Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 06-11-2020 Ejecutado por Administrador (08-11-2020 08:26:50) Run:1 Ejecutado desde C:\Users\Administrador\Desktop Perfiles cargados: Administrador Modo de Inicio: Safe Mode (minimal) ============================================== fixlist contenido: ***************** CloseProcesses: HKLM\Software\Microsoft\Active Setup\Installed Components: [{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\System32\iesetup.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}] -> C:\Windows\System32\iesetup.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation) Lsa: [Notification Packages] rassfm scecli BootExecute: autocheck autochk /q /v * sdnclean64.exe GroupPolicy: Restricci�n ? <==== ATENCI�N HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N HKLM\SOFTWARE\Policies\Google: Restricci�n <==== ATENCI�N HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATENCI�N (Restricci�n - ProxySettings) AutoConfigURL: [{3C27E66C-53EF-4F10-9FAC-7D02F03197E3}] => hxxp://127.0.0.1:86/ HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricci�n <==== ATENCI�N CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] S2 AvgWscReporter; "C:\Program Files\AVG\Antivirus\wsc_proxy.exe" /runassvc /rpcserver [X] S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X] S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [57728 2020-10-30] (SurfRight B.V. -> ) S3 AIDA64Driver; \??\C:\Users\ADMINI~1\AppData\Local\Temp\AIDA64Driver.sys [X] <==== ATENCI�N S3 Mv_Process; \??\c:\windows\syswow64\mv_process.sys [X] S3 vwifibus; \SystemRoot\System32\drivers\vwifibus.sys [X] 2020-11-05 22:39 - 2020-11-05 22:39 - 012795472 _____ (Zemana Ltd. ) C:\Users\Administrador\Downloads\AntiMalware_Setup.exe 2020-11-03 07:48 - 2020-11-03 07:49 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2020-10-31 00:11 - 2020-11-04 22:30 - 000000000 ____D C:\ProgramData\AVG 2020-10-30 23:25 - 2020-10-30 23:32 - 000057728 _____ C:\Windows\system32\Drivers\hitmanpro37.sys 2020-10-30 23:24 - 2020-10-30 23:31 - 000000000 ____D C:\ProgramData\HitmanPro 2020-10-25 01:41 - 2020-10-25 01:41 - 000000000 ____D C:\ProgramData\McAfee 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\2052 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1055 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1049 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1046 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1045 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1042 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1041 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1040 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1036 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1031 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1029 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1028 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\2052 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1055 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1049 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1046 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1045 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1042 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1041 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1040 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1036 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1031 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1029 2020-10-25 01:16 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1028 2020-10-25 01:14 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\3082 2020-10-25 01:14 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\SysWOW64\1033 2020-10-25 01:14 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\3082 2020-10-25 01:14 - 2020-10-25 01:16 - 000000000 ____D C:\Windows\system32\1033 ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ning�n archivo ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => -> Ning�n archivo ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => -> Ning�n archivo BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll => Ning�n archivo BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll => Ning�n archivo CMD: ipconfig /flushdns CMD: ipconfig /renew CMD: bitsadmin /reset /allusers CMD: netsh winsock reset CMD: netsh advfirewall reset CMD: netsh advfirewall set allprofiles state ON CMD: netsh int ipv4 reset CMD: netsh int ipv6 reset RemoveProxy: EmptyTemp: Hosts: ***************** Procesos cerrados correctamente. HKLM\Software\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073} => eliminado correctamente HKLM\Software\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073} => eliminado correctamente HKLM\System\CurrentControlSet\Control\Lsa\\"Notification Packages"="scecli" => valor restaurado correctamente HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => valor restaurado correctamente C:\Windows\system32\GroupPolicy\Machine => movido correctamente C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente HKLM\SOFTWARE\Policies\Google => eliminado correctamente "HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxySettingsPerUser" => eliminado correctamente HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\ProxyMgr\{3C27E66C-53EF-4F10-9FAC-7D02F03197E3} => eliminado correctamente HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => eliminado correctamente HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => eliminado correctamente HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => eliminado correctamente HKLM\System\CurrentControlSet\Services\AvgWscReporter => eliminado correctamente AvgWscReporter => servicio eliminado correctamente HKLM\System\CurrentControlSet\Services\McAfee WebAdvisor => eliminado correctamente McAfee WebAdvisor => servicio eliminado correctamente HKLM\System\CurrentControlSet\Services\hitmanpro37 => eliminado correctamente hitmanpro37 => servicio eliminado correctamente HKLM\System\CurrentControlSet\Services\AIDA64Driver => eliminado correctamente AIDA64Driver => servicio eliminado correctamente HKLM\System\CurrentControlSet\Services\Mv_Process => eliminado correctamente Mv_Process => servicio eliminado correctamente HKLM\System\CurrentControlSet\Services\vwifibus => eliminado correctamente vwifibus => servicio eliminado correctamente C:\Users\Administrador\Downloads\AntiMalware_Setup.exe => movido correctamente C:\Windows\system32\Tasks\AVAST Software => movido correctamente C:\ProgramData\AVG => movido correctamente C:\Windows\system32\Drivers\hitmanpro37.sys => movido correctamente C:\ProgramData\HitmanPro => movido correctamente C:\ProgramData\McAfee => movido correctamente C:\Windows\SysWOW64\2052 => movido correctamente C:\Windows\SysWOW64\1055 => movido correctamente C:\Windows\SysWOW64\1049 => movido correctamente C:\Windows\SysWOW64\1046 => movido correctamente C:\Windows\SysWOW64\1045 => movido correctamente C:\Windows\SysWOW64\1042 => movido correctamente C:\Windows\SysWOW64\1041 => movido correctamente C:\Windows\SysWOW64\1040 => movido correctamente C:\Windows\SysWOW64\1036 => movido correctamente C:\Windows\SysWOW64\1031 => movido correctamente C:\Windows\SysWOW64\1029 => movido correctamente C:\Windows\SysWOW64\1028 => movido correctamente C:\Windows\system32\2052 => movido correctamente C:\Windows\system32\1055 => movido correctamente C:\Windows\system32\1049 => movido correctamente C:\Windows\system32\1046 => movido correctamente C:\Windows\system32\1045 => movido correctamente C:\Windows\system32\1042 => movido correctamente C:\Windows\system32\1041 => movido correctamente C:\Windows\system32\1040 => movido correctamente C:\Windows\system32\1036 => movido correctamente C:\Windows\system32\1031 => movido correctamente C:\Windows\system32\1029 => movido correctamente C:\Windows\system32\1028 => movido correctamente C:\Windows\SysWOW64\3082 => movido correctamente C:\Windows\SysWOW64\1033 => movido correctamente C:\Windows\system32\3082 => movido correctamente C:\Windows\system32\1033 => movido correctamente HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => eliminado correctamente HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\EPP => eliminado correctamente HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\EPP => eliminado correctamente HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => eliminado correctamente HKLM\Software\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => eliminado correctamente HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => eliminado correctamente HKLM\Software\Wow6432Node\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => eliminado correctamente ========= ipconfig /flushdns ========= Configuraci¢n IP de Windows No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n. ========= Final de CMD: ========= ========= ipconfig /renew ========= Configuraci¢n IP de Windows ========= Final de CMD: ========= ========= bitsadmin /reset /allusers ========= BITSADMIN version 3.0 BITS administration utility. (C) Copyright Microsoft Corp. Unable to connect to BITS - 0x8007043c ========= Final de CMD: ========= ========= netsh winsock reset ========= El cat logo Winsock se restableci¢ correctamente. Debe reiniciar el equipo para completar el restablecimiento. ========= Final de CMD: ========= ========= netsh advfirewall reset ========= Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo. ========= Final de CMD: ========= ========= netsh advfirewall set allprofiles state ON ========= Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo. ========= Final de CMD: ========= ========= netsh int ipv4 reset ========= No hay valores configurados por el usuario para restablecer. ========= Final de CMD: ========= ========= netsh int ipv6 reset ========= No hay valores configurados por el usuario para restablecer. ========= Final de CMD: ========= ========= RemoveProxy: ========= "HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\" => eliminado correctamente "HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => eliminado correctamente "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => eliminado correctamente "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente "HKU\S-1-5-21-2279651737-4035375077-1779843676-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente "HKU\S-1-5-21-2279651737-4035375077-1779843676-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente ========= Final de RemoveProxy: ========= C:\Windows\System32\Drivers\etc\hosts => movido correctamente Hosts restaurado correctamente. =========== EmptyTemp: ========== BITS transfer queue => 9199616 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 40520140 B Java, Flash, Steam htmlcache => 997 B Windows/system/drivers => 7897756 B Edge => 0 B Chrome => 467226824 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 0 B NetworkService => 27224 B Administrador => 97215345 B Classic .NET AppPool => 97215345 B .NET v4.5 => 97215345 B .NET v2.0 => 97215345 B .NET v4.5 Classic => 97215345 B .NET v2.0 Classic => 97215345 B RecycleBin => 521723 B EmptyTemp: => 1 GB datos temporales eliminados. ================================ El sistema necesita reiniciarse. ==== Final de Fixlog 08:26:59 ====