• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 13

    New Tab en Chrome (Solucionado)

    Hola, Entrando en algún sitio que no debía, me encontré con que al abrir el Chrome siempre me sale "New Tab" en lugar de mis páginas habituales. Quité las extensiones que parecían sospechosas, devolví el ...

          
    1. #1
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      New Tab en Chrome (Solucionado)

      Hola,

      Entrando en algún sitio que no debía, me encontré con que al abrir el Chrome siempre me sale "New Tab" en lugar de mis páginas habituales. Quité las extensiones que parecían sospechosas, devolví el Chrome a configuración original y nada.

      Suelo siempre ser capaz de arreglar estos entuertos por mi mismo, pero esta vez en lugar de buscar en ForoSpyware inútilmente me bajé Reimage y Spyhunter... Ya borré esos dos y luego hice los pasos habituales de Malwarebytes, JRT, AdwCleaner y CCleaner, pero nada, el New Tab sigue ahí impasible.

      ¿Qué puedo hacer? ¡Ayuda!

    2. #2
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.812

      Re: No consigo eliminar New Tab en Chrome

      Hola

      Seguí Todas las instrucciones que se dan en este post: Eliminar Adwares

      Volves con los dos reportes y nos comentas como sigue el problema.

      Saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    3. #3
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Log 1 de AdwCleaner:

      # AdwCleaner 7.0.5.0 - Logfile created on Wed Dec 13 15:23:25 2017
      # Updated on 2017/29/11 by Malwarebytes
      # Database: 12-13-2017.1
      # Running on Windows 7 Ultimate (X86)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services found.

      ***** [ Folders ] *****

      No malicious folders found.

      ***** [ Files ] *****

      PUP.Optional.Legacy, C:\Users\All Users\Documents\temp.dat
      PUP.Optional.Legacy, C:\Users\Public\Documents\temp.dat


      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      No malicious registry entries found.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries.

      *************************

      C:/AdwCleaner/AdwCleaner[C0].txt - [7311 B] - [2017/5/11 8:40:41]
      C:/AdwCleaner/AdwCleaner[C2].txt - [1638 B] - [2017/6/2 85]
      C:/AdwCleaner/AdwCleaner[S0].txt - [7026 B] - [2017/5/11 8:30:30]
      C:/AdwCleaner/AdwCleaner[S1].txt - [2629 B] - [2017/6/1 13:51:46]
      C:/AdwCleaner/AdwCleaner[S2].txt - [2302 B] - [2017/6/2 8:0:22]
      C:/AdwCleaner/AdwCleaner[S3].txt - [1505 B] - [2017/12/12 23:11:1]


      ########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt ##########

    4. #4
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Log 2 de AdwCleaner:

      # AdwCleaner 7.0.5.0 - Logfile created on Wed Dec 13 15:34:52 2017
      # Updated on 2017/29/11 by Malwarebytes
      # Running on Windows 7 Ultimate (X86)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      No malicious folders deleted.

      ***** [ Files ] *****

      Deleted: C:\Users\All Users\Documents\\temp.dat
      Deleted: C:\Users\Public\Documents\\temp.dat


      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      No malicious registry entries deleted.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[C0].txt - [7311 B] - [2017/5/11 8:40:41]
      C:/AdwCleaner/AdwCleaner[C2].txt - [1638 B] - [2017/6/2 85]
      C:/AdwCleaner/AdwCleaner[S0].txt - [7026 B] - [2017/5/11 8:30:30]
      C:/AdwCleaner/AdwCleaner[S1].txt - [2629 B] - [2017/6/1 13:51:46]
      C:/AdwCleaner/AdwCleaner[S2].txt - [2302 B] - [2017/6/2 8:0:22]
      C:/AdwCleaner/AdwCleaner[S3].txt - [1505 B] - [2017/12/12 23:11:1]
      C:/AdwCleaner/AdwCleaner[S4].txt - [1438 B] - [2017/12/13 15:23:25]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

    5. #5
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Log Malwarebytes

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 13/12/17
      Hora del análisis: 16:39
      Archivo de registro: ce35ab8f-e01b-11e7-b8a0-6cf049a6f70a.json
      Administrador: Sí

      -Información del software-
      Versión: 3.3.1.2183
      Versión de los componentes: 1.0.262
      Versión del paquete de actualización: 1.0.3481
      Licencia: Gratis

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x86
      Sistema de archivos: NTFS
      Usuario: Usuari-PC\Usuari

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 197085
      Amenazas detectadas: 0
      (No hay elementos maliciosos detectados)
      Amenazas en cuarentena: 0
      (No hay elementos maliciosos detectados)
      Tiempo transcurrido: 6 min, 32 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 0
      (No hay elementos maliciosos detectados)

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

    6. #6
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Hecho todo lo que me dijiste, pero el problema sigue ahí. Restablecí Chrome, busqué en el acceso directo y nada.

    7. #7
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.812

      Re: No consigo eliminar New Tab en Chrome

      Hola


      Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

      Descarga a Tu Escritorio Farbar Recovery Scan Tool considerando la versión adecuada para tu equipo.

      ¿Cómo saber si mi Windows es de 32 o 64 bits?


      Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.

      En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.

      Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.


      En Tu próxima respuesta, [B]copias y pegas el reporte Frst.txt de FRST


      Saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    8. #8
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Adjunto el log de FRST

      Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-12-2017
      Ran by Usuari (administrator) on USUARI-PC (13-12-2017 19:01:17)
      Running from C:\Users\Usuari\Downloads
      Loaded Profiles: Usuari (Available Profiles: Usuari)
      Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
      (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
      (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
      (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
      (Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
      (Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
      (Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe
      (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
      (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
      (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
      (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
      (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
      (Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
      (Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
      (Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
      (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
      (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
      (Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
      (Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
      (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
      (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
      (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
      (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
      HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
      HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
      HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-11-01] (Apple Inc.)
      HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421736 2011-12-08] (Apple Inc.)
      HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
      HKLM\...\Run: [] => [X]
      HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
      HKLM\...\Run: [PSUAMain] => C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [37624 2014-05-06] (Panda Security, S.L.)
      HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3567928 2017-12-05] (Dropbox, Inc.)
      HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [147456 2007-01-15] (Nero AG)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\Run: [Google Update] => C:\Users\Usuari\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-15] (Google Inc.)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\Run: [Google Photos Backup] => C:\Users\Usuari\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-08] (Google, Inc)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50143872 2015-11-17] (Skype Technologies S.A.)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7972528 2017-12-01] (Piriform Ltd)
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\...\MountPoints2: {d9a1df6b-7302-11e0-b120-6cf049a6f70a} - E:\AutoRun.exe
      HKLM\...\Providers\me1j2iqc: C:\Program Files\Coerersp Client\local32spl.dll <==== ATTENTION
      Startup: C:\Users\Usuari\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla e Inicio rápido de OneNote 2007.lnk [2012-05-10]
      ShortcutTarget: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
      GroupPolicy: Restriction - Chrome <==== ATTENTION
      GroupPolicyScripts: Restriction <==== ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
      Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
      Tcpip\..\Interfaces\{2D5FB675-7F67-4BCA-90A2-9F67D92204B2}: [DhcpNameServer] 80.58.61.250 80.58.61.254
      Tcpip\..\Interfaces\{CDB10544-B42E-4EFE-A9CC-3F400AAB5233}: [DhcpNameServer] 192.168.42.129

      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://es.msn.com/
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
      SearchScopes: HKU\S-1-5-21-2115918744-1183057720-115518605-1000 -> DefaultScope {7E4CB08E-24A3-450D-B3E7-A4EC3A8989E6} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
      SearchScopes: HKU\S-1-5-21-2115918744-1183057720-115518605-1000 -> E4BF950CFB474BDEB8CC17BD71AD0CBD URL = hxxp://www.google.com/search?hl=en&q={searchTerms}
      SearchScopes: HKU\S-1-5-21-2115918744-1183057720-115518605-1000 -> {7E4CB08E-24A3-450D-B3E7-A4EC3A8989E6} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
      SearchScopes: HKU\S-1-5-21-2115918744-1183057720-115518605-1000 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://es.search.yahoo.com/search?p={searchTerms}&fr=mkg028
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-10-20] (Microsoft Corporation)
      BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-27] (Oracle Corporation)
      BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
      BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2017-12-02] (Microsoft Corporation)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-11-07] (Microsoft Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-27] (Oracle Corporation)
      Toolbar: HKU\S-1-5-21-2115918744-1183057720-115518605-1000 -> No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
      Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
      Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-02] (Microsoft Corporation)
      Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-02] (Microsoft Corporation)
      Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-02] (Microsoft Corporation)
      Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-02] (Microsoft Corporation)

      FireFox:
      ========
      FF ProfilePath: C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default [2017-12-13]
      FF NetworkProxy: Mozilla\Firefox\Profiles\vchrypod.default -> no_proxies_on", "*.local"
      FF Extension: (Yahoo! Toolbar) - C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2013-03-14] [Legacy] [not signed]
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2012-03-24] ()
      FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2010-10-22] (Adobe Systems, Inc.)
      FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2011-11-14] ()
      FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
      FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-02-27] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-02-27] (Oracle Corporation)
      FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
      FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-10-20] (Microsoft Corporation)
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-20] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
      FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
      FF Plugin HKU\S-1-5-21-2115918744-1183057720-115518605-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Usuari\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin HKU\S-1-5-21-2115918744-1183057720-115518605-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Usuari\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
      FF Plugin HKU\S-1-5-21-2115918744-1183057720-115518605-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuari\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-17] (Unity Technologies ApS)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> hxxp://www.google.com/
      CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP","hxxp://www.amazon.es/gp/bit/amazonserp/ref=bit_bds-p24_serp_cr_es_display?ie=UTF8&tagbase=bds-p24&tbrId=v1_abb-channel-24_67f1d50a422a4aaeb8c044ccff212df7_39_1007_20130825_ES_cr_sp_","hxxps://www.google.com/"
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default [2017-12-13]
      CHR Extension: (Adobe Acrobat) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-10-22]
      CHR Extension: (Documents de Google fora de línia) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
      CHR Extension: (AdBlock) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
      CHR Extension: (Google Keep: notes i llistes) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-12]
      CHR Extension: (Player para ver Movistar+) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2016-08-15]
      CHR Extension: (Mailtrack per a Gmail i Inbox: Email tracking) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2017-12-12]
      CHR Extension: (Sistema de pagaments de Chrome Web Store) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-24]
      CHR Extension: (Chrome Media Router) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-12]
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-12-13]
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-12-13]
      CHR Extension: (Presentacions) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-21]
      CHR Extension: (Documents) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-21]
      CHR Extension: (Google Drive) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-30]
      CHR Extension: (YouTube) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-30]
      CHR Extension: (Adobe Acrobat) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-07]
      CHR Extension: (Fulls de càlcul) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-21]
      CHR Extension: (Documents de Google fora de línia) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-30]
      CHR Extension: (Google Keep: notes i llistes) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-06]
      CHR Extension: (Extensió de Chrome per a Google Keep) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2017-02-13]
      CHR Extension: (Sistema de pagaments de Chrome Web Store) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-22]
      CHR Extension: (Gmail) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-30]
      CHR Extension: (Chrome Media Router) - C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-06]
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-13]
      CHR HKLM\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [5096624 2017-11-22] (Microsoft Corporation)
      S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
      S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
      R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [43336 2017-12-05] (Dropbox, Inc.)
      S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2010-10-30] (Macrovision Europe Ltd.) [File not signed]
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4563920 2017-11-01] (Malwarebytes)
      R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [141560 2014-05-05] (Panda Security, S.L.)
      S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
      R3 NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG) [File not signed]
      R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [61688 2014-05-22] (Panda Security, S.L.)
      R2 PSUAService; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe [38136 2014-05-06] (Panda Security, S.L.)
      R2 wiasvc; C:\ProgramData\Microsoft\Windows\Image\capCADF.tmp:ad [212994 ] () [File not signed] <==== ATTENTION <==== ATTENTION
      S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2014-12-20] (Elaborate Bytes AG)
      S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2017-02-02] (LogMeIn, Inc.)
      R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [221112 2017-12-12] (Malwarebytes)
      R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [88992 2014-05-02] (Panda Security, S.L.)
      R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [166816 2014-05-02] (Panda Security, S.L.)
      R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [110496 2014-05-02] (Panda Security, S.L.)
      R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [125216 2014-05-02] (Panda Security, S.L.)
      R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [96160 2014-05-02] (Panda Security, S.L.)
      S4 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [61984 2014-05-02] (Panda Security, S.L.)
      R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [121888 2014-05-02] (Panda Security, S.L.)
      R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [288032 2014-05-02] (Panda Security, S.L.)
      R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [208800 2014-05-02] (Panda Security, S.L.)
      R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [109856 2014-05-02] (Panda Security, S.L.)
      R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [243872 2014-05-02] (Panda Security, S.L.)
      R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [96928 2014-05-02] (Panda Security, S.L.)
      S3 papycpu; C:\Windows\system32\Drivers\papycpu.sys [1888 1998-09-14] () [File not signed]
      R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [137760 2014-05-05] (Panda Security, S.L.)
      R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [103456 2014-05-05] (Panda Security, S.L.)
      R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [166432 2014-05-05] (Panda Security, S.L.)
      R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [112160 2014-05-05] (Panda Security, S.L.)
      R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [122912 2014-05-06] (Panda Security, S.L.)
      R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [98336 2014-05-05] (Panda Security, S.L.)
      R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [48736 2014-03-25] (Panda Security, S.L.)
      S3 QCDonner; C:\Windows\System32\DRIVERS\LVCD.sys [474304 2004-04-26] (Logitech Inc.)
      R3 WmBEnum; C:\Windows\System32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
      S3 WmFilter; C:\Windows\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
      S3 WmHidLo; C:\Windows\System32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
      R3 WmVirHid; C:\Windows\System32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
      R3 WmXlCore; C:\Windows\System32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
      S3 dbx; system32\DRIVERS\dbx.sys [X]
      U5 papyjoy; C:\Windows\System32\Drivers\papyjoy.sys [1760 1998-09-14] () [File not signed]
      S3 pnicml; \??\C:\Users\Usuari\AppData\Local\Temp\pnicml.sys [X]
      S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
      S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
      S3 VGPU; System32\drivers\rdvgkmd.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-13 19:01 - 2017-12-13 19:01 - 000023535 _____ C:\Users\Usuari\Downloads\FRST.txt
      2017-12-13 19:01 - 2017-12-13 19:01 - 000000000 ____D C:\FRST
      2017-12-13 19:00 - 2017-12-13 19:00 - 001752576 _____ (Farbar) C:\Users\Usuari\Downloads\FRST.exe
      2017-12-13 16:46 - 2017-12-13 16:46 - 000001559 _____ C:\Users\Usuari\Desktop\mb.txt
      2017-12-13 16:38 - 2017-12-13 17:56 - 000000069 _____ C:\Users\Public\Documents\temp.dat
      2017-12-13 16:25 - 2017-12-13 16:25 - 000018944 ___SH C:\Users\Usuari\Downloads\Thumbs.db
      2017-12-13 10:32 - 2017-12-13 10:57 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\vlc
      2017-12-13 10:31 - 2017-12-13 10:31 - 000001024 _____ C:\Users\Public\Desktop\VLC media player.lnk
      2017-12-13 10:31 - 2017-12-13 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      2017-12-13 10:31 - 2017-12-13 10:31 - 000000000 ____D C:\Program Files\VideoLAN
      2017-12-13 10:30 - 2017-12-13 10:30 - 030863288 _____ C:\Users\Usuari\Downloads\vlc-2.2.8-win32.exe
      2017-12-13 10:24 - 2017-12-13 10:24 - 000000000 ____D C:\Users\Usuari\AppData\Local\{4E0ECF9A-D8E1-4961-806C-175598E9321E}
      2017-12-13 08:33 - 2017-12-13 08:33 - 000114872 _____ C:\Users\Usuari\AppData\Local\GDIPFONTCACHEV1.DAT
      2017-12-13 08:32 - 2017-12-13 08:32 - 001792088 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-12-13 00:22 - 2017-12-13 00:23 - 000008694 _____ C:\Users\Usuari\Documents\cc_20171213_002232.reg
      2017-12-13 00:15 - 2017-12-13 00:15 - 011204152 _____ (Piriform Ltd) C:\Users\Usuari\Downloads\No confirmat 675031.crdownload
      2017-12-13 00:15 - 2017-12-13 00:15 - 011204152 _____ (Piriform Ltd) C:\Users\Usuari\Downloads\ccsetup538 (1).exe
      2017-12-13 00:12 - 2014-03-25 14:15 - 000048736 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
      2017-12-13 00:08 - 2017-12-13 00:09 - 008187336 _____ (Malwarebytes) C:\Users\Usuari\Downloads\AdwCleaner.exe
      2017-12-13 00:08 - 2017-12-13 00:08 - 000001863 _____ C:\Users\Usuari\Desktop\JRT.txt
      2017-12-13 00:05 - 2017-12-13 00:05 - 001790024 _____ (Malwarebytes) C:\Users\Usuari\Downloads\JRT (1).exe
      2017-12-13 00:04 - 2017-12-13 00:04 - 007189760 _____ (VS Revo Group ) C:\Users\Usuari\Downloads\revosetup.exe
      2017-12-12 20:49 - 2017-12-12 20:49 - 000221112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
      2017-12-12 20:49 - 2017-12-12 20:49 - 000002020 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-12-12 20:49 - 2017-12-12 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-12-12 20:49 - 2017-11-29 09:11 - 000059896 _____ C:\Windows\system32\Drivers\mbae.sys
      2017-12-12 20:48 - 2017-12-12 20:48 - 083316440 _____ (Malwarebytes ) C:\Users\Usuari\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
      2017-12-12 15:10 - 2017-12-12 15:33 - 3624130021 _____ C:\Users\Usuari\Desktop\Star wars El despertar de la fuerza (microHD) (EliteTorrent.net).mkv
      2017-12-12 15:09 - 2017-12-12 15:09 - 000018135 _____ C:\Users\Usuari\Downloads\Star-wars-El-despertar-de-la-fuerza-microHD(EliteTorrent).torrent
      2017-12-12 15:06 - 2017-12-12 15:14 - 000000000 ____D C:\Users\Usuari\Desktop\Star.Wars.Episode.VII.The Force Awakens.2015.BRRip.XviD.AC3.SBT
      2017-12-12 15:06 - 2017-12-12 15:06 - 000016795 _____ C:\Users\Usuari\Downloads\Star_Wars_Episode_VII_The_Force_Awakens_2015_BRRip.torrent
      2017-12-12 15:02 - 2017-12-12 15:02 - 000572653 _____ ( ) C:\Users\Usuari\Downloads\No confirmat 113452.crdownload
      2017-12-12 15:01 - 2017-12-12 15:21 - 000000000 ____D C:\Users\Usuari\Desktop\Star Wars el Despertar de la Fuerza [MicroHD 1080p][AC3 5.1-DTS 5.1-Castellano-AC3 5.1 Ingles+Subs][ES-EN]
      2017-12-12 15:00 - 2017-12-12 15:00 - 000033546 _____ C:\Users\Usuari\Downloads\Star_Wars_el_Despertar_de_la_Fuerza_MicroHD_1080p.torrent
      2017-12-06 20:26 - 2017-12-06 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-12-05 02:06 - 2017-12-05 02:06 - 000043336 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035432 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
      2017-12-05 02:06 - 2017-12-05 02:06 - 000035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
      2017-11-22 20:40 - 2017-11-22 20:40 - 000002764 _____ C:\Users\Usuari\Desktop\TS4 - Drecera.lnk
      2017-11-22 19:00 - 2017-11-22 19:00 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\uTorrent
      2017-11-22 18:56 - 2017-11-22 18:58 - 000000000 ____D C:\Users\Usuari\Desktop\SIMS4
      2017-11-22 18:53 - 2017-11-22 18:55 - 1417493949 _____ C:\Users\Usuari\Downloads\Archivos necesarios Los Sims 4 - MrKifixo.rar
      2017-11-19 21:58 - 2017-11-19 21:58 - 000000000 ____D C:\Users\Usuari\Documents\Archivos de Outlook
      2017-11-19 20:16 - 2017-11-19 20:16 - 062397600 _____ (Electronic Arts) C:\Users\Usuari\Downloads\OriginThinSetup (1).exe
      2017-11-19 20:12 - 2017-11-19 20:13 - 062397600 _____ (Electronic Arts) C:\Users\Usuari\Downloads\OriginThinSetup.exe
      2017-11-19 17:42 - 2017-11-22 18:43 - 000000000 ____D C:\Games
      2017-11-19 16:59 - 2017-11-19 17:35 - 000000000 ____D C:\Users\Usuari\Desktop\The Sims 4 [FitGirl Repack]
      2017-11-19 16:58 - 2017-11-19 16:58 - 000151307 _____ C:\Users\Usuari\Downloads\The Sims 4 - FitGirl Repack.torrent
      2017-11-19 16:55 - 2017-11-19 16:57 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\qBittorrent
      2017-11-19 16:55 - 2017-11-19 16:55 - 000000000 ____D C:\Users\Usuari\AppData\Local\qBittorrent
      2017-11-19 16:54 - 2017-11-19 16:54 - 000001001 _____ C:\Users\Usuari\Desktop\qBittorrent.lnk
      2017-11-19 16:54 - 2017-11-19 16:54 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\qBittorrent
      2017-11-19 16:54 - 2017-11-19 16:54 - 000000000 ____D C:\Program Files\qBittorrent
      2017-11-19 16:53 - 2017-11-19 16:53 - 006900337 _____ C:\Users\Usuari\Downloads\qbittorrent_3-0-5_setup.exe
      2017-11-19 16:41 - 2017-11-19 16:46 - 000000000 ____D C:\Users\Usuari\Desktop\The.Sims.4-RELOADED
      2017-11-19 16:35 - 2017-11-19 16:35 - 002013135 _____ C:\Users\Usuari\Downloads\Los Sims 4 - MrKifixo.rar

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-13 19:00 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
      2017-12-13 18:40 - 2015-07-15 22:14 - 000000896 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
      2017-12-13 18:11 - 2009-07-14 05:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2017-12-13 18:11 - 2009-07-14 05:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2017-12-13 16:50 - 2015-07-15 22:13 - 000000892 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
      2017-12-13 16:50 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2017-12-13 16:48 - 2010-10-30 18:22 - 001699838 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-12-13 16:48 - 2009-07-14 09:48 - 000753736 _____ C:\Windows\system32\perfh00A.dat
      2017-12-13 16:48 - 2009-07-14 09:48 - 000158176 _____ C:\Windows\system32\perfc00A.dat
      2017-12-13 16:32 - 2014-09-22 20:14 - 000188928 ___SH C:\Users\Usuari\Documents\Thumbs.db
      2017-12-13 16:23 - 2017-05-11 09:28 - 000000000 ____D C:\AdwCleaner
      2017-12-13 16:20 - 2016-09-12 09:57 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\Opera Software
      2017-12-13 16:20 - 2016-09-12 09:57 - 000000000 ____D C:\Users\Usuari\AppData\Local\Opera Software
      2017-12-13 16:20 - 2016-09-12 09:56 - 000000000 ____D C:\Program Files\Opera
      2017-12-13 10:27 - 2010-10-30 18:27 - 000000000 ____D C:\Users\Usuari\AppData\Local\Windows Live
      2017-12-13 00:17 - 2012-01-05 19:23 - 000000000 ____D C:\Program Files\CCleaner
      2017-12-13 00:16 - 2017-05-11 09:52 - 000000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-12-12 23:43 - 2009-07-14 05:53 - 000032546 _____ C:\Windows\Tasks\SCHEDLGU.TXT
      2017-12-12 21:22 - 2010-10-30 18:17 - 000000000 ____D C:\Users\Usuari
      2017-12-12 20:49 - 2012-01-16 08:21 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-12-12 15:02 - 2017-06-26 20:31 - 000001838 __RSH C:\ProgramData\ntuser.pol
      2017-12-12 10:42 - 2016-03-21 11:49 - 000002060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-12-11 10:03 - 2010-10-30 18:39 - 000000000 ____D C:\Windows\system32\Macromed
      2017-12-07 09:16 - 2012-06-28 21:48 - 000000000 ____D C:\Users\Usuari\AppData\Roaming\Skype
      2017-12-06 20:26 - 2015-07-15 22:13 - 000000000 ____D C:\Program Files\Dropbox
      2017-12-02 11:02 - 2017-07-05 16:44 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2017-12-02 11:01 - 2010-10-31 15:53 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
      2017-12-02 11:01 - 2009-07-14 03:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-12-02 10:59 - 2010-10-31 15:51 - 000000000 ____D C:\Program Files\Microsoft Office
      2017-11-29 20:17 - 2017-10-22 12:26 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
      2017-11-22 20:42 - 2017-02-15 11:33 - 000000000 ____D C:\Users\Usuari\Documents\Electronic Arts
      2017-11-22 20:35 - 2017-02-21 12:16 - 000000000 ____D C:\ProgramData\Package Cache
      2017-11-22 20:34 - 2011-01-14 10:06 - 000000000 ___HD C:\Windows\msdownld.tmp
      2017-11-22 20:34 - 2011-01-14 10:06 - 000000000 ____D C:\Windows\system32\directx
      2017-11-21 18:46 - 2012-01-06 19:47 - 000000000 ____D C:\ProgramData\Origin
      2017-11-21 18:46 - 2010-11-21 13:16 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
      2017-11-21 18:45 - 2009-07-14 05:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
      2017-11-19 18:16 - 2013-06-21 11:46 - 000000000 ___SD C:\Users\Usuari\AppData\LocalLow\Temp
      2017-11-19 10:12 - 2017-04-24 20:38 - 000000000 ____D C:\Users\Usuari\AppData\Local\Adobe
      2017-11-19 10:12 - 2012-10-16 18:10 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
      2017-11-19 10:12 - 2011-09-18 13:42 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

      ==================== Files in the root of some directories =======

      2013-08-25 22:15 - 2013-08-25 22:15 - 000129536 _____ () C:\Users\Public\AlexaNSISPlugin.4648.dll
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Roaming\9109
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Local\8237
      2017-04-24 20:39 - 2017-04-24 20:39 - 000001456 _____ () C:\Users\Usuari\AppData\Local\Adobe Guardar para Web 13.0 Prefs

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-12-09 09:17

      ==================== End of FRST.txt ============================

    9. #9
      Moderador Gral.
      Avatar de @Leosolari
      Registrado
      jun 2007
      Ubicación
      Argentina
      Mensajes
      58.812

      Re: No consigo eliminar New Tab en Chrome

      Hola




      Abri un nuevo archivo Notepad y copia y pega este contenido:


      Start
      CreateRestorePoint:
      CloseProcesses
      HKLM\...\Run: [] => [X]
      HKLM\...\Providers\me1j2iqc: C:\Program Files\Coerersp Client\local32spl.dll <==== ATTENTION
      GroupPolicy: Restriction - Chrome <==== ATTENTION
      GroupPolicyScripts: Restriction <==== ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
      FF ProfilePath: C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default [2017-12-13]
      FF NetworkProxy: Mozilla\Firefox\Profiles\vchrypod.default -> no_proxies_on", "*.local"
      FF Extension: (Yahoo! Toolbar) - C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2013-03-14] [Legacy] [not signed]
      FF Plugin HKU\S-1-5-21-2115918744-1183057720-115518605-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuari\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-17] (Unity Technologies ApS)
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-13]
      CHR HKLM\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      R2 wiasvc; C:\ProgramData\Microsoft\Windows\Image\capCADF.tmp:ad [212994 ] () [File not signed] <==== ATTENTION <==== ATTENTION
      S3 dbx; system32\DRIVERS\dbx.sys [X]
      U5 papyjoy; C:\Windows\System32\Drivers\papyjoy.sys [1760 1998-09-14] () [File not signed]
      S3 pnicml; \??\C:\Users\Usuari\AppData\Local\Temp\pnicml.sys [X]
      S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
      S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
      S3 VGPU; System32\drivers\rdvgkmd.sys [X]
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Roaming\9109
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Local\8237
      2017-04-24 20:39 - 2017-04-24 20:39 - 000001456 _____ () C:\Users\Usuari\AppData\Local\Adobe Guardar para Web 13.0 Prefs
      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end




      • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

      Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.


      • Ejecutas Frst.exe.
      • Presionas el botón Fix y aguardas a que termine.
      • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      • Lo pegas en tu próxima respuesta.






      Saludos
      Síguenos en Twitter y hazte nuestro amigo en Facebook.

    10. #10
      Usuario Avatar de jordidm99
      Registrado
      feb 2012
      Ubicación
      Manlleu
      Mensajes
      14

      Re: No consigo eliminar New Tab en Chrome

      Fixlog de FRST - Ahora ya no sale New Tab en Chrome, con lo que supongo que ya está?

      -----------------

      Fix result of Farbar Recovery Scan Tool (x86) Version: 13-12-2017
      Ran by Usuari (14-12-2017 12:01:36) Run:1
      Running from C:\Users\Usuari\Desktop
      Loaded Profiles: Usuari (Available Profiles: Usuari)
      Boot Mode: Normal

      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses
      HKLM\...\Run: [] => [X]
      HKLM\...\Providers\me1j2iqc: C:\Program Files\Coerersp Client\local32spl.dll <==== ATTENTION
      GroupPolicy: Restriction - Chrome <==== ATTENTION
      GroupPolicyScripts: Restriction <==== ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
      FF ProfilePath: C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default [2017-12-13]
      FF NetworkProxy: Mozilla\Firefox\Profiles\vchrypod.default -> no_proxies_on", "*.local"
      FF Extension: (Yahoo! Toolbar) - C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2013-03-14] [Legacy] [not signed]
      FF Plugin HKU\S-1-5-21-2115918744-1183057720-115518605-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuari\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-17] (Unity Technologies ApS)
      CHR Profile: C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-13]
      CHR HKLM\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      R2 wiasvc; C:\ProgramData\Microsoft\Windows\Image\capCADF.tmp:ad [212994 ] () [File not signed] <==== ATTENTION <==== ATTENTION
      S3 dbx; system32\DRIVERS\dbx.sys [X]
      U5 papyjoy; C:\Windows\System32\Drivers\papyjoy.sys [1760 1998-09-14] () [File not signed]
      S3 pnicml; \??\C:\Users\Usuari\AppData\Local\Temp\pnicml.sys [X]
      S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
      S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
      S3 VGPU; System32\drivers\rdvgkmd.sys [X]
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Roaming\9109
      2017-03-18 09:46 - 2017-03-18 09:46 - 000000012 _____ () C:\Users\Usuari\AppData\Local\8237
      2017-04-24 20:39 - 2017-04-24 20:39 - 000001456 _____ () C:\Users\Usuari\AppData\Local\Adobe Guardar para Web 13.0 Prefs
      CMD: ipconfig /flushdns
      CMD: ipconfig /renew
      CMD: bitsadmin /reset /allusers
      RemoveProxy:
      EmptyTemp:
      Hosts:
      end
      *****************

      Restore point was successfully created.
      CloseProcesses => Error: No automatic fix found for this entry.
      HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully.
      "HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\me1j2iqc" => removed successfully.
      HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order me1j2iqc => removed successfully.
      C:\Windows\system32\GroupPolicy\Machine => moved successfully
      C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
      "C:\Windows\system32\GroupPolicy\Machine" => not found.
      "HKLM\SOFTWARE\Policies\Google" => removed successfully.
      C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default => moved successfully
      C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default => path removed successfully.
      FF NetworkProxy: Mozilla\Firefox\Profiles\vchrypod.default -> no_proxies_on", "*.local" => "C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default\prefs.js" not found
      C:\Users\Usuari\AppData\Roaming\Mozilla\Firefox\Profiles\vchrypod.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} => path removed successfully.
      "HKU\S-1-5-21-2115918744-1183057720-115518605-1000\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => removed successfully.
      C:\Users\Usuari\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => moved successfully
      C:\Users\Usuari\AppData\Local\Google\Chrome\User Data\System Profile => moved successfully
      "HKLM\SOFTWARE\Google\Chrome\Extensions\ccjleegmemocfpghkhpjmiccjcacackp" => removed successfully.
      "HKLM\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj" => removed successfully.
      wiasvc => Service stopped successfully.
      "HKLM\System\CurrentControlSet\Services\wiasvc" => removed successfully.
      wiasvc => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\dbx" => removed successfully.
      dbx => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\papyjoy" => removed successfully.
      papyjoy => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\pnicml" => removed successfully.
      pnicml => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\Synth3dVsc" => removed successfully.
      Synth3dVsc => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\tsusbhub" => removed successfully.
      tsusbhub => service removed successfully.
      "HKLM\System\CurrentControlSet\Services\VGPU" => removed successfully.
      VGPU => service removed successfully.
      C:\Users\Usuari\AppData\Roaming\9109 => moved successfully
      C:\Users\Usuari\AppData\Local\8237 => moved successfully
      C:\Users\Usuari\AppData\Local\Adobe Guardar para Web 13.0 Prefs => moved successfully

      ========= ipconfig /flushdns =========


      Configuraci¢n IP de Windows

      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

      ========= End of CMD: =========


      ========= ipconfig /renew =========


      Configuraci¢n IP de Windows


      Adaptador de Ethernet Conexi¢n de *rea local:

      Sufijo DNS espec¡fico para la conexi¢n. . : Home
      V¡nculo: direcci¢n IPv6 local. . . : fe80::289a:7cf9:b683:2ceb%10
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.36
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.1.1

      Adaptador de t£nel isatap.Home:

      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . : Home

      Adaptador de t£nel Teredo Tunneling Pseudo-Interface:

      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :

      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========


      BITSADMIN version 3.0 [ 7.5.7601 ]
      BITS administration utility.
      (C) Copyright 2000-2006 Microsoft Corp.

      BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
      Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

      0 out of 0 jobs canceled.

      ========= End of CMD: =========


      ========= RemoveProxy: =========

      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\S-1-5-21-2115918744-1183057720-115518605-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.


      ========= End of RemoveProxy: =========

      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      =========== EmptyTemp: ==========

      BITS transfer queue => 8388608 B
      DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6224416 B
      Java, Flash, Steam htmlcache => 907 B
      Windows/system/drivers => 30886595 B
      Edge => 0 B
      Chrome => 88124848 B
      Firefox => 34215375 B
      Opera => 0 B

      Temp, IE cache, history, cookies, recent:
      Users => 0 B
      Default => 66228 B
      Public => 0 B
      ProgramData => 0 B
      systemprofile => 1737400 B
      LocalService => 132244 B
      NetworkService => 66868 B
      Usuari => 232136167 B

      RecycleBin => 0 B
      EmptyTemp: => 383.4 MB temporary data Removed.

      ================================


      The system needed a reboot.

      ==== End of Fixlog 12:02:53 ====

    Página 1 de 2 12 ÚltimoÚltimo