• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 18

    Ccleaner Bloqueado por supuesto "Administrador"

    Hola amigos de InfoSpyware, he aqui solicitando su ayuda nuevamente. El ordenador tiene varios meses sin mantenimiento, por lo cual al querer a llevar a cabo el mismo no puedo llevar a cabo algunas opciones ...

    1. #1
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Ccleaner Bloqueado por supuesto "Administrador"

      Hola amigos de InfoSpyware, he aqui solicitando su ayuda nuevamente.
      El ordenador tiene varios meses sin mantenimiento, por lo cual al querer a llevar a cabo el mismo no puedo llevar a cabo algunas opciones de limpieza. (Cabe aclarar que el ordenador de por seguro tiene algun tipo de virus, malware y/o spywares.)

      Problema:
      Al querer ejecutar la herramienta Ccleaner la aplicacion es bloqueada por un "administrador".
      Lo mismo sucede cuando quiero ejecutar el instalador o descargar el mismo.


      Notas/Datos:

      • Su uso diario era para ver peliculas de diferentes paginas no seguras.
      • Tambien para la descarga de aplicaciones de paginas no seguras.
      • El arreglo lo estoy haciendo por control remoto (TeamViewer). Debido a que estoy de viaje.
      • Ya intente ejecutar Cclenaer (De manera presencial) en Modo Seguro pero tuve el mismo resultado.
      • Notebook Asus con Sistema Operativo: Windows 10 Pro 64 bits
      • El ordenador posee en teoria un solo usuario registrado.
      • Sistema protegido por Avast Free antivirus, actualizado al dia de la fecha.


      ¿Como lo solucionamos?

      A la espera de su ayuda, mis saludos cordiales.

    2. #2
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Reporte de AdwCleaner:

      # AdwCleaner 7.0.2.1 - Logfile created on Mon Oct 23 16:29:27 2017
      # Updated on 2017/29/08 by Malwarebytes
      # Running on Windows 10 Pro (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      Deleted: C:\Users\Usuario\AppData\Roaming\DRPSu


      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      Deleted: [Key] - HKLM\SOFTWARE\drpsu
      Deleted: [Key] - HKU\S-1-5-21-590238306-3198343450-568691598-1001\Software\drpsu
      Deleted: [Key] - HKCU\Software\drpsu


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[S0].txt - [1152 B] - [2017/10/23 16:28:50]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

    3. #3
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Estas descargando una versiñ desactualizado

      Usa la ultima



      CCleaner, Recuva, Defraggler & Speccy - All Products - Piriform


      Comentas
      Última edición por @Miguelgrado fecha: 24/10/17 a las 08:11:11
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #4
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Muchisimas gracias por su ayuda.
      Problema con Ccleaner Solucionado.

      Una vez descargado llevé a cabo limpieza con Rkill, Ccleaner y Adwcleaner.
      Pero al llevar a cabo limpieza con malwarebytes surgio un nuevo problema.

      Problema Nuevo
      Al iniciar scaneo con Malwarebytes el ordenador se tilda y aparece pantalla azul donde dice que se va a recopilar informacion del problema en mi pc y necesita reiniciarse. 100% completar. Detener codigo: IRQL NOT LESS OR EQUAL
      para obtener mas informacion sobre el error visite windows.com/stopcode


      Por lo que intenté llevar a cabo analisis con Superantispyware y volvio a aparecer el mismo error.
      Cabe aclarar que luego de iniciar los analisis, automaticamente desconecté teamviewer. (Ya que la limpieza la estoy llevando a cabo a la distancia)

      ¿A que se puede deber el problema?
      ¿Cuales son los pasos que debo seguir?

      Como siempre gracias por su ayuda.

    5. #5
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Por favor, realiza lo siguiente:
      1. Descarga el programa Guía ¿Cómo solucionar un error de “Pantallazo Azul”? (-Error BSoD-)
      2. Descarga también el el parche en Español de BlueScreenView.
      3. Coloca ambos archivos comprimidos en una carpeta y descomprímelos a ambos ahi mismo.
      4. Ejecuta BlueScreenView.exe
      5. Ingresa en Editar --> Seleccionar Todo.
      6. Archivo --> Guardar elementos Seleccionados. Guarda el archivo con el nombre BSOD.txt en el escritorio.
      7. Abre el archivo BSOD que se encuentra en su escritorio, copia y pega su contenido en tu próxima respuesta.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      BSOD.txt
      ==================================================
      Archivo de volcado: 110117-38500-01.dmp
      Hora del fallo : 1/11/2017 8:19:34 p. m.
      Cadena de comprobación de error: PAGE_FAULT_IN_NONPAGED_AREA
      Código de comprobación de error: 0x00000050
      Parámetro 1 : ffff9b80`572e5ff8
      Parámetro 2 : 00000000`00000002
      Parámetro 3 : fffff804`6c69091f
      Parámetro 4 : 00000000`00000000
      Causado por controlador: ntoskrnl.exe
      Causado por dirección: ntoskrnl.exe+14f8b0
      Descripción :
      Nombre :
      Companía :
      Versión :
      Proceso : x64
      Crash Address : ntoskrnl.exe+14f8b0
      Stack Address 1 :
      Stack Address 2 :
      Stack Address 3 :
      Computer Name :
      Full Path : C:\WINDOWS\Minidump\110117-38500-01.dmp
      Processors Count : 2
      Major Version : 15
      Minor Version : 14393
      Dump File Size : 398.116
      Dump File Time : 1/11/2017 9:22:49 p. m.
      ==================================================

      ==================================================
      Archivo de volcado: 102917-30375-01.dmp
      Hora del fallo : 27/10/2017 7:13:18 p. m.
      Cadena de comprobación de error: SYSTEM_SERVICE_EXCEPTION
      Código de comprobación de error: 0x0000003b
      Parámetro 1 : 00000000`c0000005
      Parámetro 2 : 00000000`00000001
      Parámetro 3 : ffffe781`bc77aec0
      Parámetro 4 : 00000000`00000000
      Causado por controlador: ntoskrnl.exe
      Causado por dirección: ntoskrnl.exe+14f8b0
      Descripción :
      Nombre :
      Companía :
      Versión :
      Proceso : x64
      Crash Address : ntoskrnl.exe+14f8b0
      Stack Address 1 :
      Stack Address 2 :
      Stack Address 3 :
      Computer Name :
      Full Path : C:\WINDOWS\Minidump\102917-30375-01.dmp
      Processors Count : 2
      Major Version : 15
      Minor Version : 14393
      Dump File Size : 532.764
      Dump File Time : 29/10/2017 8:17:38 p. m.
      ==================================================

      ==================================================
      Archivo de volcado: 102717-31656-01.dmp
      Hora del fallo : 26/10/2017 5:52:34 p. m.
      Cadena de comprobación de error: IRQL_NOT_LESS_OR_EQUAL
      Código de comprobación de error: 0x0000000a
      Parámetro 1 : ffff8280`50836260
      Parámetro 2 : 00000000`00000002
      Parámetro 3 : 00000000`00000000
      Parámetro 4 : fffff803`c9eb7125
      Causado por controlador: ntoskrnl.exe
      Causado por dirección: ntoskrnl.exe+14f8b0
      Descripción :
      Nombre :
      Companía :
      Versión :
      Proceso : x64
      Crash Address : ntoskrnl.exe+14f8b0
      Stack Address 1 :
      Stack Address 2 :
      Stack Address 3 :
      Computer Name :
      Full Path : C:\WINDOWS\Minidump\102717-31656-01.dmp
      Processors Count : 2
      Major Version : 15
      Minor Version : 14393
      Dump File Size : 400.996
      Dump File Time : 27/10/2017 7:00:39 p. m.
      ==================================================

      ==================================================
      Archivo de volcado: 102617-38078-01.dmp
      Hora del fallo : 26/10/2017 11:28:38 a. m.
      Cadena de comprobación de error:
      Código de comprobación de error: 0x00000139
      Parámetro 1 : 00000000`00000002
      Parámetro 2 : ffff8600`3d8b5ae0
      Parámetro 3 : ffff8600`3d8b5a38
      Parámetro 4 : 00000000`00000000
      Causado por controlador: ntoskrnl.exe
      Causado por dirección: ntoskrnl.exe+14f8b0
      Descripción :
      Nombre :
      Companía :
      Versión :
      Proceso : x64
      Crash Address : ntoskrnl.exe+14f8b0
      Stack Address 1 :
      Stack Address 2 :
      Stack Address 3 :
      Computer Name :
      Full Path : C:\WINDOWS\Minidump\102617-38078-01.dmp
      Processors Count : 2
      Major Version : 15
      Minor Version : 14393
      Dump File Size : 532.868
      Dump File Time : 26/10/2017 11:34:39 a. m.
      ==================================================

    7. #7
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Frst.txt

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2017
      Ran by Usuario (administrator) on DESKTOP-PP344HH (04-11-2017 15:23:27)
      Running from C:\Users\Usuario\Desktop
      Loaded Profiles: Usuario (Available Profiles: Usuario)
      Platform: Windows 10 Pro Version 1607 14393.1715 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Safe Mode (with Networking)
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
      (Microsoft Corporation) C:\Windows\HelpPane.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
      HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-10] (Realtek Semiconductor)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-16] (AVAST Software)
      HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\Run: [Spotify] => C:\Users\Usuario\AppData\Roaming\Spotify\Spotify.exe [20791408 2017-10-16] (Spotify Ltd)
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\Run: [Spotify Web Helper] => C:\Users\Usuario\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-10-16] (Spotify Ltd)
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7964576 2017-10-17] (SUPERAntiSpyware)
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\RunOnce: [Uninstall C:\Users\Usuario\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Usuario\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 200.42.4.204 200.49.130.52
      Tcpip\..\Interfaces\{1eab8fca-e32f-4961-a86e-43309eb04b0c}: [DhcpNameServer] 192.168.5.1 0.0.0.0
      Tcpip\..\Interfaces\{4dfdaa56-f31d-4030-91b6-b80a4e51dff1}: [DhcpNameServer] 192.168.1.1 0.0.0.0
      Tcpip\..\Interfaces\{a3ee269b-c280-4bdd-9702-19bc27ed695a}: [DhcpNameServer] 207.248.95.24 4.2.2.2
      Tcpip\..\Interfaces\{c970d46a-c72e-4344-ab0b-a2628b6e5819}: [DhcpNameServer] 192.168.1.1 0.0.0.0
      Tcpip\..\Interfaces\{fbd741fb-a9a7-483a-8b73-564e6466eebc}: [DhcpNameServer] 200.42.4.204 200.49.130.52

      Internet Explorer:
      ==================
      BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation)
      BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)

      FireFox:
      ========
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR StartupUrls: Default -> "hxxp://www.uccor.edu.ar/home/"
      CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2017-11-04]
      CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
      CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-23]
      CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-23]
      CHR Extension: (Búsqueda de Google) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-23]
      CHR Extension: (Avast Online Security (BETA)) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-10-09]
      CHR Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-08]
      CHR Extension: (GIFs for Chrome) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncbljghjjgjehbfbdppmkmhniadllma [2017-08-04]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-10]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
      CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-23]
      CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-27]
      CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-24]
      CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-10-24]
      CHR Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-01-09]
      CHR Extension: (Avast SafePrice) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-09]
      CHR Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-09]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-09]
      CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-09]
      CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-24]
      CHR HKU\S-1-5-21-590238306-3198343450-568691598-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com)
      S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-16] (AVAST Software s.r.o.)
      S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-16] (AVAST Software)
      S2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
      S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2017-08-08] (Microsoft Corporation)
      S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
      S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-29] (TeamViewer GmbH)
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-27] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [321032 2017-10-16] (AVAST Software s.r.o.)
      S0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [198976 2017-10-16] (AVAST Software s.r.o.)
      S0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [343288 2017-10-16] (AVAST Software s.r.o.)
      S0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [57736 2017-10-16] (AVAST Software s.r.o.)
      S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [47008 2017-10-16] (AVAST Software)
      R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-11] (AVAST Software)
      S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [147776 2017-10-16] (AVAST Software)
      R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [110376 2017-10-16] (AVAST Software)
      S0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [84416 2017-10-16] (AVAST Software)
      S1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1029872 2017-10-26] (AVAST Software)
      S1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [587168 2017-10-16] (AVAST Software)
      S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [201352 2017-10-16] (AVAST Software)
      S0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [363440 2017-10-16] (AVAST Software)
      S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
      S1 MpKsld0216db0; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BD3C9BB-0029-4D5F-BE95-AF6D4DD31C42}\MpKsld0216db0.sys [49392 2017-10-26] () [File not signed]
      R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
      S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
      S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
      S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
      S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-04 15:23 - 2017-11-04 15:24 - 000011922 _____ C:\Users\Usuario\Desktop\FRST.txt
      2017-11-04 15:03 - 2017-11-04 15:23 - 000000000 ____D C:\FRST
      2017-11-04 15:00 - 2017-11-04 15:00 - 002403328 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
      2017-11-04 14:23 - 2017-11-04 14:27 - 000532748 _____ C:\WINDOWS\Minidump\110417-56640-01.dmp
      2017-11-01 21:30 - 2017-11-01 21:30 - 000007860 _____ C:\Users\Usuario\Desktop\BSOD.txt
      2017-11-01 21:28 - 2017-11-01 21:30 - 000000000 ____D C:\Users\Usuario\Desktop\Blue Screen
      2017-11-01 21:27 - 2017-11-01 21:27 - 000067310 _____ C:\Users\Usuario\Desktop\bluescreenview.zip
      2017-11-01 21:27 - 2017-11-01 21:27 - 000001280 _____ C:\Users\Usuario\Desktop\bluescreenview_spanish.zip
      2017-11-01 21:22 - 2017-11-01 21:22 - 000398116 _____ C:\WINDOWS\Minidump\110117-38500-01.dmp
      2017-10-29 20:16 - 2017-10-29 20:17 - 000532764 _____ C:\WINDOWS\Minidump\102917-30375-01.dmp
      2017-10-27 19:10 - 2017-10-29 20:16 - 000000546 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task f2d7c1dc-cda1-4983-97d2-3ad1fc320110.job
      2017-10-27 19:10 - 2017-10-29 20:16 - 000000546 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 927d6c1c-fd75-4ce1-93b7-24ebe7ca5c53.job
      2017-10-27 19:10 - 2017-10-27 19:10 - 000003790 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 927d6c1c-fd75-4ce1-93b7-24ebe7ca5c53
      2017-10-27 19:10 - 2017-10-27 19:10 - 000003708 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task f2d7c1dc-cda1-4983-97d2-3ad1fc320110
      2017-10-27 19:10 - 2017-10-27 19:10 - 000001856 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
      2017-10-27 19:10 - 2017-10-27 19:10 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\SUPERAntiSpyware.com
      2017-10-27 19:10 - 2017-10-27 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
      2017-10-27 19:09 - 2017-10-27 19:10 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
      2017-10-27 19:09 - 2017-10-27 19:09 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
      2017-10-27 19:00 - 2017-10-27 19:00 - 000400996 _____ C:\WINDOWS\Minidump\102717-31656-01.dmp
      2017-10-26 17:50 - 2017-10-26 17:50 - 010427120 _____ (Piriform Ltd) C:\Users\Usuario\Desktop\ccsetup536.exe
      2017-10-26 17:48 - 2017-10-26 17:48 - 001790024 _____ (Malwarebytes) C:\Users\Usuario\Desktop\JRT.exe
      2017-10-26 17:34 - 2017-10-26 17:35 - 030807080 _____ (SUPERAntiSpyware) C:\Users\Usuario\Desktop\SUPERAntiSpyware.exe
      2017-10-26 17:34 - 2017-10-26 17:34 - 008182736 _____ (Malwarebytes) C:\Users\Usuario\Desktop\AdwCleaner.exe
      2017-10-26 17:33 - 2017-10-26 17:34 - 071535032 _____ (Malwarebytes ) C:\Users\Usuario\Desktop\mb3-setup-35891.35891-3.2.2.2029-1.0.212-1.0.2951.exe
      2017-10-26 11:32 - 2017-11-04 14:23 - 721483913 _____ C:\WINDOWS\MEMORY.DMP
      2017-10-26 11:32 - 2017-10-26 11:34 - 000532868 _____ C:\WINDOWS\Minidump\102617-38078-01.dmp
      2017-10-24 15:05 - 2017-10-24 15:05 - 000000000 ____D C:\Users\Usuario\AppData\Local\ESET
      2017-10-24 13:38 - 2017-10-24 13:38 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
      2017-10-23 13:23 - 2017-10-26 17:40 - 000000000 ____D C:\AdwCleaner
      2017-10-20 22:40 - 2017-11-04 15:21 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
      2017-10-20 22:38 - 2017-10-20 22:38 - 000000000 ____D C:\WINDOWS\pss
      2017-10-20 16:39 - 2017-10-20 16:39 - 000000000 ____D C:\Users\Usuario\AppData\Local\TeamViewer
      2017-10-20 16:29 - 2017-11-04 14:45 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\TeamViewer
      2017-10-20 16:29 - 2017-10-20 16:29 - 000001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
      2017-10-20 16:29 - 2017-10-20 16:29 - 000001107 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
      2017-10-20 16:28 - 2017-11-04 15:12 - 000000000 ____D C:\Program Files (x86)\TeamViewer
      2017-10-19 11:50 - 2017-10-19 11:50 - 000200530 _____ C:\Users\Usuario\Downloads\DOCUMENTACION_-_ACCESS_-_Teorico_y_Practico.pdf
      2017-10-19 11:42 - 2017-10-19 21:08 - 001343488 _____ C:\Users\Usuario\Documents\Base de datos1.accdb
      2017-10-16 21:22 - 2017-10-16 21:22 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-10-16 15:34 - 2017-10-16 15:34 - 000401488 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
      2017-10-11 21:53 - 2017-10-11 21:53 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
      2017-10-10 19:13 - 2017-10-11 08:22 - 000000000 ____D C:\Users\Usuario\Desktop\Informatica 2
      2017-10-09 09:10 - 2017-10-09 10:35 - 000000000 ____D C:\Users\Usuario\Desktop\Telefono
      2017-10-09 09:07 - 2017-10-11 21:51 - 000000000 ____D C:\Users\Usuario\Desktop\Pato 3er parcial
      2017-10-09 08:12 - 2017-10-09 08:12 - 000017487 _____ C:\Users\Usuario\Downloads\8af5e006-d9be-4fd8-bf67-535165ed7114.tmp

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-04 15:21 - 2016-10-01 05:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-11-04 15:16 - 2016-07-16 03:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
      2017-11-04 15:15 - 2016-10-01 05:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-11-04 15:15 - 2016-10-01 05:28 - 000000000 ____D C:\Users\Usuario
      2017-11-04 15:03 - 2015-11-19 10:59 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
      2017-11-04 14:52 - 2017-03-19 22:55 - 000000000 ____D C:\WINDOWS\Minidump
      2017-11-04 14:52 - 2015-11-19 10:23 - 000299305 ____N C:\WINDOWS\Minidump\110417-36000-01.dmp
      2017-11-04 14:39 - 2015-11-19 10:39 - 000002408 _____ C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-11-04 14:39 - 2015-11-19 10:39 - 000000000 ___RD C:\Users\Usuario\OneDrive
      2017-11-04 14:38 - 2016-07-16 08:36 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-11-01 19:09 - 2016-07-16 08:45 - 000000000 ____D C:\WINDOWS\INF
      2017-11-01 18:47 - 2017-09-30 09:48 - 000000000 ____D C:\Program Files\rempl
      2017-10-29 20:46 - 2017-08-31 11:22 - 000000000 ____D C:\Users\Usuario\Desktop\Informatica
      2017-10-26 11:41 - 2015-11-19 10:52 - 001029872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
      2017-10-25 15:13 - 2016-07-16 08:49 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2017-10-25 15:13 - 2016-07-16 08:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
      2017-10-24 13:38 - 2017-09-29 22:44 - 000000000 ____D C:\Program Files\CCleaner
      2017-10-23 13:58 - 2016-10-29 10:23 - 000000000 ____D C:\Users\Usuario\AppData\Local\Spotify
      2017-10-23 13:57 - 2016-10-29 10:23 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Spotify
      2017-10-20 22:35 - 2017-10-01 21:24 - 000000000 ____D C:\Users\Usuario\Desktop\Preventiva
      2017-10-20 16:43 - 2016-10-01 05:19 - 000342296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-10-20 16:22 - 2016-07-16 08:47 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-10-19 20:47 - 2017-02-07 16:56 - 000004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
      2017-10-19 11:06 - 2016-07-16 08:47 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-10-16 23:20 - 2015-11-19 10:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
      2017-10-16 23:15 - 2015-07-10 08:04 - 000000167 _____ C:\WINDOWS\win.ini
      2017-10-16 23:08 - 2017-09-25 18:24 - 000000000 ____D C:\Users\Usuario\Desktop\Materiales
      2017-10-16 21:27 - 2015-11-19 11:28 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-10-16 21:22 - 2015-11-19 11:28 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-10-16 15:46 - 2015-11-19 10:37 - 000000000 ____D C:\Users\Usuario\AppData\Local\Packages
      2017-10-16 15:35 - 2017-06-21 10:44 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000587168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000363440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000201352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000147776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
      2017-10-16 15:34 - 2015-11-19 10:52 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
      2017-10-16 15:34 - 2015-11-19 10:51 - 000000000 ____D C:\ProgramData\AVAST Software
      2017-10-16 15:33 - 2017-02-07 16:56 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
      2017-10-16 15:33 - 2017-02-07 16:56 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
      2017-10-16 15:33 - 2017-02-07 16:56 - 000198976 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
      2017-10-16 15:33 - 2017-02-07 16:56 - 000057736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
      2017-10-09 21:03 - 2016-07-16 08:47 - 000000000 ____D C:\WINDOWS\rescache

      ==================== Files in the root of some directories =======

      2016-08-31 11:35 - 2016-08-31 11:35 - 000000000 _____ () C:\Users\Usuario\AppData\Local\{D421F8BA-017D-4E10-9DC8-E90D4254BFCB}
      2015-11-19 13:47 - 2015-11-19 13:47 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


      safeboot: Network => The system is configured to boot to Safe Mode <==== ATTENTION

      LastRegBack: 2017-11-01 20:16

      ==================== End of FRST.txt ============================

    9. #9
      Usuario Avatar de 4isla2
      Registrado
      abr 2017
      Ubicación
      Argentina
      Mensajes
      21

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Addition.txt
      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2017
      Ran by Usuario (04-11-2017 15:26:26)
      Running from C:\Users\Usuario\Desktop
      Windows 10 Pro Version 1607 14393.1715 (X64) (2016-10-01 08:55:30)
      Boot Mode: Safe Mode (with Networking)
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-590238306-3198343450-568691598-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-590238306-3198343450-568691598-503 - Limited - Disabled)
      Invitado (S-1-5-21-590238306-3198343450-568691598-501 - Limited - Disabled)
      Usuario (S-1-5-21-590238306-3198343450-568691598-1001 - Administrator - Enabled) => C:\Users\Usuario

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
      ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
      aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
      Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.7.2314 - AVAST Software)
      CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
      Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
      Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
      IHMC CmapTools v6.01.01 (HKLM-x32\...\IHMC CmapTools v6.01.01) (Version: 6.0.1.1 - Institute for Human & Machine Cognition)
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4268 - Intel Corporation)
      KB4023057 (HKLM\...\{B977A833-7734-41A5-B820-1F23D81DC87B}) (Version: 2.6.0.0 - Microsoft Corporation)
      K-Lite Mega Codec Pack 11.3.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.3.0 - )
      KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
      Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\OneDriveSetup.exe) (Version: 17.3.7074.1023 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
      Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      Paquete de controladores de Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS)
      Paquete de controladores de Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
      Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
      Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
      Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
      Spotify (HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\Spotify) (Version: 1.0.65.320.gac7a8e02 - Spotify AB)
      SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1250 - SUPERAntiSpyware.com)
      TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer)
      Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
      WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-16] (AVAST Software)
      ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-16] (AVAST Software)
      ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-16] (AVAST Software)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-16] (AVAST Software)
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-16] (AVAST Software)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {09958EA8-C5C2-4855-8A5F-30D50CD4A528} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
      Task: {12B59366-E5AA-4549-9FCD-112E664DAC64} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
      Task: {1C15EAB6-CBE6-4E2C-9454-F0DE31265041} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
      Task: {36CC2171-91A1-415B-B7E6-B7E838A2E0A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
      Task: {3E4DA1BE-9C13-4527-85ED-C4199D0809E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
      Task: {5A76BDE9-1265-4D19-8F4F-87F2DC86F383} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe [2016-03-23] (AVAST Software)
      Task: {5D0D4151-A58D-49BD-B7ED-9E7210DEEAEF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
      Task: {757767CE-28B8-4C26-9A1D-8F2669579DB8} - System32\Tasks\SUPERAntiSpyware Scheduled Task f2d7c1dc-cda1-4983-97d2-3ad1fc320110 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
      Task: {76E0129A-47A7-4380-B89A-5A1D7FE4E385} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
      Task: {8791D3AF-1176-47FE-83B1-AD0362CC98DB} - System32\Tasks\{83F040FA-77CC-49A3-834B-9AE597A46B65} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Usuario\Desktop\BasterNTH\smgpd.exe -d C:\Users\Usuario\Desktop\BasterNTH
      Task: {AF02AFE0-89E4-40B1-AEF8-F59F86EF7786} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
      Task: {B299A786-1B6E-4D9C-BBB1-9A325E97111C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-10-16] (AVAST Software)
      Task: {B2D7F1DF-430C-43AE-87F5-0B70383EA4D7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor)
      Task: {B7B437A7-921F-4152-8CC2-0BDC06F71469} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
      Task: {B7C1A774-E5A1-47C8-9EA1-F7FF715CC0E1} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
      Task: {C7A1AD79-0F84-4A52-BBC6-3D0E416274DB} - System32\Tasks\SUPERAntiSpyware Scheduled Task 927d6c1c-fd75-4ce1-93b7-24ebe7ca5c53 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
      Task: {D68BC656-84CA-4BC5-9649-78DF0D417B61} - System32\Tasks\SafeZone scheduled Autoupdate 1462895303 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
      Task: {D8AEC085-5520-450D-B410-54F071C09631} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor)
      Task: {F600E2D5-B5B9-45C7-876A-98D3D086D281} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
      Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 927d6c1c-fd75-4ce1-93b7-24ebe7ca5c53.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
      Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task f2d7c1dc-cda1-4983-97d2-3ad1fc320110.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2016-07-16 08:42 - 2016-07-16 08:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
      2017-09-25 19:43 - 2017-09-07 03:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
      2016-10-01 01:05 - 2016-10-01 01:05 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
      2017-03-15 21:36 - 2017-03-04 03:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
      2017-03-15 21:40 - 2017-03-04 03:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-03-15 21:41 - 2017-03-04 03:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2017-03-15 21:41 - 2017-03-04 03:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
      2017-09-25 19:43 - 2017-09-07 01:53 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
      2017-09-25 19:43 - 2017-09-07 01:59 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2015-07-10 08:04 - 2015-07-10 08:02 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-590238306-3198343450-568691598-1001\Control Panel\Desktop\\Wallpaper ->
      DNS Servers: Media is not connected to internet.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      MSCONFIG\Services: AdobeARMservice => 2
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\StartupApproved\Run: => "OneDrive"
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\StartupApproved\Run: => "Spotify"
      HKU\S-1-5-21-590238306-3198343450-568691598-1001\...\StartupApproved\Run: => "Spotify Web Helper"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [TCP Query User{AEA99672-FCB8-4D28-A984-0088E1DF38A2}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe
      FirewallRules: [UDP Query User{898D80B6-47B4-41F0-9757-5551DA4D2DB7}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe
      FirewallRules: [TCP Query User{629BCE47-96C2-4557-9C5D-E09832607011}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\usuario\appdata\roaming\spotify\spotify.exe
      FirewallRules: [UDP Query User{0B9273FF-2C72-4570-A333-74FE954451F3}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\usuario\appdata\roaming\spotify\spotify.exe
      FirewallRules: [TCP Query User{F52E2EE0-8BA0-40AF-8AC4-F97D3D3266FA}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
      FirewallRules: [UDP Query User{87EBD396-5A57-4D85-A34E-3C127EF31B8B}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
      FirewallRules: [{C53AA31B-36F2-4934-AFF8-F9B2A655A434}] => (Allow) LPort=1688
      FirewallRules: [{54DE8313-467B-4630-B400-993408B7783C}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
      FirewallRules: [{E435357C-2A84-4CA6-8C20-4D4AC40A0F5D}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
      FirewallRules: [{AF2C93D5-AEF4-41AD-839B-7B8A08C49174}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{83B05BD4-75AD-43A6-8824-18A571867E82}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
      FirewallRules: [{D9355A9C-C340-47F7-BE7F-E4A2CDC7387A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
      FirewallRules: [{12704C0B-01E5-4EB4-88F5-3DB2D19A07B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
      FirewallRules: [{42E1D5EF-E6E0-42B1-8DC9-F79406BB93EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

      ==================== Restore Points =========================

      ATTENTION: System Restore is disabled

      ==================== Faulty Device Manager Devices =============

      Name: Dispositivo USB desconocido (Error de restablecimiento de puerto)
      Description: Dispositivo USB desconocido (Error de restablecimiento de puerto)
      Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
      Manufacturer: (Controladora de host USB estándar)
      Service:
      Problem: : Windows has stopped this device because it has reported problems. (Code 43)
      Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (11/04/2017 03:21:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-PP344HH)
      Description: No se pudo activar la aplicación Microsoft.Getstarted_5.11.1641.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca debido al error: -2144927149. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/04/2017 03:15:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: El programa explorer.exe, versión 10.0.14393.1532, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

      Identificador de proceso: f60

      Hora de inicio: 01d35596f58bcde3

      Hora de finalización: 0

      Ruta de la aplicación: C:\Windows\explorer.exe

      Identificador de informe: f66f62d9-c18b-11e7-9cf3-90e6ba2b6342

      Nombre completo de paquete con errores:

      Identificador de aplicación relativa del paquete con errores:

      Error: (11/04/2017 03:14:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-PP344HH)
      Description: No se pudo activar la aplicación Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI debido al error: -2147024865. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/04/2017 03:14:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-PP344HH)
      Description: No se pudo activar la aplicación Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI debido al error: -2147024865. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/04/2017 03:04:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

      Error: (11/04/2017 03:03:58 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

      Error: (11/04/2017 02:56:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

      Error: (11/04/2017 02:56:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

      Error: (11/04/2017 02:26:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

      Error: (11/04/2017 02:26:06 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      hr=0xC004F074
      Argumentos de línea de comandos:
      RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1


      System errors:
      =============
      Error: (11/04/2017 03:27:23 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
      Description: Error de DCOM "1084" al intentar iniciar el servicio EventSystem con argumentos "No disponible" para ejecutar el servidor:
      {1BE1F766-5536-11D1-B726-00C04FB926AF}

      Error: (11/04/2017 03:27:10 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
      {DD522ACC-F821-461A-A407-50B198B896DC}

      Error: (11/04/2017 03:26:28 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

      Error: (11/04/2017 03:26:28 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

      Error: (11/04/2017 03:26:27 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
      {DD522ACC-F821-461A-A407-50B198B896DC}

      Error: (11/04/2017 03:26:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

      Error: (11/04/2017 03:26:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

      Error: (11/04/2017 03:26:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
      {DD522ACC-F821-461A-A407-50B198B896DC}

      Error: (11/04/2017 03:24:55 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

      Error: (11/04/2017 03:24:55 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PP344HH)
      Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor:
      {B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


      CodeIntegrity:
      ===================================
      Date: 2017-10-26 09:54:15.918
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-09-12 11:37:11.476
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-08-23 21:01:27.690
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-01-08 02:24:38.174
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2016-10-25 23:32:47.708
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


      ==================== Memory info ===========================

      Processor: Genuine Intel(R) CPU U7300 @ 1.30GHz
      Percentage of memory in use: 18%
      Total physical RAM: 4061.05 MB
      Available physical RAM: 3296.68 MB
      Total Virtual: 8157.05 MB
      Available Virtual: 7533.78 MB

      ==================== Drives ================================

      Drive c: (SISTEMA) (Fixed) (Total:121.91 GB) (Free:47.37 GB) NTFS
      Drive d: (DATOS) (Fixed) (Total:174.92 GB) (Free:166.79 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4F5F06F3)
      Partition 1: (Active) - (Size=388 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=121.9 GB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=895 MB) - (Type=27)
      Partition 4: (Not Active) - (Size=174.9 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================

    10. #10
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: Ccleaner Bloqueado por supuesto "Administrador"

      Dime si en modo seguro con red, al analizar con Malwarebytes surge el problema

      Soluciones a problemas frecuentes en Windows 10.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo