ZAPISANE error pantalla emergente

adm77 · 17 Agosto, 2019 20:52

ok ahí va, por lo q veo a simple vista el problema surgió desde el día 13/8/19, ya copio el informe solicitado, demoro varias horas al principio no podía pasar malwarebytes me decía conectar con el servidor y cuando pude al finalizar y cerrar pc me hizo una pantalla azul

Malwarebytes www.malwarebytes.com

-Detalles del registro- Fecha del análisis: 16/8/19 Hora del análisis: 15:18 Archivo de registro: 430cadaa-c052-11e9-803b-e0cb4ee62916.json

-Información del software- Versión: 3.8.3.2965 Versión de los componentes: 1.0.613 Versión del paquete de actualización: 1.0.12041 Licencia: Gratis

-Información del sistema- SO: Windows 7 Service Pack 1 CPU: x86 Sistema de archivos: NTFS Usuario: Diego-PC\Diego

-Resumen del análisis- Tipo de análisis: Análisis personalizado Análisis iniciado por:: Manual Resultado: Completado Objetos analizados: 302932 Amenazas detectadas: 0 Amenazas en cuarentena: 0 Tiempo transcurrido: 13 hr, 17 min, 8 seg

-Opciones de análisis- Memoria: Activado Inicio: Activado Sistema de archivos: Activado Archivo: Activado Rootkits: Activado Heurística: Activado PUP: Detectar PUM: Detectar

-Detalles del análisis- Proceso: 0 (No hay elementos maliciosos detectados)

Módulo: 0 (No hay elementos maliciosos detectados)

Clave del registro: 0 (No hay elementos maliciosos detectados)

Valor del registro: 0 (No hay elementos maliciosos detectados)

Datos del registro: 0 (No hay elementos maliciosos detectados)

Secuencia de datos: 0 (No hay elementos maliciosos detectados)

Carpeta: 0 (No hay elementos maliciosos detectados)

Archivo: 0 (No hay elementos maliciosos detectados)

Sector físico: 0 (No hay elementos maliciosos detectados)

WMI: 0 (No hay elementos maliciosos detectados)

(end)

adm77 · 17 Agosto, 2019 21:16

> Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-08-2019
> Ran by Diego (administrator) on DIEGO-PC (17-08-2019 17:59:45)
> Running from C:\Users\Diego\Escritorio
> Loaded Profiles: Diego (Available Profiles: Diego & I2 & Invitado)
> Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Language: Español (España, internacional)
> Internet Explorer Version 11 (Default browser: Opera)
> Boot Mode: Normal
> Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
> 
> ==================== Processes (Whitelisted) =================
> 
> (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
> 
> () [File not signed] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
> (Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
> (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe
> (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
> (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
> (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
> (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
> (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
> (IBM -> IBM Corp.) C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
> (IBM -> IBM Corp.) C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
> (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
> (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
> (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
> (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
> (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
> (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
> (Microsoft Corporation) [File not signed] C:\Windows\System32\dwm.exe
> (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Incorporation) C:\Windows\PixArt\PAC7302\Monitor.exe
> (Opera Software AS -> Opera Software) C:\Program Files\Opera\62.0.3331.116\opera.exe
> (Opera Software AS -> Opera Software) C:\Program Files\Opera\62.0.3331.116\opera.exe
> (Opera Software AS -> Opera Software) C:\Program Files\Opera\62.0.3331.116\opera.exe
> (Opera Software AS -> Opera Software) C:\Program Files\Opera\62.0.3331.116\opera_crashreporter.exe
> (Opera Software AS -> Opera Software) C:\Program Files\Opera\assistant\browser_assistant.exe
> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
> (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
> 
> ==================== Registry (Whitelisted) ===========================
> 
> (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
> 
> HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
> HKLM\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [2299928 2019-07-24] (Opera Software AS -> Opera Software)
> HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
> HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Incorporation)
> HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
> HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
> HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\Policies\Explorer: [NoResolveSearch] 1
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
> HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
> HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\system32\tsccvid.dll [602624 2014-11-11] (TechSmith Corporation) [File not signed]
> HKLM\...\Drivers32: [vidc.tsc2] => C:\Windows\system32\tsc2_codec32.dll [234496 2014-08-27] (TechSmith Corporation) [File not signed]
> HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-09] (Google LLC -> Google LLC)
> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-02-14]
> ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [File not signed]
> BootExecute: autocheck autochk *  
> FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
> 
> ==================== Scheduled Tasks (Whitelisted) =============
> 
> (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
> 
> Task: {0BB55942-5CCB-4C0D-B2FD-CC1EBEC485BB} - System32\Tasks\Opera scheduled Autoupdate 1514437664 => C:\Program Files\Opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software)
> Task: {16ABBBC0-2682-42AD-A7F7-408AC1DA4CA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-12-18] (Google Inc -> Google Inc.)
> Task: {283D13FA-CB7E-410B-8155-8A598711FB51} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
> Task: {4172B620-83CD-42C9-A4F3-6BC73BCBA7F3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-13] (Adobe Inc. -> Adobe)
> Task: {5488D5A4-02BA-42EE-B3B6-1AB16E07C69D} - System32\Tasks\AdobeGCInvoker-1.0-Diego-PC-Diego => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
> Task: {5573F24C-DF31-4633-A86F-909C3DBB7F90} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Diego\Escritorio\ESETOnlineScanner_ESL.exe [7986200 2019-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
> Task: {676713BD-75BC-4B2A-8157-9CA061DFC8C2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-12-18] (Google Inc -> Google Inc.)
> Task: {77B54354-417D-472F-B0A0-5C56799B015F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Diego\Escritorio\ESETOnlineScanner_ESL.exe [7986200 2019-08-02] (ESET, spol. s r.o. -> ESET spol. s r.o.)
> Task: {8D47F360-B2F3-4649-BE67-CF6EAF344326} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
> Task: {91403318-5A73-41A7-8218-DCEEAF4B280A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe [1452600 2019-08-13] (Adobe Inc. -> Adobe)
> Task: {A6394592-54CE-4E93-8D64-1A068F462632} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe
> Task: {AB96943D-F659-4FD5-91DF-A024D25F1ECD} - System32\Tasks\Opera scheduled assistant Autoupdate 1553607295 => C:\Program Files\Opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software)
> Task: {B200C582-8144-4854-BD8C-F17C8412818C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1695112 2019-08-09] (AVAST Software s.r.o. -> AVAST Software)
> Task: {C87533A4-2F95-4178-8443-306E0D212C1B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [1457208 2019-08-13] (Adobe Inc. -> Adobe)
> Task: {CF9AE76A-ED85-48BA-A484-52ED6A31640A} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
> Task: {D13D2D0F-DFB8-47CE-ADF1-6CFBBEA1502C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3230600 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> Task: {E1FE6947-4E0B-42F4-816C-DB99D857EBAC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
> Task: {E8BCA7A7-0714-4CE5-9D4B-7E95D3F28B16} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
> Task: {EE005747-52A6-430E-9B01-B87F2CF126FA} - System32\Tasks\AdobeGCInvoker-1.0-Diego-PC-I2 => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
> 
> (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
> 
> 
> ==================== Internet (Whitelisted) ====================
> 
> (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
> 
> Tcpip\Parameters: [DhcpNameServer] 200.49.130.47 200.42.4.199
> Tcpip\..\Interfaces\{A38C42F4-2C47-484E-976E-4962A945F520}: [DhcpNameServer] 200.49.130.47 200.42.4.199
> Tcpip\..\Interfaces\{AF6D671A-777B-4CBF-BE5B-5187FDE44BFE}: [DhcpNameServer] 200.49.130.47 200.42.4.210
> 
> Internet Explorer:
> ==================
> HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
> HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
> HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
> BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
> BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
> 
> FireFox:
> ========
> FF DefaultProfile: bu56p6dm.default-1477268946708-1552448337271
> FF ProfilePath: C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\bu56p6dm.default-1477268946708-1552448337271 [2019-08-17]
> FF Extension: (IBM Security Rapport) - C:\Users\Diego\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected] [2017-11-06]
> FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\bu56p6dm.default-1477268946708-1552448337271\Extensions\[email protected] [2019-07-31]
> FF Extension: (Avast Online Security) - C:\Users\Diego\AppData\Roaming\Mozilla\Firefox\Profiles\bu56p6dm.default-1477268946708-1552448337271\Extensions\[email protected] [2019-02-24]
> FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_238.dll [2019-08-13] (Adobe Inc. -> )
> FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [File not signed]
> FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
> FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
> FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
> FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
> FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
> FF Plugin HKU\S-1-5-21-4176836711-1023169650-3318900086-1000: @citrixonline.com/appdetectorplugin -> C:\Users\Diego\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2016-03-23] (Citrix Online -> Citrix Online)
> 
> Chrome: 
> =======
> CHR DefaultProfile: Default
> CHR Profile: C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default [2019-07-25]
> CHR Extension: (Presentaciones) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-18]
> CHR Extension: (Anti Miner - No 1 Coin Minerblock) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\abgnbkcdbiafipllamhhmikhgjolhdaf [2017-12-28]
> CHR Extension: (Documentos) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-18]
> CHR Extension: (Google Drive) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-18]
> CHR Extension: (IBM Security Rapport) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-07-25]
> CHR Extension: (YouTube) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-18]
> CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-06-08]
> CHR Extension: (Hojas de cálculo) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-18]
> CHR Extension: (Authy Chrome Extension) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhgenkpocbhhddlgkjnfghpjanffonno [2018-05-21]
> CHR Extension: (Authy) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaedmjdfmmahhbjefcbgaolhhanlaolb [2018-05-26]
> CHR Extension: (Documentos de Google sin conexión) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-12]
> CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
> CHR Extension: (Gmail) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-25]
> CHR Extension: (Chrome Media Router) - C:\Users\Diego\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-25]
> CHR HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
> 
> Opera: 
> =======
> OPR Session Restore: -> is enabled.
> OPR Extension: (Super Auto Refresh) - C:\Users\Diego\AppData\Roaming\Opera Software\Opera Stable\Extensions\ghjaeanhfafkigkehjgapnlobfhefkme [2018-02-06]
> OPR Extension: (Google Translate) - C:\Users\Diego\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2019-07-29]
> OPR Extension: (Mining Blocker) - C:\Users\Diego\AppData\Roaming\Opera Software\Opera Stable\Extensions\nbpfigdgbjgoejmnffbpgmbcnppjjokp [2018-09-21]
> OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Diego\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-08-12]
> 
> ==================== Services (Whitelisted) ====================
> 
> (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
> 
> R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-07-24] (Adobe Inc. -> Adobe Systems)
> R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
> R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
> R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5551168 2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
> R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365048 2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
> R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
> R2 RapportMgmtService; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2350064 2017-09-28] (IBM -> IBM Corp.)
> S3 Themes; C:\Windows\system32\themeservice.dll [37376 2009-07-13] (Microsoft Corporation) [File not signed]
> 
> ===================== Drivers (Whitelisted) ======================
> 
> (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
> 
> R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [34480 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174256 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225600 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171000 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56288 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [219912 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40688 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [139864 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [100984 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72792 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783016 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [404312 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167576 2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
> S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-03-02] (AVAST Software s.r.o. -> The OpenVPN Project)
> R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [313840 2019-08-17] (AVAST Software s.r.o. -> AVAST Software)
> R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2011-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
> R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx86.sys [44752 2016-04-03] (NCH Software -> )
> R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [25864 2019-06-08] (Glarysoft LTD -> Glarysoft Ltd)
> R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [173512 2019-07-19] (Malwarebytes Corporation -> Malwarebytes)
> R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [241760 2019-08-17] (Malwarebytes Corporation -> Malwarebytes)
> R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] (Microsoft Windows Hardware Compatibility Publisher -> )
> R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
> R1 RapportAegle; C:\Program Files\Trusteer\Rapport\bin\RapportAegle.sys [204632 2017-09-28] (IBM -> IBM Corp.)
> R1 RapportCerberus_1804077; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_1804077.sys [848024 2017-10-02] (IBM -> IBM Corp.)
> R1 RapportEI; C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [336504 2017-09-28] (IBM -> IBM Corp.)
> R0 RapportHades; C:\Windows\System32\Drivers\RapportHades.sys [103616 2017-09-28] (IBM -> IBM Corp.)
> S3 RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [265304 2017-09-28] (IBM -> IBM Corp.)
> R1 RapportPG; C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [415992 2017-09-28] (IBM -> IBM Corp.)
> S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [23040 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
> 
> ==================== NetSvcs (Whitelisted) ===================
> 
> (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
> 
> 
> ==================== One month (created) ========
> 
> (If an entry is included in the fixlist, the file/folder will be moved.)
> 
> 2019-08-17 17:59 - 2019-08-17 18:02 - 000022075 _____ C:\Users\Diego\Escritorio\FRST.txt
> 2019-08-17 17:59 - 2019-08-17 17:59 - 000000000 ____D C:\FRST
> 2019-08-17 17:58 - 2019-08-17 17:58 - 001448960 _____ (Farbar) C:\Users\Diego\Escritorio\FRST.exe
> 2019-08-17 17:55 - 2019-08-17 17:55 - 000312200 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
> 2019-08-17 17:55 - 2019-08-17 17:55 - 000176240 _____ (AVAST Software) C:\Windows\system32\Drivers\asw75e40d4d867e7971.tmp
> 2019-08-17 17:55 - 2019-08-17 17:55 - 000140376 _____ (AVAST Software) C:\Windows\system32\Drivers\asw81f4f9d949f25ba7.tmp
> 2019-08-17 17:41 - 2019-08-17 17:41 - 000241760 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
> 2019-08-17 06:06 - 2019-08-17 06:06 - 000367888 _____ C:\Windows\Minidump\081719-24429-01.dmp
> 2019-08-13 19:32 - 2019-08-13 19:32 - 000155951 _____ C:\Users\Diego\Escritorio\VISA AGOSTO.pdf
> 2019-08-13 19:30 - 2019-08-13 19:30 - 000155951 _____ C:\Users\Diego\Downloads\VISA AGOSTO.pdf
> 2019-08-13 19:28 - 2019-08-13 19:28 - 000000886 _____ C:\Users\Diego\Downloads\Movimientos visa.csv
> 2019-08-12 11:14 - 2019-08-12 11:14 - 000367888 _____ C:\Windows\Minidump\081219-15802-01.dmp
> 2019-08-11 16:02 - 2019-08-11 16:02 - 000081111 _____ C:\Users\I2\Documents\RENTAS Sun Aug 11 16_01_38 GMT-03_00 2019_comprobante.pdf
> 2019-08-11 12:47 - 2019-07-09 09:56 - 000027919 _____ C:\Users\I2\Documents\[email protected]
> 2019-08-11 12:41 - 2019-08-02 19:25 - 000084519 _____ C:\Users\I2\Documents\Comprobante de transferencia (1).pdf
> 2019-08-11 12:40 - 2019-07-12 11:41 - 000012178 _____ C:\Users\I2\Documents\Cedulon.pdf
> 2019-08-11 12:38 - 2019-08-11 12:38 - 000000000 ____D C:\Users\I2\Documents\ESTATUTO
> 2019-08-11 12:37 - 2019-07-17 01:48 - 000026085 _____ C:\Users\I2\Documents\Addition.txt
> 2019-08-10 16:31 - 2019-08-10 16:31 - 000082197 _____ C:\Users\Diego\Escritorio\9204-19831173 (2).pdf
> 2019-08-10 16:30 - 2019-08-10 16:30 - 000082197 _____ C:\Users\Diego\Downloads\9204-19831173 (2).pdf
> 2019-08-10 16:29 - 2019-08-10 16:29 - 000134264 _____ C:\Users\Diego\Escritorio\9204-19912538.pdf
> 2019-08-10 16:25 - 2019-08-10 16:25 - 000134264 _____ C:\Users\Diego\Downloads\9204-19912538.pdf
> 2019-08-03 22:58 - 2019-08-04 00:35 - 032494385 _____ C:\Users\I2\Downloads\How to get free WiFi Internet 100% -  Get free WiFi at home without a router 2019.mp4.crdownload
> 2019-08-03 15:55 - 2019-08-03 15:56 - 000000000 ____D C:\AdwCleaner
> 2019-08-03 15:23 - 2019-08-03 15:23 - 007623880 _____ (Malwarebytes) C:\Users\Diego\Escritorio\adwcleaner_7.4.exe
> 2019-08-03 13:00 - 2019-08-03 13:00 - 000367888 _____ C:\Windows\Minidump\080319-14648-01.dmp
> 2019-08-03 00:30 - 2019-08-03 00:30 - 000002824 _____ C:\Users\Diego\Escritorio\eset.txt
> 2019-08-02 20:28 - 2019-08-02 20:28 - 000000440 _____ C:\Users\Diego\Escritorio\ESET Online Scanner.lnk
> 2019-08-02 20:26 - 2019-08-02 20:26 - 007986200 _____ (ESET spol. s r.o.) C:\Users\Diego\Escritorio\ESETOnlineScanner_ESL.exe
> 2019-07-21 16:38 - 2019-07-21 16:39 - 000000000 ____D C:\Users\Diego\Escritorio\recupero moto
> 2019-07-18 00:57 - 2019-07-18 00:57 - 000000000 ____D C:\Program Files\Common Files\Oracle
> 2019-07-18 00:56 - 2019-07-18 00:56 - 000000000 ____D C:\Program Files\Common Files\Java
> 
> ==================== One month (modified) ========
> 
> (If an entry is included in the fixlist, the file/folder will be moved.)
> 
> 2019-08-17 17:59 - 2019-07-16 13:35 - 001385080 _____ C:\Windows\ntbtlog.txt
> 2019-08-17 17:59 - 2016-02-14 13:54 - 000000000 ___RD C:\Users\Diego\Escritorio
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000783016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000404312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000313840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000225600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000219912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000174256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000171000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000100984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000072792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000056288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000040688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
> 2019-08-17 17:55 - 2019-02-24 14:00 - 000034480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
> 2019-08-17 17:55 - 2009-07-14 01:34 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
> 2019-08-17 17:55 - 2009-07-14 01:34 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
> 2019-08-17 17:44 - 2019-03-01 01:04 - 000000000 ____D C:\Users\Diego\AppData\Local\AVAST Software
> 2019-08-17 17:39 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
> 2019-08-17 06:06 - 2017-03-20 11:08 - 000000000 ____D C:\Windows\Minidump
> 2019-08-16 15:18 - 2016-07-11 22:35 - 000000000 ____D C:\Users\Diego\AppData\Local\CrashDumps
> 2019-08-16 14:36 - 2017-09-01 20:24 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
> 2019-08-16 14:31 - 2017-05-12 23:19 - 000000000 ____D C:\Program Files\Opera
> 2019-08-13 14:51 - 2016-02-14 14:45 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
> 2019-08-13 14:51 - 2016-02-14 14:45 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
> 2019-08-13 14:51 - 2016-02-14 14:45 - 000000000 ____D C:\Windows\system32\Macromed
> 2019-08-13 00:48 - 2016-11-30 14:54 - 000000000 ____D C:\Users\Diego\AppData\LocalLow\Mozilla
> 2019-08-11 15:52 - 2019-02-16 11:05 - 000000000 ____D C:\Users\I2\AppData\LocalLow\Temp
> 2019-08-09 10:48 - 2017-12-18 21:30 - 000002028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
> 2019-08-05 22:17 - 2019-02-24 14:00 - 000312760 ____N (AVAST Software) C:\Windows\system32\Drivers\aswa0e177589195b962.tmp
> 2019-08-03 15:45 - 2017-12-08 00:31 - 000000000 ___RD C:\Users\Diego\Escritorio\pc
> 2019-08-03 11:14 - 2019-03-31 21:11 - 000000000 ____D C:\Users\I2\AppData\Local\CrashDumps
> 2019-07-31 11:41 - 2019-07-11 12:06 - 000139864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
> 2019-07-31 11:41 - 2019-02-24 14:00 - 000783024 ____N (AVAST Software) C:\Windows\system32\Drivers\aswcdaef559690c899f.tmp
> 2019-07-30 00:54 - 2019-01-29 08:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
> 2019-07-30 00:30 - 2017-12-01 21:42 - 000000000 ____D C:\Program Files\Glary Utilities 5
> 2019-07-30 00:05 - 2019-06-08 22:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
> 2019-07-29 14:32 - 2018-11-06 00:47 - 000001011 _____ C:\DelFix.txt
> 2019-07-25 13:45 - 2017-05-21 17:21 - 000000000 _____ C:\Windows\system32\last.dump
> 2019-07-24 20:32 - 2009-07-14 01:53 - 000032512 _____ C:\Windows\Tasks\SCHEDLGU.TXT
> 2019-07-19 13:45 - 2019-07-08 12:36 - 000173512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
> 2019-07-18 00:57 - 2016-02-14 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
> 2019-07-18 00:57 - 2016-02-14 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
> 2019-07-18 00:57 - 2016-02-14 15:53 - 000000000 ____D C:\Program Files\Java
> 2019-07-18 00:54 - 2016-02-14 15:55 - 000096240 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
> 
> ==================== Files in the root of some directories ================
> 
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021368 _____ (Schneider Electric) C:\Users\Diego\en_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021368 _____ (Schneider Electric) C:\Users\Diego\es_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021880 _____ (Schneider Electric) C:\Users\Diego\fr_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021880 _____ (Schneider Electric) C:\Users\Diego\grm_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021368 _____ (Schneider Electric) C:\Users\Diego\it_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000020344 _____ (Schneider Electric) C:\Users\Diego\jp_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 001079808 _____ (Microsoft Corporation) C:\Users\Diego\mfc80u.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000626688 _____ (Microsoft Corporation) C:\Users\Diego\msvcr80.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 013923704 _____ (Schneider Electric) C:\Users\Diego\PCPE Setup.exe
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000021368 _____ (Schneider Electric) C:\Users\Diego\pt_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000020856 _____ (Schneider Electric) C:\Users\Diego\ru_res.dll
> 2017-10-25 23:14 - 2017-10-25 23:14 - 000019832 _____ (Schneider Electric) C:\Users\Diego\zh_res.dll
> 2018-11-01 17:27 - 2018-11-01 17:27 - 000000000 _____ () C:\Users\Diego\AppData\Local\oobelibMkey.log
> 2017-11-29 02:26 - 2017-11-29 02:26 - 000000017 _____ () C:\Users\Diego\AppData\Local\resmon.resmoncfg
> 
> ==================== SigCheck ===============================
> 
> (There is no automatic fix for files that do not pass verification.)
> 
> 
> LastRegBack: 2019-08-17 12:56
> ==================== End of FRST.txt ============================

adm77 · 17 Agosto, 2019 21:19

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-08-2019
Ran by Diego (17-08-2019 18:02:46)
Running from C:\Users\Diego\Escritorio
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2016-02-14 16:54:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-4176836711-1023169650-3318900086-500 - Administrator - Disabled)
Diego (S-1-5-21-4176836711-1023169650-3318900086-1000 - Administrator - Enabled) => C:\Users\Diego
HomeGroupUser$ (S-1-5-21-4176836711-1023169650-3318900086-1010 - Limited - Enabled)
I2 (S-1-5-21-4176836711-1023169650-3318900086-1012 - Limited - Enabled) => C:\Users\I2
Invitado (S-1-5-21-4176836711-1023169650-3318900086-501 - Limited - Enabled) => C:\Users\TEMP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20036 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.238 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 32.0.0.238 - Adobe)
Adobe Shockwave Player 12.3 (HKLM\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Apowersoft Online Launcher versión 1.3.6 (HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.3.6 - APOWERSOFT LIMITED)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Argente - Registry Cleaner 3.1.2.0 (HKLM\...\Argente - Registry Cleaner_is1) (Version: 3.1.2.0 - Raúl Argente)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Backup and Sync from Google (HKLM\...\{2220EB12-4C3F-4203-996A-2D55BD1FF3A6}) (Version: 3.45.5545.5747 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
Compatibilidad con Aplicaciones de Apple (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
DriversCloud.com (HKLM\...\{80D96881-C431-4441-8A61-0D8C825B970D}) (Version: 8.0.3.1 - Cybelsoft)
Eye 312 (HKLM\...\{74F923F2-2B11-4E2E-B638-A1772A9F7B7B}) (Version: 1.0.0.28 - KYE SYSTEMS CORP.)
Google Chrome (HKLM\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version:  - Intel Corporation)
Java 8 Update 221 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Java SE Development Kit 8 Update 211 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180211}) (Version: 8.0.2110.12 - Oracle Corporation)
Java SE Development Kit 8 Update 73 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM\...\{90120000-0016-0C0A-0000-0000000FF1CE}_PROPLUS_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM\...\{90120000-001A-0C0A-0000-0000000FF1CE}_PROPLUS_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM\...\{90120000-0018-0C0A-0000-0000000FF1CE}_PROPLUS_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM\...\{90120000-001B-0C0A-0000-0000000FF1CE}_PROPLUS_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 68.0.1 (x86 es-ES) (HKLM\...\Mozilla Firefox 68.0.1 (x86 es-ES)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 67.0.1.7088 - Mozilla)
Opera Stable 62.0.3331.116 (HKLM\...\Opera 62.0.3331.116) (Version: 62.0.3331.116 - Opera Software)
QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rapport (HKLM\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1804.161 - Trusteer) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.97.1001.2015 - Realtek)
Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.)
Skype versión 8.50 (HKLM\...\Skype_is1) (Version: 8.50 - Skype Technologies S.A.)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TL-WN721N/TL-WN722N Driver (HKLM\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.0.0 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.0.0 - TP-LINK)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
USB Disk Security (HKLM\...\USB Disk Security_is1) (Version:  - Zbshareware Lab)
WinRAR 5.71 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-04] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-02-14 14:19 - 2011-03-31 15:36 - 000167424 _____ () [File not signed] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2016-02-14 14:19 - 2011-08-25 14:02 - 001425920 _____ () [File not signed] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2016-02-14 14:19 - 2011-03-31 15:36 - 000128000 _____ () [File not signed] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF.dll
2016-02-14 14:19 - 2011-03-31 15:36 - 000111616 _____ () [File not signed] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF_WPS_WIN7.DLL
2015-06-02 15:51 - 2015-06-02 15:51 - 000545792 _____ () [File not signed] C:\Program Files\Trusteer\Rapport\bin\js32.dll
2009-07-13 20:35 - 2011-08-03 11:34 - 000036352 _____ () [File not signed] C:\Windows\system32\slc.dll
2018-01-14 16:04 - 2019-02-21 13:00 - 000050688 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2009-07-13 20:40 - 2009-07-13 22:16 - 000249856 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\uxtheme.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:04 - 2019-07-25 13:52 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\System32\WindowsPowerShell\v1.0;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Skype\Phone
HKU\S-1-5-21-4176836711-1023169650-3318900086-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Diego\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.49.130.47 - 200.42.4.199
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: ArgenteRC => "C:\Program Files\Argente - Registry Cleaner\ArgenteRC.exe" /AutoClean
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2FA011AF-FC69-41DC-BD7C-2ADCD8A3E5DC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{764D71DC-61A8-4FA5-8638-945E17C63482}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6F673A0F-9BF4-42BC-8352-38E04B15F9E5}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0C86EA20-933F-4949-8F20-545ADCD989B3}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D1517AA5-1179-4F96-8539-9C54AD229373}] => (Allow) C:\Program Files\Opera\62.0.3331.99\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DCBA2C1E-5F02-4063-B8F9-943AC426AF36}] => (Allow) C:\Program Files\Opera\62.0.3331.116\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D5224712-D42C-45E8-92F7-CF59E5319D70}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:147.99 GB) (Free:102.45 GB) (69%)
Check "winmgmt" service or repair WMI.


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/16/2019 03:17:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mbam.exe, versión: 3.1.0.1838, marca de tiempo: 0x5d13b1a3
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x6c617668
Id. del proceso con errores: 0x257c
Hora de inicio de la aplicación con errores: 0x01d5545edb0d1cfa
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: 2cdfc9aa-c052-11e9-8c8e-e0cb4ee62916

Error: (08/16/2019 03:17:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mbam.exe, versión: 3.1.0.1838, marca de tiempo: 0x5d13b1a3
Nombre del módulo con errores: mbam.exe, versión: 3.1.0.1838, marca de tiempo: 0x5d13b1a3
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00162ca1
Id. del proceso con errores: 0x257c
Hora de inicio de la aplicación con errores: 0x01d5545edb0d1cfa
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Id. del informe: 29a55310-c052-11e9-8c8e-e0cb4ee62916

Error: (08/16/2019 03:14:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mbam.exe, versión: 3.1.0.1838, marca de tiempo: 0x5d13b1a3
Nombre del módulo con errores: mbam.exe, versión: 3.1.0.1838, marca de tiempo: 0x5d13b1a3
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00073cc5
Id. del proceso con errores: 0x205c
Hora de inicio de la aplicación con errores: 0x01d5545d0cbbf052
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Id. del informe: a00f2024-c051-11e9-8c8e-e0cb4ee62916

Error: (08/14/2019 12:15:49 PM) (Source: Windows Activation Technologies) (EventID: 3) (User: )
Description: Error de comprobación de mantenimiento: 
 hr = 0x8004FE21, estado de mantenimiento: 0x0000000000000100

Error: (08/13/2019 09:37:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: TWCU.exe, versión: 0.0.0.0, marca de tiempo: 0x4ec62206
Nombre del módulo con errores: TWCU.exe, versión: 0.0.0.0, marca de tiempo: 0x4ec62206
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000307ba
Id. del proceso con errores: 0x1cd8
Hora de inicio de la aplicación con errores: 0x01d552221c928aa5
Ruta de acceso de la aplicación con errores: C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
Ruta de acceso del módulo con errores: C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
Id. del informe: a477d22f-be2b-11e9-923a-e0cb4ee62916

Error: (08/13/2019 06:57:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: browser_assistant.exe, versión: 62.0.3331.99, marca de tiempo: 0x5d369450
Nombre del módulo con errores: browser_assistant.exe, versión: 62.0.3331.99, marca de tiempo: 0x5d369450
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000474e
Id. del proceso con errores: 0x168c
Hora de inicio de la aplicación con errores: 0x01d5522205ce1d1d
Ruta de acceso de la aplicación con errores: C:\Program Files\Opera\assistant\browser_assistant.exe
Ruta de acceso del módulo con errores: C:\Program Files\Opera\assistant\browser_assistant.exe
Id. del informe: 4ece5bbc-be15-11e9-923a-e0cb4ee62916

Error: (08/09/2019 11:26:40 PM) (Source: MsiInstaller) (EventID: 11719) (User: NT AUTHORITY)
Description: Producto: Rapport -- Error 1719. No se ha podido  acceder al servicio de Windows Installer. Esto puede ocurrir cuando Windows está funcionando en modo seguro o bien cuando Windows Installer no está correctamente instalado. Contacta con el personal de asistencia para obtener ayuda.

Error: (08/07/2019 12:15:03 PM) (Source: Windows Activation Technologies) (EventID: 3) (User: )
Description: Error de comprobación de mantenimiento: 
 hr = 0x8004FE21, estado de mantenimiento: 0x0000000000000100


System errors:
=============
Error: (08/17/2019 05:45:24 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Windows Update no respondió después de iniciar.

Error: (08/17/2019 05:44:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio ShellHWDetection.

Error: (08/17/2019 12:13:55 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Windows Update no respondió después de iniciar.

Error: (08/17/2019 12:10:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Instantáneas de volumen no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (08/17/2019 12:10:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Instantáneas de volumen.

Error: (08/17/2019 12:10:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Instantáneas de volumen no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (08/17/2019 12:10:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Instantáneas de volumen.

Error: (08/17/2019 12:10:17 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Error de DCOM "1053" al intentar iniciar el servicio VSS con argumentos "" para ejecutar el servidor:
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}


CodeIntegrity:
===================================

Date: 2018-11-20 18:16:43.166
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-20 18:16:43.043
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-17 11:48:42.039
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-17 11:48:41.758
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-16 11:41:42.547
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-16 11:41:42.434
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-16 11:41:42.264
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-11-16 11:41:38.126
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 0602 09/11/2009
Motherboard: ASUSTeK Computer INC. P5KPL-AM SE
Processor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Percentage of memory in use: 87%
Total physical RAM: 2038.18 MB
Available physical RAM: 253.01 MB
Total Virtual: 4076.36 MB
Available Virtual: 2014.41 MB

==================== Drives ================================

Drive a: (Datos) (Fixed) (Total:150 GB) (Free:112.22 GB) NTFS
Drive c: () (Fixed) (Total:147.99 GB) (Free:102.45 GB) NTFS

\\?\Volume{a9572656-d319-11e5-b7dc-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 328F328F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=150 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

adm77 · 18 Agosto, 2019 03:04

POR SI SIRVE EL DIA 13/8 hay actualizaciones DE ADOBE FLASH

Miguelgrado · 18 Agosto, 2019 09:35

Podrias subirme otra captura de ese panel, haber si puedo ver exactamente que pone?

En las que me pegaste anteriores, no puede verlo con claridad

adm77 · 18 Agosto, 2019 15:36

no me deja copiarlo al texto,…no me deja agrandar ese cuadro de dialogo, tampoco. Te tipeo el texto

FROM:"ZAPISANE przez program internet explorer 11· subjetct: date: tue 13 aug 2019 15:13:20 +0200 mime-version 1.0 content-type: multipart/related; type="text/htlm"; boundary="----=_NextPart_000_0000_01D551E9_A4AA4630" X-MimeOLE: pRODUCED By Microsoft MimeOLE This is a multi-part message in MIME format.------=__NextPart_000_0000_01D551E9.A4AA4630 Content-Type:text/;charset="utf-8" Content-Transfer-Encoding:quoted-printable Content-Location:file://D:\xampp\htdocs\opera_ads\OGFX-173\BA_NOTIFICATION_1_1_ES\INDEX.HTML=EF=BB=BF=20=20=20==20 3D PROBAR =20    =20 X =20 =20 -----=_NEXTPART_000_0000_01D551E9.A4AA4630 Content-Type:image/png Content-Tranfer -Encoding: base64 Content-Location:file:///D:\xampp\htdocs\opera_ads\OGFX-173/BA_NOTIFICATION_1_1_ES/bg.png

ACA VIENEN VARIAS LETRAS Y NUMEROS Y SIGNOS +


_NEXTPART_000_0000_01D551E9.A4AA4630 Content-Type:image/png Content-Tranfer -Encoding: base64 Content-Location:file:///D:\xampp\htdocs\opera_ads\OGFX-173/BA_NOTIFICATION_1_1_ES/btn_big.png


ACA VIENEN VARIAS LETRAS Y NUMEROS Y SIGNOS +


_NEXTPART_000_0000_01D551E9.A4AA4630 Content-Type:image/png Content-Tranfer -Encoding: base64 Content-Location:file:///D:\xampp\htdocs\opera_ads\OGFX-173/BA_NOTIFICATION_1_1_ES/x.png


ACA VIENEN VARIAS LETRAS Y NUMEROS Y SIGNOS +

_NEXTPART_000_0000_01D551E9.A4AA4630 Content-Type:image/png Content-Tranfer -Encoding: base64 Content-Location:file:///D:\xampp\htdocs\opera_ads\OGFX-173/BA_NOTIFICATION_1_1_ES/dont-show-again.png


ACA VIENEN VARIAS LETRAS Y NUMEROS Y SIGNOS +



_NEXTPART_000_0000_01D551E9.A4AA4630--

Miguelgrado · 18 Agosto, 2019 18:30

Abre los navegadores que uses, Chrome, Opera y Firefox y elimina todas las notificaciones de sitios web que esten autorizadas

Por ejemplo…Firefox- opciones -privacidad y seguridad - notificaciones -configuración y elimina as todos los asistiros que salgan ahi

adm77 · 19 Agosto, 2019 19:44

ok ahi voy dame un momento

Miguelgrado · 19 Agosto, 2019 20:31

Ok…esperamos

adm77 · 20 Agosto, 2019 04:35

Bien hasta ahora lo he logrado pero me falta Tengo una dificultad en eliminar esta, q sale en la parte de notif permitidas de crhome pero no me da ninguna opción para eliminar o bloquear a diferencia de las otras…

://mail.google.com/mail

insertada en ://mail.google.com/mail

completado, la única novedad es la q mencione arriba, y q el otro día l terminar el scaneo malwarebytes me hizo una pantalla azul reinicio y pruebo, mientras

Miguelgrado · 20 Agosto, 2019 15:08

Vale,pruebas el pc y me dices

adm77 · 20 Agosto, 2019 19:25

OK me sigue saliendo en el usuario invitado, en el usuario administrador ya no salio mas luego de pasar farbar, no sera algo q tenga q ver con los programas de inicio ¿?

Miguelgrado · 20 Agosto, 2019 20:39

Con Fabar no hemos hecho nada ,solo un análisis por lo tanto no ha podido ser el remedio…

Reviso todo y te respondo

adm77 · 21 Agosto, 2019 15:13

ok mas allá de lo molesto, sera una falla de seguridad grave q me digas mejor apaga la pc y no hagas nada o se puede considerar seguir trabajando en ella ¿?

Miguelgrado · 21 Agosto, 2019 18:49

No hay problema para usar el pc, por ahora

Esa ventana sale exclusivamente al iniciar el pc o en cualquier momento?

adm77 · 25 Agosto, 2019 17:35

Al iniciar, en mis dos usuarios

sigue en los dos user

tengo dificultad para actualizar opera me da error no se si tendra q ver

Miguelgrado · 26 Agosto, 2019 21:28

En estos días no estoy en casa,… En cuanto esté,reviso y vemos

adm77 · 28 Agosto, 2019 03:51

gracias, pero el tema no seria grave cierto ¿? y otra preg en caso de q te puedas demorar mas el caso se puede derivar, saludos

SanMar · 28 Agosto, 2019 04:47

Hola chicos y permiso:

@adm77

Como @Miguelgrado anda ausente intentare ayudarte.

Dime cual es tu antivirus? Es Avast?

Lo tienes configurado para analizar tus correos electrónicos?

Utilizas Outlook como gestor de Correos electrónicos?

El mensaje de error que te aparece aparentemente es por un conflicto entre Internet Explorer y el Antivirus cuando la configuración del software de protección está configurada para escanear los correos electrónicos entrantes.

Nos comentas.

Salu2

adm77 · 28 Agosto, 2019 15:01

gracias, te comento, q no se q paso, ahora desapareció, la probare. mientras, te comento, tengo avast y malwarebytes y eset on line instalado la verdad no sabia q el antivirus se podía configurar para mails, ahora veo q el avast viene config así, por defecto activado, no tengo ningún gestor de correos, nunca lo configure, a veces se abre outlook porque hay algunos sitios q te presentan un link de contacto y te direcciona al outlook al presionar, pero inmediatamente q sucede lo cierro.

EDICION LAMENTABLE…volvio a aparecer, le desactivo esa proteccion de correos avast ¿?