-18] (Google LLC -> Google LLC)
Task: {C324BB68-ABA2-428F-B6A2-1777377B3953} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2021-02-18] (Google LLC -> Google LLC)
Task: {CB3598AB-EBBB-465F-BC19-7235D02FC3A3} - System32\Tasks\CCleanerSkipUAC - rafael => C:\Program Files\CCleaner\CCleaner.exe [30836464 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DFEF2132-1667-4312-A3B7-F795B1DA2253} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4050630617-2193605790-1951764151-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {FB28758D-414D-40D1-891C-AD095D7F6505} - System32\Tasks\{77D35B12-3C5D-4BAB-BEB9-F6B17615DD7E} => C:\Windows\system32\pcalua.exe -a C:\Windows\UNINST.EXE -d C:\Windows\ -c -fC:\Win32App\Premiere\DeIsL1.isu

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) [Archivo no firmado]
Tcpip\Parameters: [DhcpNameServer] 181.30.140.136 181.88.86.190 181.88.86.190
Tcpip\..\Interfaces\{64E53019-83DB-493D-89F2-801C31F79DC6}: [DhcpNameServer] 200.42.4.199 200.49.130.41 200.49.130.41
Tcpip\..\Interfaces\{9F2631DE-40F1-44CA-9962-91B1A600567B}: [DhcpNameServer] 181.30.140.136 181.88.86.190 181.88.86.190

Edge: 
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\rafael\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-08]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES007&pc=UE06
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\rafael\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-17]
Edge Profile: C:\Users\rafael\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-04-24]
Edge Notifications: Profile 1 -> hxxps://business.facebook.com; hxxps://www.facebook.com
Edge HKLM\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: bkdmy9u2.default-1489930573932
FF ProfilePath: C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932 [2022-04-27]
FF NewTab: Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932 -> hxxps://ar.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180228__yaff
FF Notifications: Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932 -> hxxps://us1.badoo.com; hxxps://mail.yahoo.com; hxxps://badoo.com; hxxps://www.youtube.com; hxxps://yourlust.com; hxxps://es.ccm.net
FF Extension: (Download addon) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\[email protected] [2020-08-30]
FF Extension: (Search image) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\[email protected] [2017-09-16]
FF Extension: (TinEye Reverse Image Search) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\[email protected] [2021-10-29]
FF Extension: (Google Translator for Firefox) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\[email protected] [2020-08-09]
FF Extension: (Social Video Downloader) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-04-02]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-04-21]
FF Extension: (Sin Nombre) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-23]
FF Extension: (Descarga videos con FVD Video Downloader) - C:\Users\rafael\AppData\Roaming\Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932\Extensions\{f171ff98-4433-4de4-9976-d87525a80c45}.xpi [2019-05-11]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4050630617-2193605790-1951764151-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-10-15] (Ubisoft Entertainment Sweden AB -> )

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default [2022-04-27]
CHR Notifications: Default -> hxxps://business.facebook.com; hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Traductor de Google) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-10]
CHR Extension: (Seguridad para sitios web y protección para navegar de forma segura con WoT) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2022-04-25]
CHR Extension: (YouTube) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Search by Image (by Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2016-10-21]
CHR Extension: (Traducir Texto Seleccionado) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbimffnjoeobhjhochngikepgfejjmgj [2022-01-29]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2021-07-17]
CHR Extension: (Screen Recorder & Screenshot Master) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\igkkmokkmlbkkgdnkkancbonkbbmkioc [2022-04-26]
CHR Extension: (Social Video Downloader) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfnnoammpigcglgbhcbbdpnekbcddahe [2021-04-01]
CHR Extension: (All Friends Remover for Facebook™) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\kihfdgpnhlkopkiadeopobhbpeplffam [2021-08-22]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-03-20]
CHR Extension: (Video DownloadHelper) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-07-01]
CHR Extension: (Google Maps) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-17]
CHR Extension: (Save to Pocket) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2022-02-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Cortar vídeo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2020-12-31]
CHR Extension: (Friend Remover Free - Delete All Friends) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjpnfokdiejfmghfaejjcfnilfgaoogd [2021-05-06]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-04-08]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-04-18]
CHR Extension: (Presentaciones) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-17]
CHR Extension: (Adobe Acrobat: herramientas de conversión, edición y firma de PDF) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-18]
CHR Extension: (Hojas de cálculo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-17]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-23]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-18]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-07-17]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-17]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-04-08]
CHR Extension: (Presentaciones) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-05]
CHR Extension: (Documentos) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-05]
CHR Extension: (Google Drive) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-05]
CHR Extension: (YouTube) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-05]
CHR Extension: (Hojas de cálculo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-05]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-07]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-08-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-05]
CHR Extension: (Gmail) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-05]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-04-14]
CHR Notifications: Profile 4 -> hxxps://business.facebook.com; hxxps://www.instagram.com
CHR Extension: (Presentaciones) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-07]
CHR Extension: (Documentos) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-07]
CHR Extension: (Google Drive) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-07]
CHR Extension: (YouTube) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-07]
CHR Extension: (Hojas de cálculo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-09]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-11-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-07]
CHR Extension: (Gmail) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-07]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5 [2022-04-18]
CHR Extension: (Presentaciones) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-03-20]
CHR Extension: (Documentos) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2022-03-20]
CHR Extension: (Google Drive) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-03-20]
CHR Extension: (YouTube) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-03-20]
CHR Extension: (Hojas de cálculo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-03-20]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-20]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-03-20]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-20]
CHR Extension: (Gmail) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-03-20]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6 [2022-04-18]
CHR Extension: (Presentaciones) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-04-14]
CHR Extension: (Documentos) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2022-04-14]
CHR Extension: (Google Drive) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-04-14]
CHR Extension: (YouTube) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-04-14]
CHR Extension: (Adobe Acrobat: herramientas de conversión, edición y firma de PDF) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-14]
CHR Extension: (Hojas de cálculo) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-04-14]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-14]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-14]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-04-14]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-14]
CHR Extension: (Gmail) - C:\Users\rafael\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-04-14]
CHR Profile: C:\Users\rafael\AppData\Local\Google\Chrome\User Data\System Profile [2022-04-14]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files\AnyDesk\AnyDesk.exe [3743984 2021-10-16] (philandro Software GmbH -> philandro Software GmbH)
S4 Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Archivo no firmado]
S4 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-12-22] (Macrovision Europe Ltd.) [Archivo no firmado]
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-11-27] (Mixbyte Inc -> Freemake)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation)
R2 GUBootService; C:\Program Files\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [875392 2022-01-21] (Glarysoft LTD -> Glarysoft Ltd)
R2 GUPMService; C:\Program Files\Glary Utilities 5\GUPMService.exe [65408 2022-01-21] (Glarysoft LTD -> Glarysoft Ltd)
S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6680248 2022-04-18] (Malwarebytes Inc -> Malwarebytes)
R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe [96632 2021-05-26] (Panda Security S.L. -> Panda Security, S.L.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [Archivo no firmado]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632 2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Panda VPN Service; C:\Program Files\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [Archivo no firmado]
R2 PSUAService; C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [45528 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [99240 2021-05-16] (Alcorlink Corp. -> )
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [25864 2021-05-16] (Glarysoft LTD -> Glarysoft Ltd)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [73728 2008-05-24] (EZB Systems, Inc.) [Archivo no firmado]
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [205256 2022-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1731416 2016-05-12] (MEDIATEK INC. -> MediaTek Inc.)
R1 NNSDNS; C:\Windows\System32\DRIVERS\NNSDns.sys [136568 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [213056 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [125128 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [142504 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [86760 2018-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [147392 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [95488 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [130656 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [329312 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [307872 2021-05-23] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [117784 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [308328 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [53616 2021-05-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 PortTalk; C:\Windows\System32\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [Archivo no firmado]
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [170176 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [145968 2021-05-24] (Panda Security S.L. -> Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [188336 2020-12-01] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [136416 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [147800 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [121840 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60848 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [216632 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [11376 2021-07-23] () [Archivo no firmado]
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45144 2021-05-16] (Synaptics Incorporated -> Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [436792 2017-10-16] () [Archivo no firmado] [El archivo está en uso]
U4 nxdm; no ImagePath
U4 nxpcap; no ImagePath
U4 nxsshd; no ImagePath
U4 nxtun; no ImagePath
U4 nxusbd; no ImagePath
U4 nxusbh; no ImagePath
U4 nxusbs; no ImagePath

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Todos) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2022-04-27 13:46 - 2022-04-27 13:47 - 000032042 _____ C:\Users\rafael\Desktop\FRST.txt
2022-04-27 13:45 - 2022-04-27 13:47 - 000000000 ____D C:\FRST
2022-04-27 13:44 - 2022-04-27 13:44 - 002071552 _____ (Farbar) C:\Users\rafael\Desktop\FRST.exe
2022-04-27 13:12 - 2022-04-27 13:12 - 005404387 _____ (Raúl Argente ) C:\Users\rafael\Downloads\ARegClean-old.exe
2022-04-26 17:54 - 2022-04-26 17:54 - 000443890 _____ C:\Users\rafael\Desktop\CENSO.pdf
2022-04-26 16:01 - 2022-04-26 16:01 - 000000000 ____D C:\Users\rafael\AppData\Local\televzr_light
2022-04-26 15:40 - 2022-04-26 15:41 - 048796504 _____ (Piriform Software Ltd) C:\Users\rafael\Downloads\ccsetup592.exe
2022-04-26 15:06 - 2022-04-26 15:50 - 653537539 _____ C:\Users\rafael\Downloads\el mounstro de la laguna negra.mp4
2022-04-26 14:53 - 2019-02-20 11:09 - 000060848 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2022-04-25 12:54 - 2022-04-26 14:53 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-04-25 09:01 - 2022-04-26 19:31 - 000001777 _____ C:\Users\rafael\Desktop\cabrera.txt
2022-04-14 07:01 - 2022-04-14 07:01 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-13 22:28 - 2022-04-13 22:28 - 000258449 _____ C:\Users\rafael\Desktop\confidencias-hipolito-yrigoyen.pdf
2022-04-13 19:25 - 2022-04-14 17:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-04-11 18:59 - 2022-04-11 18:59 - 000679899 _____ C:\Users\rafael\Desktop\Recuerdos de un médico rural.pdf
2022-04-06 18:56 - 2022-04-06 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2022-04-27 13:13 - 2015-10-03 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argente - Registry Cleaner
2022-04-27 13:13 - 2015-10-03 14:01 - 000000000 ____D C:\Program Files\Argente - Registry Cleaner
2022-04-27 13:11 - 2015-07-30 22:24 - 000000000 ____D C:\ProgramData\Mozilla
2022-04-27 13:10 - 2016-11-17 12:39 - 000000000 ____D C:\Users\rafael\AppData\LocalLow\Mozilla
2022-04-27 12:58 - 2015-08-05 20:45 - 000000000 ____D C:\Program Files\Google
2022-04-27 12:58 - 2015-08-05 20:41 - 000000000 ____D C:\Program Files\CCleaner
2022-04-27 12:57 - 2022-02-12 17:02 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-27 12:55 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-26 21:10 - 2021-06-16 16:23 - 000000000 ____D C:\Users\rafael\AppData\Roaming\WhatsApp
2022-04-26 21:07 - 2021-06-16 16:23 - 000000000 ____D C:\Users\rafael\AppData\Local\WhatsApp
2022-04-26 21:07 - 2017-11-05 09:35 - 000000000 ____D C:\Users\rafael\AppData\Local\SquirrelTemp
2022-04-26 20:56 - 2009-07-14 01:34 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-04-26 20:56 - 2009-07-14 01:34 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-04-26 18:32 - 2016-11-28 14:21 - 000383488 _____ C:\Users\rafael\Desktop\TELEFONOS - febrero 2018.xls
2022-04-26 17:25 - 2022-03-01 20:55 - 000000000 ____D C:\Users\rafael\Desktop\BALCARCE
2022-04-26 16:21 - 2021-01-29 19:30 - 000000000 ____D C:\Users\rafael\AppData\Roaming\NCH Software
2022-04-26 16:02 - 2020-10-04 16:24 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-04-26 16:01 - 2021-01-28 19:26 - 000000000 ____D C:\Users\rafael\AppData\Roaming\Televzr Light
2022-04-26 15:52 - 2015-07-31 15:05 - 000000000 ____D C:\Users\rafael\AppData\Roaming\vlc
2022-04-26 14:53 - 2015-07-30 22:24 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2022-04-25 20:17 - 2021-08-06 20:50 - 000000000 ____D C:\Program Files\AnyDesk
2022-04-24 22:11 - 2015-07-31 15:45 - 000000000 ____D C:\Users\rafael\AppData\Roaming\Adobe
2022-04-23 09:51 - 2020-08-14 11:44 - 000002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-22 14:58 - 2019-04-23 19:46 - 000000000 ____D C:\Users\rafael\Desktop\MATAFUEGOS ANTON
2022-04-19 18:53 - 2021-02-18 19:46 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-19 18:47 - 2021-02-18 19:44 - 000003460 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-04-19 18:47 - 2021-02-18 19:44 - 000003332 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-04-18 17:07 - 2021-05-16 18:03 - 000205256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-04-18 17:06 - 2021-05-16 18:03 - 000080336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2022-04-18 16:41 - 2015-08-04 14:53 - 000000000 ____D C:\Users\rafael\AppData\Local\PDFCreator
2022-04-18 07:03 - 2015-07-29 22:28 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-18 07:03 - 2009-07-14 05:48 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2022-04-18 07:03 - 2009-07-14 05:48 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2022-04-18 07:03 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf
2022-04-15 09:32 - 2015-08-11 15:35 - 000000000 ____D C:\Users\rafael\AppData\Roaming\XnView
2022-04-13 19:24 - 2015-07-30 12:16 - 000000000 ____D C:\Windows\system32\MRT
2022-04-13 19:11 - 2015-07-30 12:16 - 139899640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-04-10 14:32 - 2021-05-16 18:03 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-04-10 14:27 - 2021-02-25 15:29 - 000000000 ____D C:\Program Files\Malwarebytes
2022-04-10 14:27 - 2015-07-30 13:05 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-04-10 06:43 - 2020-08-14 11:42 - 000003468 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-10 06:43 - 2020-08-14 11:42 - 000003340 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-08 23:08 - 2021-05-19 07:29 - 000234062 __RSH C:\ProgramData\ntuser.pol
2022-04-08 23:08 - 2015-10-03 13:17 - 000000000 ____D C:\ProgramData\TEMP
2022-04-08 23:07 - 2021-05-16 17:48 - 000000000 ____D C:\Program Files\SpywareBlaster
2022-04-08 22:28 - 2020-12-20 09:47 - 000000000 ____D C:\Users\rafael\AppData\Local\CrashDumps

==================== Archivos en la raíz de algunos directorios ========

2015-03-26 08:48 - 2015-03-26 08:48 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2017-03-19 18:47 - 2017-12-31 10:10 - 000003584 _____ () C:\Users\rafael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-07 17:55 - 2021-02-21 09:35 - 000007606 _____ () C:\Users\rafael\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2022-04-18 10:08
==================== Final de FRST.txt ========================

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

no entro todo en una respuesta. Va la segunda parte

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x86) Versión: 22-04-2022
Ejecutado por rafael (27-04-2022 13:47:58)
Ejecutado desde C:\Users\rafael\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2015-07-30 01:26:05)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-4050630617-2193605790-1951764151-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-4050630617-2193605790-1951764151-1002 - Limited - Enabled)
Invitado (S-1-5-21-4050630617-2193605790-1951764151-501 - Limited - Disabled)
rafael (S-1-5-21-4050630617-2193605790-1951764151-1000 - Administrator - Enabled) => C:\Users\rafael

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Panda Dome (Disabled - Up to date) {8EE5B6CC-D555-4755-164C-336E561DE601}
AS: Panda Dome (Disabled - Up to date) {35845728-F36F-48DB-2CFC-081C2D9AACBC}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

«Cities in Motion» (HKLM\...\«Cities in Motion»_is1) (Version:  - Paradox Interactive)
32 Bit HP CIO Components Installer (HKLM\...\{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}) (Version: 6.1.1 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM\...\Adobe_53a35a181eeb50486a0e091bd67ae62) (Version: 10.0 - Adobe Systems Incorporated)
Age of Mythology (HKLM\...\Age of Mythology 1.0) (Version:  - )
AIMP2 (HKLM\...\AIMP2) (Version:  - )
Amazon Kindle (HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\Amazon Kindle) (Version: 1.31.0.60170 - Amazon)
AnyDesk (HKLM\...\AnyDesk) (Version: ad 6.2.6 - AnyDesk Software GmbH)
Argente - Registry Cleaner 3.1.2.0 (HKLM\...\Argente - Registry Cleaner_is1) (Version: 3.1.2.0 - Raúl Argente)
Atomic Email Hunter (HKLM\...\Atomic Email Hunter_is1) (Version: 3.50 - AtomPark Software)
Backup Thunderbird (HKLM\...\{FA212C5D-FE18-4A8B-9A45-B2E62A20D4CA}_is1) (Version:  - backupthunderbird.com)
BrainsBreaker 4.11(004) (HKLM\...\BBrk_is1) (Version:  - )
calibre (HKLM\...\{FD6B4DA3-5E7B-499E-841D-B797BED0CC47}) (Version: 3.48.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.92 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Easy Email Extractor v1.1 (HKLM\...\Easy Email Extractor_is1) (Version: 1.1.0.0 - NoVirusThanks Company Srl)
Empire Earth (HKLM\...\{2447500B-22D7-47BD-9B13-1A927F43A267}) (Version:  - )
Farming Simulator 2013 (HKLM\...\FarmingSimulator2013INT_is1) (Version: 1.0 - GIANTS Software)
FVD Downloader Module (HKLM\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.7 - Nimbus)
Glary Utilities 5.181 (HKLM\...\Glary Utilities 5) (Version: 5.181.0.210 - Glarysoft Ltd)
Google Chrome (HKLM\...\Google Chrome) (Version: 100.0.4896.127 - Google LLC)
High-Definition Video Playback 10 (HKLM\...\{237CCB62-8454-43E3-B158-3ACD0134852E}) (Version: 7.0.11400.29.0 - Nero AG) Hidden
HyperCam 2 (HKLM\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC)
Instalación de DivX (HKLM\...\DivX Setup) (Version: 2.8.0.18 - DivX, LLC)
Lightscreen version 2.4 (HKLM\...\{4A59754E-D644-4F84-9768-41F68053F08E}_is1) (Version: 2.4 - Christian Kaiser)
Malwarebytes version 4.5.8.191 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.8.191 - Malwarebytes)
MediaInfo 0.7.83 (HKLM\...\MediaInfo) (Version: 0.7.83 - MediaArea.net)
Microsoft .NET Framework 4.7 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 100.0.1185.50 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000C0A-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox (x86 es-AR) (HKLM\...\Mozilla Firefox 99.0.1 (x86 es-AR)) (Version: 99.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 99.0.1.8136 - Mozilla)
Mozilla Thunderbird (x86 es-AR) (HKLM\...\Mozilla Thunderbird 91.8.1 (x86 es-AR)) (Version: 91.8.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nero Burning ROM 10 (HKLM\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero Express 10 (HKLM\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero Multimedia Suite 10 (HKLM\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero SoundTrax 10 (HKLM\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero Vision 10 (HKLM\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero WaveEditor 10 (HKLM\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
NewBlue Video Essentials for Windows (HKLM\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NVIDIA Controlador de la controladora 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Panda Devices Agent (HKLM\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{45C81C9F-8EA5-4B34-8C04-4140E35AAC47}) (Version: 11.56.10 - Panda Security) Hidden
Panda Dome (HKLM\...\Panda Universal Agent Endpoint) (Version: 21.1.0 - Panda Security)
PDF Settings (HKLM\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
Railroad Tycoon 3 (HKLM\...\{DE29025A-091F-4998-AD2D-24C84421190F}) (Version: 1.0 - )
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Sid Meier's Railroads Demo (HKLM\...\{D7B0B1B1-0F8B-4391-B0EB-4CF9556159A0}) (Version: 1.00 - Firaxis Games)
Skype versión 8.30 (HKLM\...\Skype_is1) (Version: 8.30 - Skype Technologies S.A.)
SpywareBlaster 6.0 (HKLM\...\SpywareBlaster_is1) (Version: 6.0.0 - BrightFort LLC)
Televzr Light (HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\5a86d928-e527-5a16-9156-f025bf9f7e0e) (Version: 1.9.82 - ITPRODUCTDEV LTD)
The Settlers IV (HKLM\...\S4Uninst) (Version:  - )
Total Video Converter 3.71 100812 (HKLM\...\Total Video Converter 3.71_is1) (Version:  - EffectMatrix Inc.)
Train Valley (HKLM\...\Train Valley_is1) (Version:  - )
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UltraISO Premium V9.32 (HKLM\...\UltraISO_is1) (Version:  - )
Universal Adb Driver (HKLM\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
VC80CRTRedist - 8.0.50727.6195 (HKLM\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vysor (HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\Vysor) (Version: 1.8.3 - ClockworkMod)
WhatsApp (HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\WhatsApp) (Version: 2.2212.8 - WhatsApp)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
XnView 2.50 (HKLM\...\XnView_is1) (Version: 2.50 - Gougelet Pierre-e)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft Entertainment Sweden AB -> )
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{32C15893-74C0-4478-879B-FE14EB684AB4}\InprocServer32 -> C:\Users\rafael\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgps01.dll (Hewlett-Packard Co.) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{39C26CEE-9070-4B47-9261-6743499AFBF7}\InprocServer32 -> C:\Users\rafael\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgutil.dll (Hewlett-Packard Co.) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\Windows\system32\mscomm32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (MediaArea.net -> MediaArea.net)
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{9CC1FE07-02F9-49A6-A3F4-63AD8BAE9E49}\InprocServer32 -> C:\Users\rafael\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgps01.dll (Hewlett-Packard Co.) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AIMPClassic] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP2\System\aimp_shell.dll [2007-08-18] (AIMP DevTeam) [Archivo no firmado]
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2006-12-03] () [Archivo no firmado]
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [AIMPClassic] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP2\System\aimp_shell.dll [2007-08-18] (AIMP DevTeam) [Archivo no firmado]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2015-04-08] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2006-12-03] () [Archivo no firmado]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files\Glary Utilities 5\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2015-04-08] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2006-12-03] () [Archivo no firmado]

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATENCIÓN
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATENCIÓN
ShortcutWithArgument: C:\Users\rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\abriendo - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\48499db33039e897\matafuegos - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 4"
ShortcutWithArgument: C:\Users\rafael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Perfil 2 - Edge.lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Módulos cargados (Lista blanca) =============

2015-08-04 18:34 - 2006-12-03 14:53 - 000126464 _____ () [Archivo no firmado] C:\Program Files\WinRAR\rarext.dll
2007-08-18 15:08 - 2007-08-18 15:08 - 000057344 _____ (AIMP DevTeam) [Archivo no firmado] C:\Program Files\AIMP2\System\aimp_shell.dll
2006-02-28 12:42 - 2006-02-28 12:42 - 000094208 _____ (Apple Computer, Inc.) [Archivo no firmado] C:\Program Files\Bonjour\mdnsNSP.dll
2008-12-03 20:05 - 2008-12-03 20:05 - 000044544 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzinw12.dll
2008-12-03 20:05 - 2008-12-03 20:05 - 000053760 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzipm12.dll
2017-11-25 11:09 - 2017-11-25 11:09 - 000626688 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCR80.dll
2016-04-17 20:09 - 2016-01-29 09:04 - 000834592 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2020-11-17 12:21 - 2016-12-01 07:48 - 000037376 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\bearer\qgenericbearer.dll
2020-11-17 12:21 - 2016-12-01 07:48 - 000039424 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\bearer\qnativewifibearer.dll
2020-11-17 12:21 - 2016-12-01 07:48 - 000243200 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\imageformats\qjpeg.dll
2020-11-17 12:21 - 2016-06-10 04:33 - 000988160 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\platforms\qwindows.dll
2020-11-17 12:21 - 2016-12-16 11:50 - 004681728 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Core.dll
2020-11-17 12:21 - 2016-12-01 07:42 - 004878848 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Gui.dll
2020-11-17 12:21 - 2016-12-01 12:38 - 000570368 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Multimedia.dll
2020-11-17 12:21 - 2016-12-01 07:40 - 000848896 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Network.dll
2020-11-17 12:21 - 2016-12-01 07:38 - 000155136 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Sql.dll
2020-11-17 12:21 - 2016-12-01 07:46 - 004495360 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5Widgets.dll
2020-11-17 12:21 - 2016-12-01 13:11 - 000229888 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\Qt5WinExtras.dll
2020-11-17 12:21 - 2016-12-01 07:48 - 000686592 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files\Lightscreen\sqldrivers\qsqlite.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [274]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Versión 11) (Lista blanca) ==========

SearchScopes: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://ar.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180228__yaie&p={searchTerms}

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\...\1001movie.com -> 1001movie.com

Hay 6091 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2009-07-13 23:04 - 2017-08-27 14:41 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Calibre2\
HKU\S-1-5-21-4050630617-2193605790-1951764151-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 181.30.140.136 - 181.88.86.190
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: Freemake Improver => 2
MSCONFIG\Services: hpqcxs08 => 3
MSCONFIG\Services: hpqddsvc => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: IDriverT => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AnyDesk.lnk => C:\Windows\pss\AnyDesk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^rafael^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupfolder: C:^Users^rafael^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk => C:\Windows\pss\Facebook Gameroom.lnk.Startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => 
MSCONFIG\startupreg: Adobe Reader Synchronizer => "C:\Program Files\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe"
MSCONFIG\startupreg: ArgenteRC => "C:\Program Files\Argente - Registry Cleaner\ArgenteRC.exe" /AutoClean
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: NvBackend => "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{ACCB194D-E080-4221-B26E-226BEBE63C85}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E7399DD4-4183-4302-8728-7C2B54A6295F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82F9D197-7CF2-4565-844B-08589A54645A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9851D1A5-EF33-4241-B753-D4D272372587}] => (Allow) C:\Program Files\Farming Simulator 2013\FarmingSimulator2013.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{E1924DBA-145D-4922-8D64-813951F2FD6D}] => (Allow) C:\Program Files\Farming Simulator 2013\FarmingSimulator2013.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C0CE1D6E-8CA7-4047-AF69-AC7CA623FCE8}] => (Allow) C:\Program Files\Farming Simulator 2013\FarmingSimulator2013Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{1249C8C2-49A6-4F21-9AC0-CD670F8E6D06}] => (Allow) C:\Program Files\Farming Simulator 2013\FarmingSimulator2013Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{FAD02225-3F76-485E-8F96-806FDEA792AB}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{40F95892-E634-49A0-9768-64E0DFDD075F}] => (Allow) C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{640EA5B9-098C-4433-BF0E-05149A72C9AE}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{7D4E44DD-61AE-418C-A6AF-D3C45DF2B901}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{438D783E-D1A2-4AC2-8EEF-A9D36379937D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD34426D-B2AE-4531-A216-DE5D3480AFEC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CB84435-06B5-4E2C-ABB4-E7A816D941DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{14A82DAB-188F-4A6E-965A-5B110F7BBE1E}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0E433AD7-E88F-4612-B94B-6CE7E689DF2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7D856362-FBC6-4B29-929F-4D479A76C3D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{94D21EC7-AAE7-4F64-8B28-5BA5FB6A1B3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5A3A6B06-3D2B-4397-B66F-C9A7ECC9A3A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{8EE3724E-44E1-4D19-9DF8-A60A535D5DEC}C:\windows\system32\dplaysvr.exe] => (Allow) C:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{AE45EBE5-FADA-4D38-9264-3C0715660F6D}C:\windows\system32\dplaysvr.exe] => (Allow) C:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{3D56AD58-8B9D-4003-A8D1-AF3097F9019E}C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [UDP Query User{EDE10434-EDBD-436A-B85C-18E2F81517AB}C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [TCP Query User{04F42BC2-3D47-4CC4-A971-06273FEC4E34}D:\games\aeo ii\age of empires ii\empires2.exe] => (Allow) D:\games\aeo ii\age of empires ii\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [UDP Query User{3A23348B-C478-485F-BD1C-9D898633E5F9}D:\games\aeo ii\age of empires ii\empires2.exe] => (Allow) D:\games\aeo ii\age of empires ii\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [TCP Query User{228919FC-1E07-40C2-A3F2-79F4B4EED200}D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [UDP Query User{5DEBB92E-7A13-4B59-AEA4-F217A6FD6548}D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [TCP Query User{0113DE26-DC97-432B-A99E-5B0A656A2398}D:\games\cossacks 3\cossacks.exe] => (Allow) D:\games\cossacks 3\cossacks.exe (GSC Game World) [Archivo no firmado]
FirewallRules: [UDP Query User{37ACCC65-B74F-4BEA-99E8-C787EE31E9D9}D:\games\cossacks 3\cossacks.exe] => (Allow) D:\games\cossacks 3\cossacks.exe (GSC Game World) [Archivo no firmado]
FirewallRules: [TCP Query User{75F07F63-3804-4D98-BF45-313360537FD3}C:\sierra\empire earth\empire earth.exe] => (Allow) C:\sierra\empire earth\empire earth.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{B878C323-4423-4FB7-B6D6-A639CF85F2DD}C:\sierra\empire earth\empire earth.exe] => (Allow) C:\sierra\empire earth\empire earth.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{DA8DB9F8-F7D3-455C-85C1-006DB8B589AB}C:\sierra\empire earth\empire earth.exe] => (Block) C:\sierra\empire earth\empire earth.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{85B5CF05-3C50-41C7-825F-22A94B34FF26}C:\sierra\empire earth\empire earth.exe] => (Block) C:\sierra\empire earth\empire earth.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{83CD2671-E746-442E-875A-777CA58B4E92}D:\games\aeo ii\age of empires ii\empires2.exe] => (Allow) D:\games\aeo ii\age of empires ii\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [UDP Query User{639F54C2-21BC-444A-9C9E-F94DA17D49C1}D:\games\aeo ii\age of empires ii\empires2.exe] => (Allow) D:\games\aeo ii\age of empires ii\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [TCP Query User{698FE974-B78A-47D7-9E00-89E00EAF0CF1}C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [UDP Query User{ECD716FF-F931-4F30-8453-5B73759BE7F0}C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.2\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [TCP Query User{30C9B022-69B5-4074-AC5F-E847201AC3D3}C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [UDP Query User{C868AFA9-C342-440D-AAC8-BFDEE63FE5A9}C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe] => (Allow) C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [{06FBC509-A5AC-4875-B6F3-06BA97B7B64C}] => (Block) C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [{91DA5048-8F2F-4802-8A2F-B9BEE66834A5}] => (Block) C:\users\rafael\appdata\local\vysor\app-1.8.3\vysor.exe (ClockworkMod) [Archivo no firmado]
FirewallRules: [TCP Query User{70DDA607-4DFC-40CE-90DB-E61F9A1F91D3}D:\games\cossacks 3\cossacks.exe] => (Allow) D:\games\cossacks 3\cossacks.exe (GSC Game World) [Archivo no firmado]
FirewallRules: [UDP Query User{4E77E193-41BB-420B-957A-EC70DD3F92DB}D:\games\cossacks 3\cossacks.exe] => (Allow) D:\games\cossacks 3\cossacks.exe (GSC Game World) [Archivo no firmado]
FirewallRules: [TCP Query User{DEE4459A-B171-454E-AF48-68B48E62CBB3}D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [UDP Query User{0FA17D7B-50F6-4926-8A4F-49EE0014717E}D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\age2_x1.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [TCP Query User{142112FC-45C7-48CA-B07E-383E7AC94F12}D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [UDP Query User{45807262-5C35-4E3A-8ECE-CC7388DF40E1}D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe] => (Allow) D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [{F0AC662C-38C0-4407-A32A-1157458553A7}] => (Block) D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [{CE1DD664-EA90-4678-B154-EDD1F1DC9719}] => (Block) D:\games\aoe ii y conqueror - descargados completos\age of empires\empires2.exe (Microsoft Corporation) [Archivo no firmado]
FirewallRules: [TCP Query User{900F56CF-0EB4-4886-9155-AD6F7E814A19}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{AC7FAF08-E63F-4FA2-86E9-6D85872407AA}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{89CDB890-E8FF-4CBE-B22B-92A02D1100BC}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6A460B5-7831-4A0B-9A7A-A1A20A751918}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{AF727970-6CA7-4A21-9F61-AABE5E70B59F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{5DA0A035-1E54-4358-A608-2110E1C2E12D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A8EF39D2-F65D-495D-948D-A15296B4226E}C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{E845D18B-BD01-4428-8AB4-6C7C8AD73151}C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{7898B6A5-F9BD-4138-B8A3-50304FD30ABD}] => (Block) C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{7BBDA1F1-C145-4F95-9C3C-3EFB8FEB8B42}] => (Block) C:\users\rafael\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{B89B6674-DC99-43FB-97B2-2B0FD03D23E9}C:\users\rafael\appdata\local\televzr_light\televzr light.exe] => (Allow) C:\users\rafael\appdata\local\televzr_light\televzr light.exe (ITPRODUCTDEV LTD -> ITPRODUCTDEV LTD)
FirewallRules: [UDP Query User{589B7D63-D71C-43DB-BBC4-7FBCD8B2F818}C:\users\rafael\appdata\local\televzr_light\televzr light.exe] => (Allow) C:\users\rafael\appdata\local\televzr_light\televzr light.exe (ITPRODUCTDEV LTD -> ITPRODUCTDEV LTD)
FirewallRules: [{24B0B82A-186F-41F4-A450-E97F6BAEF469}] => (Allow) LPort=5900
FirewallRules: [{EECF78CA-A0CC-4644-BF43-F24173E4C07A}] => (Allow) LPort=5800
FirewallRules: [TCP Query User{44A085FE-B8B6-4348-9691-306DBB4494EF}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [UDP Query User{87BE928B-9E06-46B5-925F-12715D23A347}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [{C1101A7E-1714-43A0-A874-6BF44F731249}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4FD7D756-3DEE-4BF6-9399-5A019CF6F457}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{32FD4144-F07F-4C27-AEA6-0B2CAC1D773C}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{4C9994B5-E571-4F73-BBC4-1750E1B51BC4}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{883D6E02-F7F3-4774-B636-483E967931D5}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{B7F62240-B973-462E-83D3-5CBFFE0ADCE0}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{3BE06BA9-ACC3-4C8B-B31E-498CEC04EE23}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)

==================== Puntos de Restauración =========================

22-04-2022 12:18:05 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (04/27/2022 01:44:19 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Error del Programador de activación de licencias (sppuinotify.dll) con el siguiente código:
0x80070005

Error: (04/27/2022 12:56:08 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: Event-ID 2001

Error: (04/27/2022 12:56:08 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: Event-ID 2001

Error: (04/27/2022 12:55:48 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x80070005.

Error: (04/27/2022 12:54:21 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x80070005.

Error: (04/27/2022 12:48:01 PM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Producto: Adobe Acrobat Reader DC - Español - la actualización "Adobe Acrobat Reader DC
 (22.001.20117)" no se pudo instalar. Código de error 1603. Windows Installer no puede crear registros para ayudar a solucionar problemas de instalación de paquetes de software. Use el vínculo siguiente para obtener instrucciones sobre la activación de la compatibilidad de registro: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (04/27/2022 12:48:00 PM) (Source: MsiInstaller) (EventID: 11328) (User: NT AUTHORITY)
Description: Producto: Adobe Acrobat Reader DC - Español -- Error 1328. Error al aplicar la revisión al archivo C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll.  Probablemente el archivo ya se ha actualizado por otros medios y esta revisión no puede modificarlo.  Para obtener más información, consulte al proveedor de la revisión.  Error del sistema: 8

Error: (04/27/2022 12:38:15 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT AUTHORITY)
Description: Producto: Microsoft Office 2000 Premium -- Error interno 2718. Póngase en contacto con el servicio de Soporte técnico.


Errores del sistema:
=============
Error: (04/27/2022 01:52:12 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {BB6DF56B-CACE-11DC-9992-0019B93A3A84} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/27/2022 01:44:19 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: No se puede iniciar un servidor DCOM: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} como /. Error 
"5"
al iniciar este comando:
C:\Windows\System32\slui.exe -Embedding

Error: (04/27/2022 01:28:34 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (04/27/2022 01:28:33 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (04/27/2022 01:12:33 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (04/27/2022 01:12:33 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (04/27/2022 01:04:33 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (04/27/2022 01:04:33 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.


Windows Defender:
================
Date: 2022-03-14 23:45:38.582
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{0A04BB01-DA2F-44E6-B731-CF2B1456013A}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2021-03-26 23:54:08.005
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{CBE6149C-70EB-4B54-955D-F7C95E6E38CA}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2021-01-08 21:12:26.899
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{12C1EC12-6FBD-4A0D-9F60-0EA389346463}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen completo
Usuario:overcase-win7\rafael

Date: 2021-01-08 20:30:40.621
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{F842DEDA-3E4A-4532-85CF-D36963059143}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:overcase-win7\rafael

==================== Información de la memoria =========================== 

BIOS: Intel Corp. WBIBX10J.86A.0165.2009.1110.1916 11/10/2009
Placa base: Intel Corporation DP55WB
Procesador: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz
Porcentaje de memoria en uso: 89%
RAM física total: 3318.16 MB
RAM física disponible: 346.71 MB
Virtual total: 6634.7 MB
Virtual disponible: 1138.77 MB

==================== Unidades ================================

Drive c: (WINDOWS - 100 gb) (Fixed) (Total:97.56 GB) (Free:14.77 GB) NTFS
Drive d: (PARTICION - 833 gb) (Fixed) (Total:833.85 GB) (Free:677.32 GB) NTFS
Drive f: (Railroads) (CDROM) (Total:0.59 GB) (Free:0 GB) CDFS

\\?\Volume{f255d03a-3658-11e5-b415-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 05060773)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.9 GB) - (Type=07 NTFS)

==================== Final  Addition.txt =======================

Hola nuevamente,

Realiza lo siguiente:

:one: Crea una copia de seguridad del registro con Registry Backup, no importa si es la versión portable o instalable:

Tweaking Registry Backup

  • Después de instalar o descomprimir ejecuta el programa (de ser portable es el ejecutable TweakingRegistryBackup.exe).
  • Asegurate que en la pestaña Registry Backup este todo marcado.
  • En Backup Name puedes dejarlo por defecto o asignar algún nombre
  • Presiona el botón BackUp now

:two: Deshabilita nuevamente tu antivirus: ¿Cómo deshabilitar temporalmente su Antivirus?

:three: En el equipo, con los demás programas cerrados abra el notepad; puede abrirlo en la barra de búsqueda de windows y escribiendo notepad.exe

Posteriormente, copie y pegue este script de reparación dentro del Notepad comenzando en Start y terminando en End:

Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:

GroupPolicy: Restricción - Chrome <==== ATENCIÓN
GroupPolicyScripts: Restricción <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN
FF Notifications: Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932 -> hxxps://us1.badoo.com; hxxps://mail.yahoo.com; hxxps://badoo.com; hxxps://www.youtube.com; hxxps://yourlust.com; hxxps://es.ccm.net
U4 nxdm; no ImagePath
U4 nxpcap; no ImagePath
U4 nxsshd; no ImagePath
U4 nxtun; no ImagePath
U4 nxusbd; no ImagePath
U4 nxusbh; no ImagePath
U4 nxusbs; no ImagePath
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATENCIÓN
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATENCIÓN
FirewallRules: [{24B0B82A-186F-41F4-A450-E97F6BAEF469}] => (Allow) LPort=5900
FirewallRules: [{EECF78CA-A0CC-4644-BF43-F24173E4C07A}] => (Allow) LPort=5800

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers 
EmptyTemp:
Hosts:
End
  • Vaya a Archivo y selecciona Guardar Como.
  • En la parte de Codificación elija Unicode o UTF8 según le de la opción.
  • Guárdelo bajo el nombre de fixlist.txt en el escritorio al igual que FRST. Esto es muy importante.

¡:warning:ATENCIÓN! El anterior Script de reparación fue hecho específicamente por un miembro del Staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo

  • Ejecute Frst.exe. y presione el botón Fix / Corregir
  • Espere pacientemente a que termine y no use el equipo. Al terminar el equipo podría reiniciarse
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).

Nos traerías el reporte comentándonos como sigue el problema.

Saludos

Aqui envio el informe. Espero este bien pegado por que no me han aclarado como hacerlo nuevamente ( code ) que raro que ( code ) no aparezca aca en la barra de herramientas. Confieso que me da un poco de miedito todo este asunto del registro de windows por que todo tiene que hacerse de manera muy presisa. Quisiera saber si lo que hice esta bien, cual es el diagnostico de mi PC y si todo se ha arreglado. Muchas gracias

Resultados de la corrección de Farbar Recovery Scan Tool (x86) Versión: 22-04-2022
Ejecutado por rafael (28-04-2022 08:47:24) Run:1
Ejecutado desde C:\Users\rafael\Desktop
Perfiles cargados: rafael
Modo de Inicio: Normal

==============================================

fixlist contenido:
*****************
Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:

GroupPolicy: Restricción - Chrome <==== ATENCIÓN
GroupPolicyScripts: Restricción <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN
FF Notifications: Mozilla\Firefox\Profiles\bkdmy9u2.default-1489930573932 -> hxxps://us1.badoo.com; hxxps://mail.yahoo.com; hxxps://badoo.com; hxxps://www.youtube.com; hxxps://yourlust.com; hxxps://es.ccm.net
U4 nxdm; no ImagePath
U4 nxpcap; no ImagePath
U4 nxsshd; no ImagePath
U4 nxtun; no ImagePath
U4 nxusbd; no ImagePath
U4 nxusbh; no ImagePath
U4 nxusbs; no ImagePath
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATENCIÓN
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATENCIÓN
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATENCIÓN
FirewallRules: [{24B0B82A-186F-41F4-A450-E97F6BAEF469}] => (Allow) LPort=5900
FirewallRules: [{EECF78CA-A0CC-4644-BF43-F24173E4C07A}] => (Allow) LPort=5800

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers 
EmptyTemp:
Hosts:
End
*****************

SystemRestore: On => completado
El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
"C:\Windows\system32\GroupPolicy\Machine" => no encontrado
C:\ProgramData\NTUSER.pol => movido correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Edge => eliminado correctamente
"FF Notifications:" => eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxdm => eliminado correctamente
nxdm => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxpcap => eliminado correctamente
nxpcap => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxsshd => eliminado correctamente
nxsshd => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxtun => eliminado correctamente
nxtun => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxusbd => eliminado correctamente
nxusbd => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxusbh => eliminado correctamente
nxusbh => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nxusbs => eliminado correctamente
nxusbs => servicio eliminado correctamente
"\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\"" => eliminado correctamente
"SethomePage Interval Timer" => eliminado correctamente
"SethomePage Interval Timer" => no encontrado
"EventFilter sethomePage2" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24B0B82A-186F-41F4-A450-E97F6BAEF469}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EECF78CA-A0CC-4644-BF43-F24173E4C07A}" => eliminado correctamente

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de  rea local 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : fibertel.com.ar
   V¡nculo: direcci¢n IPv6 local. . . : fe80::cd2f:d4e7:77fd:d39e%11
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.12
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

Adaptador de t£nel isatap.{74173999-9342-4DA1-844B-37AB70377513}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.fibertel.com.ar:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : fibertel.com.ar

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {AB4B2B24-41D7-497C-A974-5CD3C16D9010}.
Unable to cancel {600F903C-EB82-4FA2-97FB-A7D06D3C908E}.
0 out of 2 jobs canceled.

========= Final de CMD: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24880667 B
Java, Flash, Steam htmlcache => 1350 B
Windows/system/drivers => 2341149 B
Edge => 0 B
Chrome => 753857731 B
Firefox => 1098983559 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 560 B
LocalService => 560 B
NetworkService => 8706 B
rafael => 206168935 B

RecycleBin => 3921592392 B
EmptyTemp: => 5.6 GB datos temporales Eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 08:50:36 ====

Hola nuevamente,

Bueno no lo aclaro porque se pide que se pegue como en la primera respuesta. Pero si quieres modos alternativos tenemos esta guía: ¿Cómo Pegar Reportes en el Foro?

Aquí te diré que si y no. Todo depende que se toque. Hay cosas que debes saber que se está moviendo para evitar dañar el sistema, mientras que hay otras que no tienen efecto en el sistema o no a grandes rasgos. En el caso que manejamos FRST esta hecha para esto solo hay que usarse con precaución.

Hay mucha polarización extrema en este aspecto en la red. Pero el tema es un poco más intermedio; evitar tocarlo y de tener que moverle, saber que se está haciendo o pedir apoyo a alguien con conocimientos. Por suerte disponemos con herramientas como FRST que facilitan esto.

Para lo demás, el reporte parece haberse ejecutado sin problema. Únicamente faltaría que comentes como sigue el problema (lentitud). Si este persiste te daría otros pasos y si no vamos con pasos finales para resolver cualquier duda que quede.

Saludos

Yo practicamente la veo igual. Tal vez por que sea una PC que tiene 12 años y tiene el windows 7. Tal vez ya no le pueda pedir mas.

Hola nuevamente,

Vamos a explorar más opciones.

Realiza lo siguiente:

:white_check_mark: Descaga por favor Open Hardware Monitor:

Open Hardware Monitor - Core temp, fan speed and voltages in a free software…

  • Descomprímelo y ejecútalo.
  • Ve a File>>Save Report y guarda un reporte.

Nos traerías este reporte para analizarlo y ver si notamos algo.

Saludos


Open Hardware Monitor Report

--------------------------------------------------------------------------------

Version: 0.9.6.0

--------------------------------------------------------------------------------

Common Language Runtime: 4.0.30319.42000
Operating System: Microsoft Windows NT 6.1.7601 Service Pack 1
Process Type: 32-Bit

--------------------------------------------------------------------------------

Sensors

|
+- Intel DP55WB (/mainboard)
|
+- Intel Core i3 530 (/intelcpu/0)
|  +- Bus Speed      :  133.342  133.342   133.36 (/intelcpu/0/clock/0)
|  +- CPU Core #1    :  2933.52  1200.08  2933.91 (/intelcpu/0/clock/1)
|  +- CPU Core #2    :  2933.52  1200.08  2933.91 (/intelcpu/0/clock/2)
|  +- CPU Core #1    :       43       34       45 (/intelcpu/0/temperature/0)
|  +- CPU Core #2    :       34       29       38 (/intelcpu/0/temperature/1)
|  +- CPU Total      :  76.1539  13.2813  76.1539 (/intelcpu/0/load/0)
|  +- CPU Core #1    :  77.6923  14.8438  77.6923 (/intelcpu/0/load/1)
|  +- CPU Core #2    :  74.6154       10  74.6154 (/intelcpu/0/load/2)
|
+- Generic Memory (/ram)
|  +- Memory         :  60.4777  59.3641  65.5272 (/ram/load/0)
|  +- Used Memory    :  1.95968  1.92359   2.1233 (/ram/data/0)
|  +- Available Memory :  1.28065  1.11703  1.31673 (/ram/data/1)
|
+- NVIDIA GeForce 8400 GS (/nvidiagpu/0)
|  +- GPU Core       :  566.666  566.666  566.666 (/nvidiagpu/0/clock/0)
|  +- GPU Memory     :    265.5    265.5    265.5 (/nvidiagpu/0/clock/1)
|  +- GPU Shader     :     1400     1400     1400 (/nvidiagpu/0/clock/2)
|  +- GPU Core       :       51       51       53 (/nvidiagpu/0/temperature/0)
|  +- GPU Core       :        0        0       32 (/nvidiagpu/0/load/0)
|  +- GPU Frame Buffer :        6        6       31 (/nvidiagpu/0/load/1)
|  +- GPU Video Engine :        0        0        0 (/nvidiagpu/0/load/2)
|  +- GPU Bus Interface :        0        0       12 (/nvidiagpu/0/load/3)
|  +- GPU Memory     :  52.8061  52.3392  54.6387 (/nvidiagpu/0/load/4)
|  +- GPU Memory Free :  241.633   232.25  244.023 (/nvidiagpu/0/smalldata/1)
|  +- GPU Memory Used :  270.367  267.977   279.75 (/nvidiagpu/0/smalldata/2)
|  +- GPU Memory Total :      512      512      512 (/nvidiagpu/0/smalldata/3)
|
+- WDC WD10EZEX-75M2NA0 (/hdd/0)
|  +- Temperature    :       26       25       26 (/hdd/0/temperature/0)
|  +- Used Space     :   25.956   25.956   25.956 (/hdd/0/load/0)
|
+- Generic Hard Disk (/hdd/1)
|
+- Generic Hard Disk (/hdd/2)
|
+- Generic Hard Disk (/hdd/3)
|
+- Generic Hard Disk (/hdd/4)

--------------------------------------------------------------------------------

Parameters

|
+- Intel DP55WB (/mainboard)
|
+- Intel Core i3 530 (/intelcpu/0)
|  |
|  +- CPU Core #1 (/intelcpu/0/temperature/0)
|  |  +- TjMax [°C] : 105 : 105
|  |  +- TSlope [°C] : 1 : 1
|  |
|  +- CPU Core #2 (/intelcpu/0/temperature/1)
|  |  +- TjMax [°C] : 105 : 105
|  |  +- TSlope [°C] : 1 : 1
|
+- Generic Memory (/ram)
|
+- NVIDIA GeForce 8400 GS (/nvidiagpu/0)
|
+- WDC WD10EZEX-75M2NA0 (/hdd/0)
|  |
|  +- Temperature (/hdd/0/temperature/0)
|  |  +- Offset [°C] : 0 : 0
|
+- Generic Hard Disk (/hdd/1)
|
+- Generic Hard Disk (/hdd/2)
|
+- Generic Hard Disk (/hdd/3)
|
+- Generic Hard Disk (/hdd/4)

--------------------------------------------------------------------------------

Mainboard

SMBIOS Version: 2.5

BIOS Vendor: Intel Corp.
BIOS Version: WBIBX10J.86A.0165.2009.1110.1916

System Manufacturer:                                 
System Name:                                 
System Version:                         

Mainboard Manufacturer: Intel Corporation
Mainboard Name: DP55WB
Mainboard Version: AAE64798-206

Processor Manufacturer: Intel(R) Corporation
Processor Version: Intel(R) Core(TM) i3 CPU         530  @ 2.93GHz
Processor Core Count: 0
Processor Core Enabled: 0
Processor Thread Count: 0
Processor External Clock: 133 Mhz

Memory Device [0] Manufacturer: NO DIMM
Memory Device [0] Part Number: NO DIMM
Memory Device [0] Device Locator: J1MY
Memory Device [0] Bank Locator: CHANNEL A DIMM 0
Memory Device [0] Speed: 0 MHz

Memory Device [1] Manufacturer: 0x0198
Memory Device [1] Part Number: 0x393955353437342D3032382E4130304C4620
Memory Device [1] Device Locator: J2MY
Memory Device [1] Bank Locator: CHANNEL A DIMM 1
Memory Device [1] Speed: 1333 MHz

Memory Device [2] Manufacturer: NO DIMM
Memory Device [2] Part Number: NO DIMM
Memory Device [2] Device Locator: J3MY
Memory Device [2] Bank Locator: CHANNEL B DIMM 0
Memory Device [2] Speed: 0 MHz

Memory Device [3] Manufacturer: 0x0198
Memory Device [3] Part Number: 0x393930353435382D3031302E4130304C4620
Memory Device [3] Device Locator: J5MY
Memory Device [3] Bank Locator: CHANNEL B DIMM 1
Memory Device [3] Speed: 1333 MHz

SMBIOS Table

 BCMAAAMDAQJSBgIA//vrvwGLhQCgD3YLQQEEAAMAAQAAAABJbnRlbChSKSBDb3Jl
 KFRNKSBpMyBDUFUgICAgICAgICA1MzAgIEAgMi45M0dIegBJbnRlbChSKSBDb3Jw
 b3JhdGlvbgBMR0EgMTE1NgAABxMBAAGCAQAQABBAAEAAAAUFCFVua25vd24AAAcT
 AgABgAEgACAAQABAAAAFBAdVbmtub3duAAAHEwMAAYEBAAEAAUAAQAAABQUHVW5r
 bm93bgAABxMEAAGAASAAIABAAEAAAAUDBVVua25vd24AAAAYBQABAgDwAx+AmAl4
 AAAAACMHAAAAAEludGVsIENvcnAuAFdCSUJYMTBKLjg2QS4wMTY1LjIwMDkuMTEx
 MC4xOTE2ADExLzEwLzIwMDkAAAEbBgABAgMEJHkbVPIWEd6qfwAf4g5HBgYAACAg
 ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgACAgICAgICAgICAgICAgICAg
 ICAgICAgICAgICAgICAgACAgICAgICAgICAgICAgICAgICAgICAgIAAgICAgICAg
 ICAgICAgICAgICAgICAgICAgICAgICAgIAAAAhQHAAECAwQFCQYIAAEAAAAAAABJ
 bnRlbCBDb3Jwb3JhdGlvbgBEUDU1V0IAQUFFNjQ3OTgtMjA2AEFaV0I5NTIwMDQw
 MwBCYXNlIEJvYXJkIEFzc2V0IFRhZwBCYXNlIEJvYXJkIENoYXNzaXMgTG9jYXRp
 b24AAAMRCAABAgIDBAMDAQEAAAAAICAgICAgICAgICAgICAgICAgICAgICAgICAg
 ICAgICAAICAgICAgICAgICAgICAgICAgICAgICAgACAgICAgICAgICAgICAgICAg
 ICAgICAgICAgICAgICAgACAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg
 AAAICQkAARYAAP9QUklNQVJZAAAICQoAARYAAP9TRUNPTkRBUlkAAAgJCwAB/wAA
 /0FUWF9QV1IAAAkNDAABqw0DAwcABABQQ0lFIFgxNiBTTE9UIDcAAAkNDQABpQgD
 AwUABAVQQ0lFIFgxIFNMT1QgNQAACQ0OAAGlCAMDBgAEBVBDSUUgWDEgU0xPVCA2
 AAAJDQ8AAQYFAwQDAAQFUENJIFNMT1QgMQAACgYQAIUBSW50ZWwoUikgODI1NzhE
 QyBHaWdhYml0IE5ldHdvcmsgQ29ubmVjdGlvbgAACgYRAIcBSW50ZWwoUikgSGln
 aCBEZWZpbml0aW9uIEF1ZGlvIERldmljZQAADRYSAAEBAAAAAAAAAAAAAAAAAAAA
 AWVuVVMAACAUEwAAAAAAAAAAAAAAAAAAAAAAAAAQDxQAAwMDAAAAAf7/BAAAABMP
 FQAAAAAA//9fABQABAAAERsWABQA/v8AAAAAAAAJAAECGIAAAAADBAUGSjFNWQBD
 SEFOTkVMIEEgRElNTSAwAE5PIERJTU0ATk8gRElNTQBOTyBESU1NAE5PIERJTU0A
 ABEbFwAUAP7/QABAAAAQCQABAhiAADUFAwQFBkoyTVkAQ0hBTk5FTCBBIERJTU0g
 MQAweDAxOTgAMHhFOTE0RjdENABVbmtub3duADB4MzkzOTU1MzUzNDM3MzQyRDMw
 MzIzODJFNDEzMDMwNEM0NjIwAAARGxgAFAD+/wAAAAAAAAkAAQIYgAAAAAMEBQZK
 M01ZAENIQU5ORUwgQiBESU1NIDAATk8gRElNTQBOTyBESU1NAE5PIERJTU0ATk8g
 RElNTQAAERsZABQA/v9AAEAAAAgJAAECGIAANQUDBAUGSjVNWQBDSEFOTkVMIEIg
 RElNTSAxADB4MDE5OAAweDkxMzAxRTE0AFVua25vd24AMHgzOTM5MzAzNTM0MzUz
 ODJEMzAzMTMwMkU0MTMwMzA0QzQ2MjAAAH8E//4AAA==

--------------------------------------------------------------------------------

CPUID

Processor 0

Processor Vendor: Intel
Processor Brand: Intel(R) Core(TM) i3 CPU         530  @ 2.93GHz
Family: 0x6
Model: 0x25
Stepping: 0x2

CPUID Return Values

 CPU Group: 0
 CPU Thread: 0
 APIC ID: 0
 Processor ID: 0
 Core ID: 0
 Thread ID: 0

 Function  EAX       EBX       ECX       EDX
 00000000  0000000B  756E6547  6C65746E  49656E69
 00000001  00020652  00100800  0098E3BD  BFEBFBFF
 00000002  55035A01  00F0B2E3  00000000  09CA212C
 00000003  00000000  00000000  00000000  00000000
 00000004  1C004121  01C0003F  0000003F  00000000
 00000005  00000040  00000040  00000003  00001120
 00000006  00000005  00000002  00000001  00000000
 00000007  00000000  00000000  00000000  00000000
 00000008  00000000  00000000  00000000  00000000
 00000009  00000000  00000000  00000000  00000000
 0000000A  07300403  00000004  00000000  00000603
 0000000B  00000001  00000002  00000100  00000000
 80000000  80000008  00000000  00000000  00000000
 80000001  00000000  00000000  00000001  28100000
 80000002  65746E49  2952286C  726F4320  4D542865
 80000003  33692029  55504320  20202020  20202020
 80000004  30333520  20402020  33392E32  007A4847
 80000005  00000000  00000000  00000000  00000000
 80000006  00000000  00000000  01006040  00000000
 80000007  00000000  00000000  00000000  00000100
 80000008  00003024  00000000  00000000  00000000

 CPU Group: 0
 CPU Thread: 1
 APIC ID: 1
 Processor ID: 0
 Core ID: 0
 Thread ID: 1

 Function  EAX       EBX       ECX       EDX
 00000000  0000000B  756E6547  6C65746E  49656E69
 00000001  00020652  01100800  0098E3BD  BFEBFBFF
 00000002  55035A01  00F0B2E3  00000000  09CA212C
 00000003  00000000  00000000  00000000  00000000
 00000004  1C004121  01C0003F  0000003F  00000000
 00000005  00000040  00000040  00000003  00001120
 00000006  00000005  00000002  00000001  00000000
 00000007  00000000  00000000  00000000  00000000
 00000008  00000000  00000000  00000000  00000000
 00000009  00000000  00000000  00000000  00000000
 0000000A  07300403  00000004  00000000  00000603
 0000000B  00000001  00000002  00000100  00000001
 80000000  80000008  00000000  00000000  00000000
 80000001  00000000  00000000  00000001  28100000
 80000002  65746E49  2952286C  726F4320  4D542865
 80000003  33692029  55504320  20202020  20202020
 80000004  30333520  20402020  33392E32  007A4847
 80000005  00000000  00000000  00000000  00000000
 80000006  00000000  00000000  01006040  00000000
 80000007  00000000  00000000  00000000  00000100
 80000008  00003024  00000000  00000000  00000000

 CPU Group: 0
 CPU Thread: 2
 APIC ID: 4
 Processor ID: 0
 Core ID: 2
 Thread ID: 0

 Function  EAX       EBX       ECX       EDX
 00000000  0000000B  756E6547  6C65746E  49656E69
 00000001  00020652  04100800  0098E3BD  BFEBFBFF
 00000002  55035A01  00F0B2E3  00000000  09CA212C
 00000003  00000000  00000000  00000000  00000000
 00000004  1C004121  01C0003F  0000003F  00000000
 00000005  00000040  00000040  00000003  00001120
 00000006  00000005  00000002  00000001  00000000
 00000007  00000000  00000000  00000000  00000000
 00000008  00000000  00000000  00000000  00000000
 00000009  00000000  00000000  00000000  00000000
 0000000A  07300403  00000004  00000000  00000603
 0000000B  00000001  00000002  00000100  00000004
 80000000  80000008  00000000  00000000  00000000
 80000001  00000000  00000000  00000001  28100000
 80000002  65746E49  2952286C  726F4320  4D542865
 80000003  33692029  55504320  20202020  20202020
 80000004  30333520  20402020  33392E32  007A4847
 80000005  00000000  00000000  00000000  00000000
 80000006  00000000  00000000  01006040  00000000
 80000007  00000000  00000000  00000000  00000100
 80000008  00003024  00000000  00000000  00000000

 CPU Group: 0
 CPU Thread: 3
 APIC ID: 5
 Processor ID: 0
 Core ID: 2
 Thread ID: 1

 Function  EAX       EBX       ECX       EDX
 00000000  0000000B  756E6547  6C65746E  49656E69
 00000001  00020652  05100800  0098E3BD  BFEBFBFF
 00000002  55035A01  00F0B2E3  00000000  09CA212C
 00000003  00000000  00000000  00000000  00000000
 00000004  1C004121  01C0003F  0000003F  00000000
 00000005  00000040  00000040  00000003  00001120
 00000006  00000005  00000002  00000001  00000000
 00000007  00000000  00000000  00000000  00000000
 00000008  00000000  00000000  00000000  00000000
 00000009  00000000  00000000  00000000  00000000
 0000000A  07300403  00000004  00000000  00000603
 0000000B  00000001  00000002  00000100  00000005
 80000000  80000008  00000000  00000000  00000000
 80000001  00000000  00000000  00000001  28100000
 80000002  65746E49  2952286C  726F4320  4D542865
 80000003  33692029  55504320  20202020  20202020
 80000004  30333520  20402020  33392E32  007A4847
 80000005  00000000  00000000  00000000  00000000
 80000006  00000000  00000000  01006040  00000000
 80000007  00000000  00000000  00000000  00000100
 80000008  00003024  00000000  00000000  00000000

--------------------------------------------------------------------------------

Intel CPU

Name: Intel Core i3 530
Number of Cores: 2
Threads per Core: 2
Timer Frequency: 2.864765 MHz
Time Stamp Counter: Invariant
Estimated Time Stamp Counter Frequency: 2933.91 MHz
Estimated Time Stamp Counter Frequency Error: 0.45062 Mhz
Time Stamp Counter Frequency: 2933.52 MHz

MSR Core #1

 MSR       EDX       EAX
 000000CE  00000900  00011600
 00000198  00000000  00000016
 0000019C  00000000  88390000
 000001A2  00000000  00691000

MSR Core #2

 MSR       EDX       EAX
 000000CE  00000900  00011600
 00000198  00000000  00000016
 0000019C  00000000  883E0000
 000001A2  00000000  00691000

Microarchitecture: Nehalem
Time Stamp Counter Multiplier: 22

--------------------------------------------------------------------------------

AMD Display Library

ADL Status: ERR
ADL2 Status: ERR

Graphics Versions

 Status: DLL not found

--------------------------------------------------------------------------------

NVAPI

 Version: NVidia Complete Version 1.10

NVML

 Status: ErrorLibraryNotFound

Number of GPUs: 1

--------------------------------------------------------------------------------

Nvidia GPU

Name: NVIDIA GeForce 8400 GS
Index: 0
Driver Version: 342.01
Driver Branch: r340_00-601

DeviceID: 0x6E410DE
SubSystemID: 0xC7253842
RevisionID: 0xA1
ExtDeviceID: 0x6E4

Thermal Settings

 Sensor[0].Controller: GPU_INTERNAL
 Sensor[0].DefaultMinTemp: 0
 Sensor[0].DefaultMaxTemp: 127
 Sensor[0].CurrentTemp: 51
 Sensor[0].Target: GPU

Clocks

 Clock[0]: 566666
 Clock[1]: 9
 Clock[8]: 265500
 Clock[9]: 11
 Clock[10]: 277778
 Clock[11]: 9
 Clock[12]: 416666
 Clock[13]: 9
 Clock[14]: 1400000
 Clock[15]: 9
 Clock[16]: 94500
 Clock[17]: 1
 Clock[18]: 3145
 Clock[19]: 1
 Clock[24]: 566666
 Clock[25]: 9
 Clock[64]: 566666
 Clock[65]: 32
 Clock[92]: 265500
 Clock[93]: 32
 Clock[99]: 277778
 Clock[100]: 32
 Clock[106]: 416666
 Clock[107]: 32
 Clock[113]: 1400000
 Clock[114]: 32
 Clock[120]: 94500
 Clock[121]: 32
 Clock[127]: 3145
 Clock[128]: 32
 Clock[148]: 566666
 Clock[149]: 32

Tachometer

 Status: NOT_SUPPORTED

Utilization Domains Ex

 Percentage[0]: 0
 Percentage[1]: 6
 Percentage[2]: 0
 Percentage[3]: 0

Utilization Domains

 Percentage[0]: 0
 Percentage[1]: 6
 Percentage[2]: 0
 Percentage[3]: 0

Cooler Settings


Memory Info

 Value[0]: 524288
 Value[1]: 509376
 Value[2]: 0
 Value[3]: 1436720
 Value[4]: 247788

--------------------------------------------------------------------------------

GenericHarddisk

Drive name: WDC WD10EZEX-75M2NA0
Firmware version: 01.01A01

 ID Description                        Raw Value    Worst Value Thres Physical
 01 Read Error Rate                    000000000000 200   200   51    -       
 03 Spin-Up Time                       3E0900000000 167   172   21    -       
 04 Start/Stop Count                   4B0900000000 98    98    0     2379    
 05 Reallocated Sectors Count          000000000000 200   200   140   -       
 07 Seek Error Rate                    000000000000 200   200   0     -       
 09 Power-On Hours (POH)               CD4400000000 76    76    0     17613   
 0A Spin Retry Count                   000000000000 100   100   0     -       
 0B Recalibration Retries              000000000000 100   100   0     -       
 0C Power Cycle Count                  480900000000 98    98    0     2376    
 C0 Emergency Retract Cycle Count      2A0000000000 200   200   0     -       
 C1 Load Cycle Count                   2D1103000000 133   133   0     -       
 C2 Temperature                        1A0000000000 96    117   0     26      
 C4 Reallocation Event Count           000000000000 200   200   0     -       
 C5 Current Pending Sector Count       000000000000 200   200   0     -       
 C6 Uncorrectable Sector Count         000000000000 200   200   0     -       
 C7 UltraDMA CRC Error Count           000000000000 200   200   0     -       
 C8 Write Error Rate                   000000000000 200   200   0     -       
 F0 Head Flying Hours                  0D3D00000000 79    79    0     -       
 F1 Total LBAs Written                 D986C39F1500 200   200   0     -       
 F2 Total LBAs Read                    838B43DD3500 200   200   0     -       

Logical drive name: C:\
Format: NTFS
Total size: 104752738304
Total free space: 13248512000

Logical drive name: D:\
Format: NTFS
Total size: 895344439296
Total free space: 727266238464

--------------------------------------------------------------------------------

GenericHarddisk

Drive name: Generic Hard Disk
Firmware version: Unknown

--------------------------------------------------------------------------------

GenericHarddisk

Drive name: Generic Hard Disk
Firmware version: Unknown

--------------------------------------------------------------------------------

GenericHarddisk

Drive name: Generic Hard Disk
Firmware version: Unknown

--------------------------------------------------------------------------------

GenericHarddisk

Drive name: Generic Hard Disk
Firmware version: Unknown

Hola nuevamente,

Revisando parece que las temperaturas están bien pero la memoria pareciese estar algo alto.

Abre el administrador de tareas (Clic derecho en la barra de tareas y elegir Administrador de tareas). En la parte de Procesos comprueba si hay en alguna columna te marca mayor a 50% o más cerca de 100%. Haz clic sobre la columna para ver que está consumiendo más. Te muestro un ejemplo de mi PC donde la unica que tiene consumo crítico es la de CPU:

Coméntanos si de manera constante hay varios procesos que se repitan.

Saludos