Tu navegador está administrado (gestionado por tu organización) + internet se desconecta

Hola

Hace poco me di cuenta que el navegador google chrome tenía una leyenda que decía “Tu navegador está administrado (gestionado por tu organización)”. Me pareció bastante raro, así que busqué información y ejecuté estos programas en este orden: Malwarebytes’ Anti-Malware, adwCleaner, CCleaner y Junkware Removal Tool. Luego de esto, el mensaje seguía apareciendo. [Dejo reportes al final]

No se si va ligado con este tema, pero durante varias semanas estoy teniendo problemas con el wifi:

• Se desconecta a cada rato pero me sigue apareciendo que tengo señal, y la única solución es desactivar y activar el wifi. Luego de esto, se arregla
• Hay veces que cuando desactivo, ya no me permite activar el wifi, me sale internet no disponible y la única solución es ir a administradores de equipo y actualizar el ethernet o borrar el qualcomm aheros, reinstalarlo, etc y reiniciar. El problema de esto es que no siempre funciona y lo tengo que repetir muchas veces hasta que al fin se arregla.
• Respecto lo de arriba, hay veces que luego de que se arregle la conexión, se congela la pc y se reinicia sola y vuelve a aparecer “internet no disponible”

No se si todo esto está relacionado o son dos temas separados y el wifi es por problemas del hardware y no por un malware.

Espero que me puedan ayudar, gracias

Malwarebytes.txt (2,7 KB) AdwCleaner[C14].txt (3,9 KB) JRT.txt (1,6 KB)

Hola @chrimoya y Bienvenido al Foro…!!!

Que antivirus tienes instalado actualmente en tu equipo y que otros antivirus tuviste anteriormente…?!

Saludos

Hola Javier, gracias por su ayuda

Actualmente tengo Kasperky Security cloud y tuve el windows defender y el panda

Hola.

Bien… y ahora realiza estos pasos :

Desactiva temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Descargar en TU ESCRITORIO(y NO en otro lugar )

• Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Farbar Recovery Scan Tool.-

• Ejecuta FRST.exe.

• En el mensaje de la ventana del Disclaimer o Responsabilidad, pulsamos Yes/Si

• En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.

• Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Poner los dos informes en tu próxima respuesta.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Saludos.

Hola, acá los informes Frst.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06-06-2020
Ejecutado por Gastón (administrador) sobre IDEAPC (LENOVO 20150) (13-06-2020 19:31:05)
Ejecutado desde C:\Users\Gastón.idea-PC\Desktop
Perfiles cargados: Gastón
Platform: Windows 8.1 Single Language (Update) (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(FSPro Labs -> ) C:\Program Files\Lock My PC 4\LmpcServ.exe
(FSPro Labs -> FSPro Labs) C:\Program Files\Lock My PC 4\lockpc.exe
(HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avpui.exe
(Michael Herf -> Flux Software LLC) C:\Users\Gastón.idea-PC\AppData\Local\FluxSoftware\Flux\flux.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [Archivo no firmado]
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\...\Policies\Explorer: [NoThumbnailCache] 1
HKLM\...\Policies\Explorer: [DisableThumbnailCache] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [f.lux] => C:\Users\Gastón.idea-PC\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Michael Herf -> Flux Software LLC)
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-28] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [Archivo no firmado]
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-12] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [52240 2016-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon2.dll [29704 2012-12-13] (Nitro PDF Software -> Nitro PDF Software)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\us005 Langmon: C:\WINDOWS\system32\us005lm.dll [31256 2016-09-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-01-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-01-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acelerador de inicio de AutoCAD.lnk [2016-06-16]
ShortcutTarget: Acelerador de inicio de AutoCAD.lnk -> C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc -> Autodesk, Inc)
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {0300B3E1-24BA-41EB-836B-ACFA5C960461} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {0813AF20-659B-4445-9E56-BB8FC5CF3346} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0CE4F5A8-F4CA-45E4-AC54-6834A43B5988} - System32\Tasks\Microsoft\Windows\PLA\WPPTracingSession => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "WPPTracingSession" "$(Arg0)"
Task: {0E5A215D-394C-487D-9DEF-67CCB2FE4D73} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {10CC4F55-D1B7-4C9A-89DD-E34CF3CA3000} - System32\Tasks\Lenovo\sysrun-30870 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-30870.cmd 
Task: {11E4D3ED-D620-4FD8-AF84-A6B789DA242D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [978672 2017-12-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1ACBE919-7AC7-4EFB-A076-17E61FB13151} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B485986-95DF-4F2F-ADE3-F4B86E7558E5} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {2B1C8F00-FA30-49C9-8A04-B4F9FBEEB9B3} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2B3E0FA2-9B38-48F1-8D6F-FE3B849B3D92} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {2BC6B34D-A27F-4317-8554-E01672B1DA50} - System32\Tasks\Lenovo\sysrun-24186 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24186.cmd 
Task: {2C7FF884-08B9-45CC-9280-45E705683A6A} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {2EB39BD1-4590-447D-A6F4-550E2AE3784A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {2FDCE8D8-DC52-4CBD-897C-FDE12823E88E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CFDC49A-28B9-4B54-82CF-2868166D8F29} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {3DFED3A4-EF94-4366-8B61-348248827E4C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {41E26135-28BD-4629-9E3C-754628AD1058} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {4A9FED41-9272-4863-B6A2-7E7AC04BFC8A} - System32\Tasks\Lenovo\Lenovo-20312 => C:\ProgramData\Lenovo-20312.vbs [198 2013-06-18] () [Archivo no firmado] <==== ATENCIÓN
Task: {4E5C2BC4-C1D8-4D8B-B6D7-F86762E51D9A} - System32\Tasks\Lenovo\sysrun-10077 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-10077.cmd 
Task: {4F8C8335-FD25-45AC-83CD-8C791CCFCEF3} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [1335928 2016-08-22] (Samsung Electronics CO., LTD. -> )
Task: {51249BA5-1891-44A4-876F-BD9140A2B7D9} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-12] (Adobe Inc. -> Adobe)
Task: {51444BBB-CC69-4262-8938-C3775D15D20A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-28] (Google Inc -> Google Inc.)
Task: {5169F1BD-8047-4117-8FCD-22A9C912E061} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {51A7D63A-A004-4F5F-AAC1-AA9ED9B719E6} - System32\Tasks\{B04F7875-1BF7-4240-B136-5F0342624E71} => C:\WINDOWS\system32\pcalua.exe -a E:\install.exe -d E:\
Task: {5921F507-7A82-40AD-AF9A-F4E97590A128} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {5AAC1DC8-4B10-41F6-A0C1-544AE656447E} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe
Task: {63D5501F-90AE-4754-8C22-F2B5F719FE7F} - System32\Tasks\Lenovo\sysrun-31835 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-31835.cmd 
Task: {67640453-266A-4E49-A0D2-0C8699A730AF} - System32\Tasks\avastBCLRestartS-1-5-21-4206844412-3915076-1266158226-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
Task: {67A9884E-E842-4593-AA7F-A3C9388232A6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {69F69A34-524B-4901-92FD-05FBDD8D0C08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A6C3C89-585F-42D8-AF40-E80B666ACC8D} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-17] (Adobe Inc. -> Adobe)
Task: {6B7A68DB-E2B1-4C41-9881-8E0418A75CE6} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4206844412-3915076-1266158226-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {6F557955-D258-44E5-B035-4AC9B557ACDB} - System32\Tasks\Lenovo\sysrun-17735 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-17735.cmd 
Task: {70A64252-49F4-4C5B-8388-05E05CFE1C85} - System32\Tasks\Lenovo\sysrun-24805 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24805.cmd 
Task: {73061D3E-31D4-4035-A6A5-30985B75FC74} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {7F258F2C-04D7-4808-9D7D-E4DEA8035844} - System32\Tasks\AdobeAAMUpdater-1.0-idea-PC-Gastón => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {8432D64A-408C-49DD-A064-3160411F9499} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {84B2446C-AA3E-4FB7-BC15-40D63AF50ACD} - System32\Tasks\Programa de actualización online de Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {84BAB131-E1F1-4A2E-9298-2474B990D2D6} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {8626F4D6-2AE4-4526-AF36-E08513EFCD54} - System32\Tasks\Google Updater and Installer => C:\Users\Gastón\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-06-12] (Google Inc -> Google Inc.)
Task: {8AEDE10E-8E98-4216-BC1E-4EB04A49A135} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-17] (Adobe Inc. -> Adobe)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {8D22373D-11F7-4401-A130-44096BD7B8DF} - System32\Tasks\Lenovo\sysrun-16651 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-16651.cmd 
Task: {9D080B6F-914C-4B49-8F56-68CE7D609E7F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [978672 2017-12-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DE16236-0628-4E90-B425-BE06106DCE27} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {9E00F9CB-9E5A-4ADD-A507-C78CF1A1B66F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {9F982064-3372-400C-B7A8-EE8DFA35BDFA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A10E3515-0988-4CA9-AE18-C17401E5852F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-28] (Google Inc -> Google Inc.)
Task: {A5ED53E9-8CE4-4411-9259-27059FFC413B} - System32\Tasks\Lenovo\sysrun-3547 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-3547.cmd 
Task: {A93978FA-15D9-4C85-BE53-CE2788E74212} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABC584C4-7B63-4D2E-8686-B9777D34D832} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle America, Inc. -> Oracle Corporation)
Task: {B974C7AC-E2C1-45AC-ADEB-73768CBE6193} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {DCAECB16-F247-426A-84C1-993E5694E347} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {DE2D4B5F-1277-48B4-882E-EB5A31BEF0D3} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {ECA9C953-9493-41ED-8707-CBE0E969D7A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE92EC1A-14F2-4F45-A26E-E05259E5A0CC} - System32\Tasks\Lenovo\sysrun-27641 => C:\Users\GASTN~1\AppData\Local\Temp\sysrun-27641.cmd 
Task: {F168622D-FF99-4557-81DB-DF3A92665D2E} - System32\Tasks\Lenovo\sysrun-2223 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-2223.cmd 

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 186.130.128.250 186.130.129.250
Tcpip\..\Interfaces\{B2DCF51B-6184-41F3-AE6F-25E7B4ED39F2}: [DhcpNameServer] 186.130.128.250 186.130.129.250

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ar.yahoo.com?fr=fp-comodo&type=138430100005_12.1.0.6914_i_hp
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-4206844412-3915076-1266158226-1001 -> DefaultScope {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://ar.search_path.yahoo.com/search_path?p={searchTerms}&fr=chr-comodo&type=138430100005_12.1.0.6914_i_ds
SearchScopes: HKU\S-1-5-21-4206844412-3915076-1266158226-1001 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://ar.search_path.yahoo.com/search_path?p={searchTerms}&fr=chr-comodo&type=138430100005_12.1.0.6914_i_ds
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\IEExt\ie_plugin.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-06] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\IEExt\ie_plugin.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Gastón.idea-PC\AppData\Roaming\Mozilla\Firefox\Profiles\4JP5qivp.default [2020-04-27]
FF Extension: (Avira Password Manager) - C:\Users\Gastón.idea-PC\AppData\Roaming\Mozilla\Firefox\Profiles\4JP5qivp.default\Extensions\[email protected] [2020-04-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-17] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-17] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Ningún archivo]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll [2012-12-13] (Nitro PDF Software -> Nitro PDF)
FF Plugin HKU\S-1-5-21-4206844412-3915076-1266158226-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Gastón.idea-PC\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default [2020-06-13]
CHR StartupUrls: Default -> "hxxps://www.google.com.ar/"
CHR Extension: (Google Drive) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (uBlock Origin) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-05-30]
CHR Extension: (Búsqueda de Google) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Video Downloader professional) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-05-14]
CHR Extension: (Roblox+) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2020-05-20]
CHR Extension: (Secure Bookmarks) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\leocjgngiajhfiikjolfhcpiokgbinep [2015-03-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]
CHR Extension: (Gmail) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Gastón.idea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-06]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado]
S4 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [77944 2014-06-21] (Autodesk, Inc -> Autodesk)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5708808 2018-04-21] (BattlEye Innovations e.K. -> )
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation -> Microsoft Corporation)
S4 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2973592 2020-02-06] (Comodo Security Solutions -> Comodo)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-04-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319520 2020-02-27] (Intel(R) pGFX -> Intel Corporation)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104 2012-04-20] (Intel® Upgrade Service -> Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LmpcService; C:\Program Files\Lock My PC 4\LmpcServ.exe [52592 2007-06-12] (FSPro Labs -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-06-10] (Malwarebytes Inc -> Malwarebytes)
S4 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software -> Nitro PDF Software)
S4 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [70152 2012-12-13] (Nitro PDF Software -> Nalpeiron Ltd.)
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [508488 2018-04-25] (HP Inc. -> )
S4 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2018-04-11] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-24] (Atheros) [Archivo no firmado]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 aswTap; C:\WINDOWS\system32\DRIVERS\aswTap.sys [44640 2014-04-22] (AVAST Software a.s. -> The OpenVPN Project)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2015-01-12] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [49056 2015-01-12] (Hewlett-Packard Company -> Microsoft Corporation)
S3 fwdrv; C:\WINDOWS\system32\DRIVERS\fwdrv.sys [27840 2014-03-22] (Web Solution Mart -> Web Solution Mart)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2018-02-14] (SurfRight B.V. -> )
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-05-14] (Martin Malik - REALiX -> REALiX(tm))
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [531584 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [633600 2020-04-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1217792 2020-04-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998296 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232344 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58280 2018-07-27] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-06-10] (Malwarebytes Inc -> Malwarebytes)
S0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-10] (Malwarebytes Inc -> Malwarebytes)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2015-01-12] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 Neo_VPN; C:\WINDOWS\system32\DRIVERS\Neo_VPN.sys [38432 2018-03-10] (SoftEther Corporation -> SoftEther Corporation)
S3 phantomtap; C:\WINDOWS\system32\DRIVERS\phantomtap.sys [35664 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [8873688 2015-01-12] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [50888 2018-06-09] (SoftEther Corporation -> SoftEther Corporation)
S3 tap-tb-0901; C:\WINDOWS\system32\DRIVERS\tap-tb-0901.sys [38656 2015-08-10] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\system32\DRIVERS\tapnordvpn.sys [35592 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\system32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S3 TS_ARN5416; C:\WINDOWS\system32\DRIVERS\ts_athrx.sys [3508584 2017-05-11] (TamoSoft Ltd -> TamoSoft)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-12-18] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [194976 2015-12-18] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [125008 2015-11-10] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
U3 aswbdisk; no ImagePath
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
S3 BEDaisy; \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [X]
U4 CmdAgent; no ImagePath
S4 nvrtxvad_WaveExtensible; \SystemRoot\system32\drivers\nvrtxvad64v.sys [X]
S1 pgbwkmks; \??\C:\WINDOWS\system32\drivers\pgbwkmks.sys [X]
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\WINDOWS\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-13 19:31 - 2020-06-13 19:32 - 000036866 _____ C:\Users\Gastón.idea-PC\Desktop\FRST.txt
2020-06-13 00:24 - 2020-06-13 00:24 - 043820900 _____ C:\Users\Gastón.idea-PC\Downloads\USB19.zip
2020-06-12 23:15 - 2020-06-12 23:15 - 068269850 _____ C:\Users\Gastón.idea-PC\Downloads\USB15.zip
2020-06-12 23:13 - 2020-06-12 23:14 - 112990490 _____ C:\Users\Gastón.idea-PC\Downloads\USB14.zip
2020-06-12 23:11 - 2020-06-12 23:11 - 023227395 _____ C:\Users\Gastón.idea-PC\Downloads\USB16.zip
2020-06-12 23:09 - 2020-06-12 23:09 - 033973009 _____ C:\Users\Gastón.idea-PC\Downloads\USB17.zip
2020-06-12 23:08 - 2020-06-12 23:08 - 014895972 _____ C:\Users\Gastón.idea-PC\Downloads\USB18.zip
2020-06-12 20:41 - 2020-06-12 20:42 - 040612989 _____ C:\Users\Gastón.idea-PC\Downloads\USB13-dbcdd006-1874-4b23-82ad-7df00871ccfe.zip
2020-06-12 19:16 - 2020-06-12 19:18 - 095309332 _____ C:\Users\Gastón.idea-PC\Downloads\USB12.zip
2020-06-12 19:13 - 2020-06-12 19:14 - 048246451 _____ C:\Users\Gastón.idea-PC\Downloads\USB11.zip
2020-06-12 19:12 - 2020-06-12 19:14 - 063217100 _____ C:\Users\Gastón.idea-PC\Downloads\USB10.zip
2020-06-12 19:09 - 2020-06-12 19:11 - 055753955 _____ C:\Users\Gastón.idea-PC\Downloads\USB9.zip
2020-06-12 19:09 - 2020-06-12 19:09 - 054581601 _____ C:\Users\Gastón.idea-PC\Downloads\USB8.zip
2020-06-12 19:07 - 2020-06-12 19:08 - 019617914 _____ C:\Users\Gastón.idea-PC\Downloads\USB7.zip
2020-06-12 19:01 - 2020-06-12 19:01 - 055794258 _____ C:\Users\Gastón.idea-PC\Downloads\USB6.zip
2020-06-12 18:59 - 2020-06-12 19:00 - 055800885 _____ C:\Users\Gastón.idea-PC\Downloads\USB5.zip
2020-06-12 18:57 - 2020-06-12 18:57 - 062030880 _____ C:\Users\Gastón.idea-PC\Downloads\USB4.zip
2020-06-12 18:56 - 2020-06-12 18:57 - 042778859 _____ C:\Users\Gastón.idea-PC\Downloads\USB3.zip
2020-06-12 18:52 - 2020-06-12 18:52 - 031486992 _____ C:\Users\Gastón.idea-PC\Downloads\USB2.zip
2020-06-12 18:51 - 2020-06-12 18:52 - 024969877 _____ C:\Users\Gastón.idea-PC\Downloads\USB1-28632cda-996d-4fe7-abb4-829186d9ad19.zip
2020-06-12 03:01 - 2020-06-12 03:01 - 000001599 _____ C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\flux.lnk
2020-06-12 01:27 - 2020-06-12 01:27 - 000014125 _____ C:\Users\Gastón.idea-PC\Downloads\reporte malwarebyter.txt
2020-06-11 23:22 - 2020-06-11 23:22 - 008402608 _____ (Malwarebytes) C:\Users\Gastón.idea-PC\Downloads\adwcleaner_8.0.5.exe
2020-06-11 02:20 - 2020-06-11 02:20 - 000000766 _____ C:\Users\Gastón.idea-PC\Desktop\GEOGRAFIA.txt
2020-06-11 01:50 - 2020-06-11 01:50 - 000079388 _____ C:\Users\Gastón.idea-PC\Downloads\Apuntes 2da hoja (1).jpeg
2020-06-11 01:49 - 2020-06-11 01:49 - 000107317 _____ C:\Users\Gastón.idea-PC\Downloads\Apuntes 1era hoja.jpeg
2020-06-11 01:49 - 2020-06-11 01:49 - 000079388 _____ C:\Users\Gastón.idea-PC\Downloads\Apuntes 2da hoja.jpeg
2020-06-11 01:36 - 2020-06-11 01:36 - 000103697 _____ C:\Users\Gastón.idea-PC\Downloads\SOCIALES TUN 1.jpeg
2020-06-11 01:36 - 2020-06-11 01:36 - 000094843 _____ C:\Users\Gastón.idea-PC\Downloads\SOCIALES TUN 2.jpeg
2020-06-11 01:33 - 2020-06-11 01:34 - 002636284 _____ C:\Users\Gastón.idea-PC\Downloads\282F1E75-4436-42BE-8FFF-02C6011DB42E (2).jpeg
2020-06-11 01:33 - 2020-06-11 01:33 - 002343368 _____ C:\Users\Gastón.idea-PC\Downloads\C0DE7BB0-D911-4FFD-9DE5-08C4D2619B8D (2).jpeg
2020-06-11 01:31 - 2020-06-11 01:31 - 002636284 _____ C:\Users\Gastón.idea-PC\Downloads\282F1E75-4436-42BE-8FFF-02C6011DB42E (1).jpeg
2020-06-11 01:31 - 2020-06-11 01:31 - 002343368 _____ C:\Users\Gastón.idea-PC\Downloads\C0DE7BB0-D911-4FFD-9DE5-08C4D2619B8D (1).jpeg
2020-06-11 01:29 - 2020-06-11 01:29 - 002636284 _____ C:\Users\Gastón.idea-PC\Downloads\282F1E75-4436-42BE-8FFF-02C6011DB42E.jpeg
2020-06-11 01:29 - 2020-06-11 01:29 - 002343368 _____ C:\Users\Gastón.idea-PC\Downloads\C0DE7BB0-D911-4FFD-9DE5-08C4D2619B8D.jpeg
2020-06-11 01:17 - 2020-06-11 01:17 - 000065931 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 4.02.29 PM (1).jpeg
2020-06-11 01:17 - 2020-06-11 01:17 - 000044083 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 4.02.28 PM (1).jpeg
2020-06-11 01:06 - 2020-06-11 01:06 - 000065931 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 4.02.29 PM.jpeg
2020-06-11 01:06 - 2020-06-11 01:06 - 000044083 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 4.02.28 PM.jpeg
2020-06-11 00:54 - 2020-06-11 00:54 - 000310786 _____ C:\Users\Gastón.idea-PC\Downloads\RELIEVE 9-5 C SOCIALES APUNTES.pdf
2020-06-11 00:26 - 2020-06-11 00:26 - 000310760 _____ C:\Users\Gastón.idea-PC\Downloads\CamScanner 06-09-2020 16.32.49.pdf
2020-06-11 00:23 - 2020-06-11 00:23 - 000134410 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 6.17.32 PM.jpeg
2020-06-11 00:23 - 2020-06-11 00:23 - 000063897 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-09 at 6.17.38 PM.jpeg
2020-06-11 00:21 - 2020-06-11 00:21 - 000147529 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-10 at 2.02.04 PM.jpeg
2020-06-11 00:21 - 2020-06-11 00:21 - 000036142 _____ C:\Users\Gastón.idea-PC\Downloads\WhatsApp Image 2020-06-10 at 2.02.45 PM.jpeg
2020-06-11 00:09 - 2020-06-11 00:09 - 000607239 _____ C:\Users\Gastón.idea-PC\Downloads\Geografía Física.pdf
2020-06-10 23:10 - 2020-06-10 23:10 - 001998004 _____ C:\Users\Gastón.idea-PC\Downloads\5A27A121-D7D1-4F27-890E-E0EC0AF2F957.jpeg
2020-06-10 23:09 - 2020-06-10 23:10 - 002167297 _____ C:\Users\Gastón.idea-PC\Downloads\3CFBBAB8-E63D-470C-9948-DE28867ABB3D.jpeg
2020-06-10 23:05 - 2020-06-10 23:05 - 000098506 _____ C:\Users\Gastón.idea-PC\Downloads\Apunte de relieves - Ciencias Sociales - Agustín Aldeco - hoja N2.jpeg
2020-06-10 23:05 - 2020-06-10 23:05 - 000088143 _____ C:\Users\Gastón.idea-PC\Downloads\Apunte de relieves - Ciencias Sociales - Agustín Aldeco.jpeg
2020-06-10 23:01 - 2020-06-10 23:02 - 000000000 ____D C:\Users\Gastón.idea-PC\Downloads\Geografia
2020-06-10 21:48 - 2020-06-10 21:48 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-06-10 21:48 - 2020-06-10 21:48 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-06-10 21:48 - 2020-06-10 21:48 - 000001987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-06-10 21:48 - 2020-06-10 21:48 - 000001975 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-06-10 21:48 - 2020-06-10 21:48 - 000001975 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-06-10 21:48 - 2020-06-10 21:47 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-06-10 21:47 - 2020-06-10 21:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-06-10 21:45 - 2020-06-10 21:45 - 001928352 _____ (Malwarebytes) C:\Users\Gastón.idea-PC\Downloads\MBSetup-0009996.0009996-consumer.exe
2020-06-10 21:16 - 2020-06-10 21:16 - 002289152 _____ (Farbar) C:\Users\Gastón.idea-PC\Desktop\FRST64.exe
2020-06-08 03:42 - 2012-08-03 15:30 - 003618304 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw8x.sys
2020-05-24 19:11 - 2020-06-05 21:37 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Local\Adobe
2020-05-24 19:11 - 2020-06-05 21:35 - 000000000 ____D C:\ProgramData\Adobe
2020-05-24 19:11 - 2020-06-05 20:33 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\Adobe
2020-05-19 21:48 - 2020-05-19 21:48 - 000003625 _____ C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cmd.lnk
2020-05-15 01:30 - 2020-05-21 20:18 - 000000000 ____D C:\WINDOWS\LastGood
2020-05-14 22:47 - 2020-06-10 20:26 - 000001417 _____ C:\Users\Gastón.idea-PC\Desktop\Roblox Player.lnk
2020-05-14 19:50 - 2020-05-14 20:07 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-05-14 19:50 - 2020-05-14 19:50 - 004318648 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athwbx.sys
2020-05-14 19:48 - 2020-05-14 19:50 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\instinfo
2020-05-14 19:47 - 2020-05-14 19:47 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-13 19:31 - 2019-11-22 23:43 - 000000000 ____D C:\FRST
2020-06-13 19:29 - 2020-04-28 00:45 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-06-13 18:55 - 2019-03-15 02:45 - 000003974 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9853ACA6-8ED9-4BAB-91CA-77A512AC188E}
2020-06-13 18:54 - 2013-06-18 07:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-06-13 18:52 - 2015-01-12 20:05 - 000000000 __SHD C:\Users\Gastón\IntelGraphicsProfiles
2020-06-12 20:56 - 2014-06-12 11:44 - 000003594 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4206844412-3915076-1266158226-1001
2020-06-12 00:07 - 2015-02-13 20:13 - 000000000 ____D C:\WINDOWS\Minidump
2020-06-12 00:07 - 2013-08-22 10:36 - 000000000 ____D C:\WINDOWS\Inf
2020-06-11 23:32 - 2013-08-22 11:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-06-11 20:21 - 2015-01-12 18:04 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Local\Packages
2020-06-11 09:11 - 2018-04-29 22:14 - 000004128 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-11 04:25 - 2015-01-12 19:27 - 000000000 ____D C:\Users\Gastón.idea-PC
2020-06-10 20:26 - 2020-05-12 02:54 - 000001232 _____ C:\Users\Gastón.idea-PC\Desktop\Roblox Studio.lnk
2020-06-10 20:26 - 2019-09-21 21:44 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-06-10 20:09 - 2014-09-24 12:25 - 001034716 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-10 20:09 - 2014-09-24 11:40 - 000167252 _____ C:\WINDOWS\system32\perfc00A.dat
2020-06-10 20:09 - 2014-09-24 11:40 - 000018482 _____ C:\WINDOWS\system32\perfh00A.dat
2020-06-08 06:14 - 2018-09-16 18:39 - 000000132 _____ C:\Users\Gastón.idea-PC\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2020-06-08 05:29 - 2020-04-11 15:27 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Local\WEB2Print
2020-06-08 04:44 - 2015-12-26 22:42 - 000000000 ____D C:\Users\Gastón.idea-PC\Documents\Camtasia Studio
2020-06-08 03:22 - 2018-01-22 21:54 - 000000000 ____D C:\Users\lnvitado
2020-06-08 03:22 - 2018-01-17 01:31 - 000000000 ____D C:\Users\Invitado
2020-06-08 03:20 - 2013-08-22 12:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-08 03:14 - 2013-08-22 12:36 - 000000000 ____D C:\WINDOWS\registration
2020-06-05 21:37 - 2013-06-18 07:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-03 17:34 - 2015-02-28 02:24 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-02 18:20 - 2013-08-22 10:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2020-06-02 01:27 - 2013-06-18 07:44 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-06-02 01:27 - 2013-06-18 07:12 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-05-30 02:54 - 2013-08-22 12:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-05-28 20:30 - 2013-08-22 10:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2020-05-27 19:20 - 2019-04-12 19:25 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Local\ElevatedDiagnostics
2020-05-27 19:13 - 2017-01-19 16:25 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\Nitro PDF
2020-05-21 20:37 - 2015-01-12 20:17 - 000000000 ___RD C:\Users\Gastón.idea-PC\Desktop\AntiSaiVidGame
2020-05-18 07:45 - 2020-02-14 04:05 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Local\JDownloader 2.0
2020-05-18 00:35 - 2015-01-12 21:10 - 000000000 ____D C:\Users\Gastón.idea-PC\OneDrive
2020-05-17 20:23 - 2018-03-14 02:42 - 000004490 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-17 20:23 - 2014-12-24 18:07 - 000004296 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-05-17 20:23 - 2013-08-22 12:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-05-15 01:38 - 2015-01-12 20:05 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-05-15 01:38 - 2013-06-18 07:18 - 000015942 _____ C:\WINDOWS\system32\results.xml
2020-05-14 22:47 - 2016-11-11 18:11 - 000000252 _____ C:\Users\Gastón.idea-PC\AppData\LocalLow\rbxcsettings.rbx
2020-05-14 21:34 - 2016-04-10 02:56 - 000000000 ____D C:\ProgramData\Package Cache
2020-05-14 19:55 - 2015-01-12 19:19 - 000000000 ____D C:\Program Files (x86)\Intel
2020-05-14 19:48 - 2014-09-23 01:58 - 000000000 ____D C:\ProgramData\IObit
2020-05-14 19:47 - 2020-04-14 02:24 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-14 19:47 - 2015-01-12 18:04 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\IObit
2020-05-14 19:47 - 2015-01-12 16:18 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS

==================== Archivos en la raíz de algunos directorios ========

2018-03-10 18:49 - 2018-03-10 18:49 - 000000000 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\fv3_input
2019-11-09 18:22 - 2019-11-09 18:46 - 000000141 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\jjv5conf.json
2018-09-16 18:39 - 2020-06-08 06:14 - 000000132 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2017-12-26 20:45 - 2018-01-04 05:00 - 000000013 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\rbx_hook
2015-10-02 18:31 - 2015-10-02 18:31 - 000001167 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\trace_FilterInstaller.1.txt
2015-10-02 18:43 - 2015-10-02 18:43 - 000000905 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\trace_FilterInstaller.txt
2015-10-02 18:31 - 2015-10-02 18:43 - 000000000 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2017-12-26 20:45 - 2017-12-31 16:10 - 000000024 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\version
2015-11-22 12:28 - 2015-11-22 12:28 - 000000000 _____ () C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\F999.tmp
2019-04-18 20:51 - 2019-04-18 20:51 - 000001111 _____ () C:\Users\Gastón.idea-PC\AppData\Local\gamma_ramp.reg
2019-07-24 22:07 - 2019-07-25 18:53 - 001313336 _____ (Roblox Corporation) C:\Users\Gastón.idea-PC\AppData\Local\Installer.exe
2017-09-09 21:42 - 2020-01-27 02:27 - 000007594 _____ () C:\Users\Gastón.idea-PC\AppData\Local\Resmon.ResmonCfg
2015-01-16 03:29 - 2015-01-16 03:29 - 000000003 _____ () C:\Users\Gastón.idea-PC\AppData\Local\updater.log
2015-04-24 22:56 - 2017-05-06 18:10 - 000000425 _____ () C:\Users\Gastón.idea-PC\AppData\Local\UserProducts.xml
2015-05-22 15:47 - 2015-05-22 15:47 - 000000000 _____ () C:\Users\Gastón.idea-PC\AppData\Local\{A508A5A3-761F-428E-8BB0-9DAE1C482C92}
2017-01-20 20:10 - 2017-01-20 20:10 - 000000000 _____ () C:\Users\Gastón.idea-PC\AppData\Local\{EC9B42B7-A186-4455-AE3A-F9BCE67525D6}

==================== FCheck ================================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

FCheck: C:\WINDOWS\SysWOW64\ssprs.dll [2017-09-15] <==== ATENCIÓN (cero bytes Archivo/Carpeta)

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-06-12 02:33
==================== Final de FRST.txt ========================

Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 06-06-2020
Ejecutado por Gastón (13-06-2020 19:33:37)
Ejecutado desde C:\Users\Gastón.idea-PC\Desktop
Windows 8.1 Single Language (Update) (X64) (2015-01-12 23:05:08)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-4206844412-3915076-1266158226-500 - Administrator - Disabled)
Gastón (S-1-5-21-4206844412-3915076-1266158226-1001 - Administrator - Enabled) => C:\Users\Gastón.idea-PC
HomeGroupUser$ (S-1-5-21-4206844412-3915076-1266158226-1006 - Limited - Enabled)
Invitado (S-1-5-21-4206844412-3915076-1266158226-501 - Limited - Disabled) => C:\Users\Invitado
lnvitado (S-1-5-21-4206844412-3915076-1266158226-1007 - Administrator - Enabled) => C:\Users\lnvitado

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Security Cloud (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Security Cloud (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 28.0.0.127 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.344 - Adobe)
Adobe Flash Player 9 ActiveX (HKLM-x32\...\{8E9DB7EF-5DD3-499E-BA2A-A1F3153A4DF8}) (Version: 9.0.115.0 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.17) - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Analizador y SDK de MSXML 4.0 SP2 (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
AutoCAD 2007 - Español (HKLM-x32\...\{5783F2D7-5001-040A-0002-0060B0CE6BBA}) (Version: 17.0.54.110 - Autodesk)
Autodesk DWF Viewer (HKLM-x32\...\Autodesk DWF Viewer) (Version: 6.5 - Autodesk, Inc.)
Bentley IEG License Service (HKLM-x32\...\{D56865D0-28E9-4972-990E-01B1074FE4FE}) (Version: 2.0.11.0 - Bentley Systems Inc.)
Camtasia 9 (HKLM\...\{B8A4CB7E-7F5B-484F-A127-E4431000EDCE}) (Version: 9.0.4.1948 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{5957dd25-bb4e-4234-9dc0-b3e10a70f636}) (Version: 9.0.4.1948 - TechSmith Corporation)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 80.0.3987.87 - Comodo)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diagnóstico de impresoras Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - Samsung Electronics Co., Ltd.)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Flux) (Version:  - )
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version:  - Richard)
Guía del usuario (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) Hidden
Hardwipe 5.2.1 (HKLM\...\{0F322F97-B3FB-4423-B23E-4E486693CD16}) (Version: 5.2.1 - Big Angry Dog)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Graphics Driver Software (HKLM-x32\...\{11fd8837-78a3-461c-810a-8857f36bfa18}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{1c5c7b65-90a8-44b8-b1f6-0f6bae9f3eb5}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5129 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Iridium Browser (HKLM\...\{5ABE3355-9D56-41DC-BD0A-F160B823FC57}) (Version: 54.0.0 - The Iridium Authors)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kaspersky Security Cloud (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10242 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo Service Bridge (HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\cbe8636f7dd0cf1d) (Version: 1.4.0.0 - Lenovo)
Lenovo_Wireless_Driver (HKLM-x32\...\{FF1194C3-E958-442E-A074-D532608A9370}) (Version: 10.00.75 - Lenovo)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Lock My PC Free Edition 4.9.5 (HKLM\...\Lock My PC Free Edition_is1) (Version: 4.9.5 - )
Macromedia Flash Player 8 (HKLM-x32\...\ShockwaveFlash) (Version: 8 - Macromedia)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219.473 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219.473 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.12.25810 (HKLM\...\{2CD849A7-86A1-34A6-B8F9-D72F5B21A9AE}) (Version: 14.12.25810 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.12.25810 (HKLM\...\{C99E2ADC-0347-336E-A603-F1992B09D582}) (Version: 14.12.25810 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nitro Pro 8 (HKLM\...\{34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}) (Version: 8.0.10.7 - Nitro)
Oracle VM VirtualBox 5.0.12 (HKLM\...\{6F93731D-89E1-4A8F-BDA9-D104860DDB02}) (Version: 5.0.12 - Oracle Corporation)
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Paquete de controladores de Windows - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Paquete de controladores de Windows - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Paquete de controladores de Windows - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Paquete de controladores de Windows - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Paquete de controladores Eco (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28/05/2015) - Samsung Electronics Co., Ltd.)
Paquete de controladores estilizados (HKLM-x32\...\Samsung Stylish UI Pack) (Version: 1.01.74.00 (09/02/2015) - Samsung Electronics Co., Ltd.)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
'PTC Places' Namespace Shell Extension (HKLM-x32\...\{B7715210-136C-4832-8A60-33BFF6CC0EF1}) (Version: 1.1.13 - PTC)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
RAM Advanse 9.5 (HKLM-x32\...\{EB06BB46-ED24-4661-8996-A447F1EBC2E7}) (Version: 9.5.0 - Bentley Systems Inc.)
RAM License Support (HKLM-x32\...\{AD6331AF-466F-4D25-B467-EEB2AAF2032C}) (Version: 2.0.2.0 - Bentley Systems, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6675 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Roblox Player for Gastón (HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\roblox-player) (Version:  - Roblox Corporation)
Roblox Studio for Gastón (HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\roblox-studio) (Version:  - Roblox Corporation)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.11 - Samsung Electronics Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
ThinkPad UltraNav Driver (HKLM\...\Elantech) (Version: 11.4.10.2 - ELAN Microelectronic Corp.)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.)
Unity Web Player (HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
Ver el Manual de Usuario (HKLM-x32\...\View User Guide) (Version: 4.0.0.9 - )
Windchill ProductPoint Client Manager (HKLM-x32\...\{129024FF-A6C9-4696-91BC-570C6C05193A}) (Version: 1.1.187 - PTC)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wise Memory Optimizer 3.6.5 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.6.5 - WiseCleaner.com, Inc.)
ZoneAlarm Free Firewall (HKLM-x32\...\ZoneAlarm Free Firewall) (Version: 14.0.508.000 - Check Point)

Packages:
=========
AccuWeather for Windows 8 -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_4.1.0.31_x64__8zz2pj9h1h1d8 [2016-08-03] (AccuWeather)
Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.2.26.0_x86__k1h2ywk1493x8 [2016-05-04] (LENOVO INC.)
eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2015-01-13] (eBay, Inc)
Evernote Touch -> C:\Program Files\WindowsApps\Evernote.Evernote_3.3.0.102_x86__q4d96b2w5wcc2 [2016-04-10] (Evernote)
Juegos -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-09-24] (Microsoft Corporation) [MS Ad]
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-20] (AMZN Mobile LLC)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-22] (Lenovo, INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2014-06-12] (FilmOn TV Inc.)
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-23] (Microsoft Corporation) [MS Ad]
MSN Finanzas -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
MSN Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-28] (Microsoft Corporation) [MS Ad]
MSN Recetas -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Salud -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
Música -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-14] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-06-12] (CYBERLINK COM CORPORATION)
rara music -> C:\Program Files\WindowsApps\rara.com.rara.com_1.0.25.23_neutral__2tghmx54nqzjm [2014-06-12] (RARA MEDIA GROUP LIMITED)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-20] (Skype) [MS Ad]
Vídeo -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-06] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-01-13] (Zinio LLC)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4206844412-3915076-1266158226-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32-x32: [Identificador de icono superpuesto para firmas digitales de AutoCAD] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\SysWOW64\AcSignIcon.dll [2006-03-05] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2013-01-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado]
ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk shared\dwf common\DWFShellExtension.dll [2005-11-15] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Ningún archivo
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\8.0\NPShellExtension64.dll [2012-12-13] (Nitro PDF Software -> Nitro PDF)
ContextMenuHandlers1: [SugarSync] -> [CC]{305BC11B-5175-492B-B569-866547FCDA40} =>  -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [BigAngryDog_HWipe] -> {B0FFE529-A5D3-4ECE-91C0-9E3585C373D8} => C:\Program Files\Hardwipe\hw-bin\hwshell.dll [2017-04-03] (Big Angry Dog Ltd -> Big Angry Dog)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Ningún archivo
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers3: [BigAngryDog_HWipe] -> {8154B7C1-BB68-457C-931A-5BFABBA86CD9} => C:\Program Files\Hardwipe\hw-bin\hwshell.dll [2017-04-03] (Big Angry Dog Ltd -> Big Angry Dog)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2013-01-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> Ningún archivo
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2012-05-18] () [Archivo no firmado]
HKLM\...\Drivers32-x32: [msacm.clmp3enc] => C:\PROGRA~2\Lenovo\Power2Go\CLMP3Enc.ACM

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\bea1cfeb4774fda6\Iridium.lnk -> C:\Program Files\Iridium\iridium.exe (The browser authors) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9ae1f145baae8fe4\Comodo Dragon.lnk -> C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Comodo) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Gastón.idea-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\200ce23fec0ce6d1\Iridium.lnk -> C:\Program Files\Iridium\iridium.exe (The browser authors) -> --profile-directory=Default

==================== Módulos cargados (Lista blanca) =============

2014-09-08 13:38 - 2014-09-08 13:38 - 000051200 _____ () [Archivo no firmado] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2018-04-11 23:35 - 2016-07-26 03:20 - 002847744 ____N () [Archivo no firmado] C:\WINDOWS\system32\DlgSearchEngine.dll
2013-01-24 19:12 - 2013-01-24 19:12 - 000107648 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll
2013-01-24 19:12 - 2013-01-24 19:12 - 000033408 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\CommApi.dll
2013-01-24 19:12 - 2013-01-24 19:12 - 000203392 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\FolderViewImpl.dll
2013-01-24 19:12 - 2013-01-24 19:12 - 000034432 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\ipc.dll
2013-01-24 19:12 - 2013-01-24 19:12 - 001067648 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll
2013-01-24 19:13 - 2013-01-24 19:13 - 000290944 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll
2013-01-24 19:13 - 2013-01-24 19:13 - 000027264 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\TCPConnection.dll
2013-01-24 19:13 - 2013-01-24 19:13 - 000113280 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Archivo no firmado] C:\Program Files (x86)\Bluetooth Suite\utils.dll
2016-04-04 07:03 - 2016-04-04 07:03 - 000123904 _____ (Samsung Electronics Co., Ltd.) [Archivo no firmado] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [119]
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LmpcService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LmpcService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)

HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Classes\.scr: AutoCADScriptFile => "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Hay 7863 más sitios.

IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\1-2005-search.com -> www.1-2005-search.com

Hay 12653 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2013-08-22 10:25 - 2020-04-14 05:09 - 008839199 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1	cpm.paneladmin.pro
127.0.0.1	publisher.hmdiadmingate.xyz
127.0.0.1	hmdicrewtracksystem.xyz
127.0.0.1	mydownloaddomain.com
127.0.0.1	linkmate.space
127.0.0.1	space1.adminpressure.space
127.0.0.1	trackpressure.website
127.0.0.1	doctorlink.space
127.0.0.1	plugpackdownload.net
127.0.0.1	texttotalk.org
127.0.0.1	gambling577.xyz
127.0.0.1	htagdownload.space
127.0.0.1	mybcnmonetize.com
127.0.0.1	360devtraking.website
127.0.0.1	dscdn.pw
127.0.0.1	bcnmonetize.go2affise.com
127.0.0.1	beautifllink.xyz
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com

Hay 15476 más lineas.


==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Windows Live\Shared;C:\Python27;C:\Python27\Scripts;C:\adb
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Ningún archivo)
Firewall de Windows está habilitado.

Network Binding:
=============
Ethernet: SoftEther Lightweight Network Protocol -> selow (enabled) 
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_vboxnetlwf (enabled) 
Conexión de red Bluetooth: SoftEther Lightweight Network Protocol -> selow (enabled) 
Wi-Fi: SoftEther Lightweight Network Protocol -> selow (enabled) 
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_vboxnetlwf (enabled) 
VPN - VPN Client: SoftEther Lightweight Network Protocol -> selow (enabled) 
VPN - VPN Client: VirtualBox NDIS6 Bridged Networking Driver -> oracle_vboxnetlwf (enabled) 
VirtualBox Host-Only Network: SoftEther Lightweight Network Protocol -> selow (enabled) 
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_vboxnetlwf (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: Autodesk Licensing Service => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: CxAudMsg => 2
MSCONFIG\Services: DragonUpdater => 2
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: ICCS => 3
MSCONFIG\Services: igfxCUIService1.0.0.0 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: NitroDriverReadSpool8 => 2
MSCONFIG\Services: nlsX86cc => 2
MSCONFIG\Services: SamsungUPDUtilSvc => 2
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: WindscribeService => 2
MSCONFIG\Services: wuauserv => 3
MSCONFIG\Services: ZAtheros Bt and Wlan Coex Agent => 2
HKLM\...\StartupApproved\StartupFolder: => "Acelerador de inicio de AutoCAD.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
HKLM\...\StartupApproved\Run: => "CDAServer"
HKLM\...\StartupApproved\Run32: => "Intel AppUp(SM) center"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "Lightshot"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\StartupApproved\Run: => "TunnelBear"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\StartupApproved\Run: => "STUISpeedLauncher"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\StartupApproved\Run: => "OneDrive"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [TCP Query User{5BCD0F92-F37C-4DD0-B250-7CF296232E5A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{5C515D38-6806-43FE-8304-C87C9B53DB2B}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{9368D4B9-76F8-474D-B645-3175DE463F29}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{5B6A7CA3-1D3F-4DF8-87E2-C87D506148F4}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{BD62156E-2AB1-4634-B690-D96A8A871B94}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

28-05-2020 19:11:18 Instalado Lenovo_Wireless_Driver
02-06-2020 01:26:37 Eliminado Lenovo_Wireless_Driver
05-06-2020 20:43:44 Removed Adobe Reader XI (11.0.17) - Español.
08-06-2020 01:16:12 Instalado Lenovo_Wireless_Driver
08-06-2020 03:11:02 Operación de restauración
11-06-2020 23:27:25 AdwCleaner_BeforeCleaning_11/06/2020_23:27:20
12-06-2020 00:15:56 JRT Pre-Junkware Removal

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: UMDF HID minidriver Device
Description: UMDF HID minidriver Device
Class Guid: {177b1d2a-679c-4093-98bf-fd6999695d3b}
Manufacturer: Lenovo
Service: mshidumdf
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: UMDF HID minidriver Device
Description: UMDF HID minidriver Device
Class Guid: {177b1d2a-679c-4093-98bf-fd6999695d3b}
Manufacturer: Lenovo
Service: mshidumdf
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: UMDF HID minidriver Device
Description: UMDF HID minidriver Device
Class Guid: {177b1d2a-679c-4093-98bf-fd6999695d3b}
Manufacturer: Lenovo
Service: mshidumdf
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/11/2020 09:31:57 AM) (Source: Google Update) (EventID: 1) (User: NT AUTHORITY)
Description: Event-ID 1

Error: (06/10/2020 11:16:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: IDEAPC)
Description: No se pudo activar la aplicación microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 debido al error: -2147024865. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

Error: (06/08/2020 02:29:11 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: IDEAPC)
Description: No se pudo activar la aplicación microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 debido al error: -2144927141. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

Error: (06/08/2020 02:06:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: IDEAPC)
Description: No se pudo activar la aplicación microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 debido al error: -2144927141. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

Error: (06/05/2020 09:38:25 PM) (Source: MsiInstaller) (EventID: 11316) (User: IDEAPC)
Description: Producto: Adobe Reader XI (11.0.17) - Español -- Error 1316. La cuenta especificada ya existe.

Error: (06/05/2020 09:37:25 PM) (Source: MsiInstaller) (EventID: 1024) (User: IDEAPC)
Description: Producto: Adobe Acrobat Reader DC - Español - la actualización "Adobe Acrobat Reader DC
 (20.009.20063)" no se pudo instalar. Código de error 1603. Windows Installer no puede crear registros para ayudar a solucionar problemas de instalación de paquetes de software. Use el vínculo siguiente para obtener instrucciones sobre la activación de la compatibilidad de registro: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/05/2020 09:37:22 PM) (Source: MsiInstaller) (EventID: 11316) (User: IDEAPC)
Description: Producto: Adobe Reader XI (11.0.17) - Español -- Error 1316. La cuenta especificada ya existe.

Error: (06/05/2020 09:29:33 PM) (Source: MsiInstaller) (EventID: 11316) (User: IDEAPC)
Description: Producto: Adobe Reader XI (11.0.17) - Español -- Error 1316. La cuenta especificada ya existe.


Errores del sistema:
=============
Error: (06/13/2020 07:32:05 PM) (Source: DCOM) (EventID: 10010) (User: IDEAPC)
Description: El servidor {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/13/2020 07:04:02 PM) (Source: DCOM) (EventID: 10016) (User: IDEAPC)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 y APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 al usuario IDEAPC\Gastón con SID (S-1-5-21-4206844412-3915076-1266158226-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (06/13/2020 06:52:58 PM) (Source: DCOM) (EventID: 10016) (User: IDEAPC)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 y APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 al usuario IDEAPC\Gastón con SID (S-1-5-21-4206844412-3915076-1266158226-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (06/13/2020 06:52:58 PM) (Source: DCOM) (EventID: 10016) (User: IDEAPC)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 y APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 al usuario IDEAPC\Gastón con SID (S-1-5-21-4206844412-3915076-1266158226-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (06/13/2020 04:15:29 AM) (Source: DCOM) (EventID: 10010) (User: IDEAPC)
Description: El servidor {1B1F472E-3221-4826-97DB-2C2324D389AE} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/13/2020 04:14:59 AM) (Source: DCOM) (EventID: 10010) (User: IDEAPC)
Description: El servidor {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/12/2020 09:42:45 PM) (Source: DCOM) (EventID: 10016) (User: IDEAPC)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 y APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 al usuario IDEAPC\Gastón con SID (S-1-5-21-4206844412-3915076-1266158226-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (06/12/2020 09:05:24 PM) (Source: DCOM) (EventID: 10016) (User: IDEAPC)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 y APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 al usuario IDEAPC\Gastón con SID (S-1-5-21-4206844412-3915076-1266158226-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


Windows Defender:
===================================
Date: 2020-04-12 19:33:22.876
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen: {2C767C84-709A-478B-A476-97F9C693192F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-11 16:00:41.533
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen: {67D8BD8A-1D0A-42D2-816E-0C51B237EB20}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-13 21:52:26.118
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.313.856.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16900.4
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 

Date: 2020-04-05 23:47:00.261
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.313.211.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16900.4
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 

Date: 2020-03-27 21:34:28.884
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.311.1622.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16800.2
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 

Date: 2020-03-20 19:54:59.088
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.311.1057.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16800.2
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 

Date: 2020-03-12 21:00:25.129
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.311.611.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16800.2
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él. 

CodeIntegrity:
===================================

Date: 2020-04-12 19:35:10.506
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-05 19:37:23.783
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-04 19:55:42.033
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-03 22:21:14.859
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-01 05:01:15.161
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-03-29 06:14:57.224
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-03-27 19:04:31.839
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-03-24 20:46:09.796
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Información de la memoria =========================== 

BIOS: LENOVO 5ECN95WW(V9.00) 12/19/2012
Placa base: LENOVO INVALID
Procesador: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Porcentaje de memoria en uso: 30%
RAM física total: 3961.77 MB
RAM física disponible: 2749.77 MB
Virtual total: 7477.77 MB
Virtual disponible: 6004.62 MB

==================== Unidades ================================

Drive c: (Windows8_OS) (Fixed) (Total:650.86 GB) (Free:236.29 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23 GB) NTFS

\\?\Volume{7bd11e14-143d-476c-8bbf-561493cebe3c}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.65 GB) NTFS
\\?\Volume{eba66397-d88a-473c-b213-8e2e62d3520b}\ () (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS
\\?\Volume{efd4189c-d2ed-48d6-b668-a86d2592e284}\ (PBR_DRV) (Fixed) (Total:20 GB) (Free:10.95 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 3D63DBBB)

Partition: GPT.

==================== Final de Addition.txt =======================

Bien… y ahora sigue estos pasos, MUY Importante Realiza una copia de seguridad del registro :

• Para hacerlo descarga DelFix.exe(en tu escritorio).

• Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

• Atención, ahora marca/selecciona únicamente la casilla Create registry backup, las demás casillas NO.

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.

• Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo
ContextMenuHandlers1: [SugarSync] -> [CC]{305BC11B-5175-492B-B569-866547FCDA40} => -> Ningún archivo
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [119]
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Classes\.scr: AutoCADScriptFile => "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-03] (Google LLC -> Google LLC)
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {0E5A215D-394C-487D-9DEF-67CCB2FE4D73} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {10CC4F55-D1B7-4C9A-89DD-E34CF3CA3000} - System32\Tasks\Lenovo\sysrun-30870 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-30870.cmd
Task: {2BC6B34D-A27F-4317-8554-E01672B1DA50} - System32\Tasks\Lenovo\sysrun-24186 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24186.cmd
Task: {4A9FED41-9272-4863-B6A2-7E7AC04BFC8A} - System32\Tasks\Lenovo\Lenovo-20312 => C:\ProgramData\Lenovo-20312.vbs [198 2013-06-18] () [Archivo no firmado] <==== ATENCIÓN
Task: {4E5C2BC4-C1D8-4D8B-B6D7-F86762E51D9A} - System32\Tasks\Lenovo\sysrun-10077 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-10077.cmd
Task: {51A7D63A-A004-4F5F-AAC1-AA9ED9B719E6} - System32\Tasks\{B04F7875-1BF7-4240-B136-5F0342624E71} => C:\WINDOWS\system32\pcalua.exe -a E:\install.exe -d E:\
Task: {63D5501F-90AE-4754-8C22-F2B5F719FE7F} - System32\Tasks\Lenovo\sysrun-31835 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-31835.cmd
Task: {6F557955-D258-44E5-B035-4AC9B557ACDB} - System32\Tasks\Lenovo\sysrun-17735 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-17735.cmd
Task: {70A64252-49F4-4C5B-8388-05E05CFE1C85} - System32\Tasks\Lenovo\sysrun-24805 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24805.cmd
Task: {8D22373D-11F7-4401-A130-44096BD7B8DF} - System32\Tasks\Lenovo\sysrun-16651 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-16651.cmd
Task: {9E00F9CB-9E5A-4ADD-A507-C78CF1A1B66F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A5ED53E9-8CE4-4411-9259-27059FFC413B} - System32\Tasks\Lenovo\sysrun-3547 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-3547.cmd
Task: {EE92EC1A-14F2-4F45-A26E-E05259E5A0CC} - System32\Tasks\Lenovo\sysrun-27641 => C:\Users\GASTN~1\AppData\Local\Temp\sysrun-27641.cmd
Task: {F168622D-FF99-4557-81DB-DF3A92665D2E} - System32\Tasks\Lenovo\sysrun-2223 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-2223.cmd
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Ningún archivo]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
U3 aswbdisk; no ImagePath
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
S3 BEDaisy; \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [X]
U4 CmdAgent; no ImagePath
S4 nvrtxvad_WaveExtensible; \SystemRoot\system32\drivers\nvrtxvad64v.sys [X]
S1 pgbwkmks; \??\C:\WINDOWS\system32\drivers\pgbwkmks.sys [X]
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\WINDOWS\System32\drivers\zamguard64.sys [X]
2020-05-15 01:38 - 2015-01-12 20:05 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-05-14 19:48 - 2014-09-23 01:58 - 000000000 ____D C:\ProgramData\IObit
2020-05-14 19:47 - 2020-04-14 02:24 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-14 19:47 - 2015-01-12 18:04 - 000000000 ____D C:\Users\Gastón.idea-PC\AppData\Roaming\IObit
FCheck: C:\WINDOWS\SysWOW64\ssprs.dll [2017-09-15] <==== ATENCIÓN (cero bytes Archivo/Carpeta)
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.

Nota Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8 ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

• Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

• Presionar el botón FIX/Corregir y aguardar a que termine.

• La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

Hola!

Fixlog

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 06-06-2020
Ejecutado por Gastón (13-06-2020 22:03:29) Run:1
Ejecutado desde C:\Users\Gastón.idea-PC\Desktop
Perfiles cargados: Gastón
Modo de Inicio: Safe Mode (with Networking)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ning�n archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ning�n archivo
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ning�n archivo
ContextMenuHandlers1: [SugarSync] -> [CC]{305BC11B-5175-492B-B569-866547FCDA40} => -> Ning�n archivo
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ning�n archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ning�n archivo
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ning�n archivo
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [119]
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Classes\.scr: AutoCADScriptFile => "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-03] (Google LLC -> Google LLC)
GroupPolicy: Restricci�n ? <==== ATENCI�N
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
CHR HKLM\SOFTWARE\Policies\Google: Restricci�n <==== ATENCI�N
Task: {0E5A215D-394C-487D-9DEF-67CCB2FE4D73} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {10CC4F55-D1B7-4C9A-89DD-E34CF3CA3000} - System32\Tasks\Lenovo\sysrun-30870 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-30870.cmd
Task: {2BC6B34D-A27F-4317-8554-E01672B1DA50} - System32\Tasks\Lenovo\sysrun-24186 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24186.cmd
Task: {4A9FED41-9272-4863-B6A2-7E7AC04BFC8A} - System32\Tasks\Lenovo\Lenovo-20312 => C:\ProgramData\Lenovo-20312.vbs [198 2013-06-18] () [Archivo no firmado] <==== ATENCI�N
Task: {4E5C2BC4-C1D8-4D8B-B6D7-F86762E51D9A} - System32\Tasks\Lenovo\sysrun-10077 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-10077.cmd
Task: {51A7D63A-A004-4F5F-AAC1-AA9ED9B719E6} - System32\Tasks\{B04F7875-1BF7-4240-B136-5F0342624E71} => C:\WINDOWS\system32\pcalua.exe -a E:\install.exe -d E:\
Task: {63D5501F-90AE-4754-8C22-F2B5F719FE7F} - System32\Tasks\Lenovo\sysrun-31835 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-31835.cmd
Task: {6F557955-D258-44E5-B035-4AC9B557ACDB} - System32\Tasks\Lenovo\sysrun-17735 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-17735.cmd
Task: {70A64252-49F4-4C5B-8388-05E05CFE1C85} - System32\Tasks\Lenovo\sysrun-24805 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-24805.cmd
Task: {8D22373D-11F7-4401-A130-44096BD7B8DF} - System32\Tasks\Lenovo\sysrun-16651 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-16651.cmd
Task: {9E00F9CB-9E5A-4ADD-A507-C78CF1A1B66F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A5ED53E9-8CE4-4411-9259-27059FFC413B} - System32\Tasks\Lenovo\sysrun-3547 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-3547.cmd
Task: {EE92EC1A-14F2-4F45-A26E-E05259E5A0CC} - System32\Tasks\Lenovo\sysrun-27641 => C:\Users\GASTN~1\AppData\Local\Temp\sysrun-27641.cmd
Task: {F168622D-FF99-4557-81DB-DF3A92665D2E} - System32\Tasks\Lenovo\sysrun-2223 => C:\Users\GASTN~1.IDE\AppData\Local\Temp\sysrun-2223.cmd
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricci�n <==== ATENCI�N
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Ning�n archivo]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
U3 aswbdisk; no ImagePath
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
S3 BEDaisy; \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [X]
U4 CmdAgent; no ImagePath
S4 nvrtxvad_WaveExtensible; \SystemRoot\system32\drivers\nvrtxvad64v.sys [X]
S1 pgbwkmks; \??\C:\WINDOWS\system32\drivers\pgbwkmks.sys [X]
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\WINDOWS\System32\drivers\zamguard64.sys [X]
2020-05-15 01:38 - 2015-01-12 20:05 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-05-14 19:48 - 2014-09-23 01:58 - 000000000 ____D C:\ProgramData\IObit
2020-05-14 19:47 - 2020-04-14 02:24 - 000000000 ____D C:\Program Files (x86)\IObit
2020-05-14 19:47 - 2015-01-12 18:04 - 000000000 ____D C:\Users\Gast�n.idea-PC\AppData\Roaming\IObit
FCheck: C:\WINDOWS\SysWOW64\ssprs.dll [2017-09-15] <==== ATENCI�N (cero bytes Archivo/Carpeta)
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => eliminado correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SugarSync => eliminado correctamente
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Glary Utilities => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities => eliminado correctamente
C:\Windows => ":nlsPreferences" ADS eliminado correctamente
C:\Windows => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS eliminado correctamente
C:\ProgramData\Temp => ":5C321E34" ADS eliminado correctamente
C:\Users\Public\AppData => ":CSM" ADS eliminado correctamente
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Classes\AutoCADScriptFile => eliminado correctamente
HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Classes\.scr => eliminado correctamente
"HKU\S-1-5-21-4206844412-3915076-1266158226-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => eliminado correctamente
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
C:\WINDOWS\system32\GroupPolicy\Machine => movido correctamente
C:\WINDOWS\system32\GroupPolicy\GPT.ini => movido correctamente
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => movido correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{0E5A215D-394C-487D-9DEF-67CCB2FE4D73}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E5A215D-394C-487D-9DEF-67CCB2FE4D73}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Avast Software\Overseer => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10CC4F55-D1B7-4C9A-89DD-E34CF3CA3000}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10CC4F55-D1B7-4C9A-89DD-E34CF3CA3000}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-30870 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-30870" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BC6B34D-A27F-4317-8554-E01672B1DA50}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BC6B34D-A27F-4317-8554-E01672B1DA50}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-24186 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-24186" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4A9FED41-9272-4863-B6A2-7E7AC04BFC8A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A9FED41-9272-4863-B6A2-7E7AC04BFC8A}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\Lenovo-20312 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo-20312" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E5C2BC4-C1D8-4D8B-B6D7-F86762E51D9A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E5C2BC4-C1D8-4D8B-B6D7-F86762E51D9A}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-10077 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-10077" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{51A7D63A-A004-4F5F-AAC1-AA9ED9B719E6}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51A7D63A-A004-4F5F-AAC1-AA9ED9B719E6}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\{B04F7875-1BF7-4240-B136-5F0342624E71} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B04F7875-1BF7-4240-B136-5F0342624E71}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{63D5501F-90AE-4754-8C22-F2B5F719FE7F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{63D5501F-90AE-4754-8C22-F2B5F719FE7F}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-31835 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-31835" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F557955-D258-44E5-B035-4AC9B557ACDB}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F557955-D258-44E5-B035-4AC9B557ACDB}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-17735 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-17735" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70A64252-49F4-4C5B-8388-05E05CFE1C85}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70A64252-49F4-4C5B-8388-05E05CFE1C85}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-24805 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-24805" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8D22373D-11F7-4401-A130-44096BD7B8DF}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D22373D-11F7-4401-A130-44096BD7B8DF}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-16651 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-16651" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E00F9CB-9E5A-4ADD-A507-C78CF1A1B66F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E00F9CB-9E5A-4ADD-A507-C78CF1A1B66F}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Microsoft\Windows\PLA\LSC Memory => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\PLA\LSC Memory" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A5ED53E9-8CE4-4411-9259-27059FFC413B}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5ED53E9-8CE4-4411-9259-27059FFC413B}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-3547 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-3547" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE92EC1A-14F2-4F45-A26E-E05259E5A0CC}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE92EC1A-14F2-4F45-A26E-E05259E5A0CC}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-27641 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-27641" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F168622D-FF99-4557-81DB-DF3A92665D2E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F168622D-FF99-4557-81DB-DF3A92665D2E}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\sysrun-2223 => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\sysrun-2223" => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-06] (Oracle America, Inc." => no encontrado
C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll => movido correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0 => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\caljgklbbfbcjjanaijlacgncafpegll => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\elhpdacimkjpccooodognopfhbdgnpbk => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\caljgklbbfbcjjanaijlacgncafpegll => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\elhpdacimkjpccooodognopfhbdgnpbk => eliminado correctamente
HKLM\System\CurrentControlSet\Services\aswbdisk => eliminado correctamente
aswbdisk => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\BCM42RLY => eliminado correctamente
BCM42RLY => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\BEDaisy => eliminado correctamente
BEDaisy => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\CmdAgent => eliminado correctamente
CmdAgent => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\nvrtxvad_WaveExtensible => eliminado correctamente
nvrtxvad_WaveExtensible => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\pgbwkmks => eliminado correctamente
pgbwkmks => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ZAM => eliminado correctamente
ZAM => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\ZAM_Guard => eliminado correctamente
ZAM_Guard => servicio eliminado correctamente
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => movido correctamente
C:\ProgramData\IObit => movido correctamente
C:\Program Files (x86)\IObit => movido correctamente
"C:\Users\Gast�n.idea-PC\AppData\Roaming\IObit" => no encontrado
C:\WINDOWS\SysWOW64\ssprs.dll => movido correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-4206844412-3915076-1266158226-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-4206844412-3915076-1266158226-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 13 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 12 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Wi-Fi mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en VPN - VPN Client mientras los medios
est‚n desconectados.

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.7.9600 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c

========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Interfaz se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Interfaz se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18122302 B
Java, Flash, Steam htmlcache => 16228062 B
Windows/system/drivers => 671792 B
Edge => 0 B
Chrome => 14983826 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 16289 B
LocalService => 16289 B
NetworkService => 4949753 B
Gastón.idea-PC => 314465189 B
lnvitado => 1136192445 B
Invitado => 1947275254 B

RecycleBin => 13222565 B
EmptyTemp: => 3.2 GB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 22:08:03 ====

Muchas gracias, el problema de “tu navegador está administrado” ya no aparece. Respecto al tema del wifi hasta el momento no sufrí problemas, pero me gustaría probar un rato más para asegurar

Hola.

Excelente.

Prueba durante otras 24 horas mas y mientras pruebas :

Y de momento , Por Favor, mientras estemos desinfectando/arreglando tu máquina :

Saludos.

Hola

Ya estuve probando y el problema del “navegador está administrado” no apareció de nuevo, así que ya está solucionado!

Respecto al wifi, sigue el mismo problema (el del item número uno). Los otros dos items no ocurrieron por el momento

Hola.

Bien… pues prueba con lo siguiente, utiliza de nuevo AdwCleaner y primero accedes a las opciones de “Configuración” y en ellas activas TODOS los valores(realiza scrooll) que existen poniéndolos activos(en color verde).

Después ejecutas desde la opción de “Panel de control” un nuevo Análisis y al terminarlo y aunque NO encuentre nada que eliminar Ejecuta la reparacion/opción básica de limpieza y un nuevo REINICIO del equipo.

Nos pones el nuevo informe que te generara, compruebas el funcionamiento y nos comentas.

Saludos.

Hola, te dejo el informe pero no se encontró nada

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build:    05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-17-2020
# Duration: 00:00:02
# OS:       Windows 8.1 Single Language
# Cleaned:  0
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset BITS
[+] Reset Windows Firewall
[+] Reset Hosts File
[+] Reset IPSec
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset TCP/IP
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2140 octets] - [26/07/2018 01:25:34]
AdwCleaner[C00].txt - [2068 octets] - [26/07/2018 01:26:47]
AdwCleaner[S01].txt - [6845 octets] - [01/08/2018 21:46:59]
AdwCleaner[C01].txt - [6270 octets] - [01/08/2018 21:51:02]
AdwCleaner[S02].txt - [1506 octets] - [12/09/2018 19:21:27]
AdwCleaner[S03].txt - [2434 octets] - [14/03/2019 00:36:45]
AdwCleaner[C03].txt - [2418 octets] - [14/03/2019 00:37:57]
AdwCleaner[S04].txt - [1689 octets] - [17/03/2019 19:05:21]
AdwCleaner[S05].txt - [1926 octets] - [08/04/2019 21:36:16]
AdwCleaner[C05].txt - [2054 octets] - [08/04/2019 21:37:09]
AdwCleaner[S06].txt - [1872 octets] - [30/04/2019 22:52:04]
AdwCleaner[S07].txt - [3044 octets] - [28/07/2019 04:44:19]
AdwCleaner[C07].txt - [3160 octets] - [28/07/2019 04:56:46]
AdwCleaner[S08].txt - [2131 octets] - [28/07/2019 05:08:08]
AdwCleaner_Debug.log - [5702 octets] - [17/11/2019 16:20:45]
AdwCleaner[S09].txt - [2254 octets] - [17/11/2019 16:24:43]
AdwCleaner[S10].txt - [3328 octets] - [24/01/2020 04:21:06]
AdwCleaner[C10].txt - [3618 octets] - [24/01/2020 04:31:14]
AdwCleaner[S11].txt - [2517 octets] - [12/02/2020 00:27:05]
AdwCleaner[C11].txt - [2707 octets] - [12/02/2020 00:27:21]
AdwCleaner[S12].txt - [2639 octets] - [12/02/2020 01:07:07]
AdwCleaner[S13].txt - [2700 octets] - [15/04/2020 01:23:36]
AdwCleaner[S14].txt - [3681 octets] - [11/06/2020 23:27:04]
AdwCleaner[C14].txt - [3960 octets] - [11/06/2020 23:28:11]
AdwCleaner[S15].txt - [2883 octets] - [17/06/2020 19:47:29]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C15].txt ##########

Actualizo: el problema sigue y me acaba de pasar lo del item 2 y 3. Me sale no conectado: no hay conexiones disponibles (previo a que se haya tildado y se reiniciara solo).(enviado por celular) Actualizo 2: desde administrador de dispositivos, adaptadores de red, desintalé el qualcom atheros y reinicié. Ya se arregló

Actualizo3: me volvió a salir no hay conexiones disponibles y desinstalando e instalando los adaptadores de red o ethernet no soluciona el problema. Hace 1 hora no ppedo solucionarlo y tener internet (enviado por celular)

En el administrador de tareas sale: KMS connection broker y google crash handler, no se si tendran algo que ver

Hola.

Bien… pues ahora vas a realizar los pasos que se indican aquí Manual de HitmanPro , y cuando termine nos pones el informe con los resultados.

Saludos.

Hola, no puedo ejecutar hitman porque no tengo conexion a internet, me sale “no hay conexion a internet, esperando la conexion a internet” y se cancela

Hola de nuevo

Ya me ha regresado el internet, estuve casi todo el día hasta que volvió

Respecto al análisis de HitmanPro, me sale “La licencia de prueba ha caducado” y no puedo realizar la limpieza correspondiente y obtener el informe con los resultados (me sale que debo activar licencia y comprar, nada de poner mail para tener 15 dias de prueba). De igual forma dejo la foto de las detecciones

Hitmanpro detecciones711×564 33.1 KB

Hola.

Bien… Hitmanpro NO te deja eliminar lo detectado porque YA anteriormente debiste usar la herramienta y el plazo de prueba te ha caducado.

Y ahora haces lo siguiente, descarga e instala este programa Manual de Revo Uninstaller

Y úsalo para desinstalar todos los programas que encuentres que se llamen o tengan en su nombre, cualquiera de estas denominaciones :

Cuando Revo te pida, que selecciones el método de desinstalación, seleccionas “Avanzado”.

Si durante el proceso te solicita “Reiniciar” NO lo hagas, dile que NO y deja que Revo siga trabajando.

Cuando termines todos los procesos de desinstalación ya REINICIAS tú el ordenador.

Compruebas y nos comentas y dinos que pudiste desinstalar de todos esos programas.

Saludos.

Hola, listo, ya fueron desinstalados el ZoneAlarm y el explorador de comodo

Me doy cuenta que cuando se me va, en el administrador de tareas sale runtime broker y varios “com surrogate”, y en conexiones disponibles salen redes wifi con excelente señal con nombres raros que al rato desaparecen y una que se queda llamada “dormitorio b” que tiene un escudo y signo de exclamación (sin contraseña. Si te conectas a esa red sale internet limitado). Aclaro que vivo en una casa y no hay edificios o departamentos cercanos

Hola.

Pues vas a realizar una comprobación siguiendo estos pasos Manual Dr Web Curelt! , cuando termines nos pones el informe y comentas como sigue el problema.

Saludos.