Laptop con diversas fallas l

Hola buen día, tengo una laptop con las siguientes características:

Operating System: Windows 10 Home Single Language 64-bit (10.0, Build 17763) (17763.rs5_release.180914-1434) Memoria física instalada (RAM) 4.00 GB Page File: 9613MB used, 2531MB available Memoria física disponible 369 MB Memoria virtual total 11.9 GB Memoria virtual disponible 2.42 GB Espacio de archivo de paginación 8.50 GB Procesador Intel® Celeron® CPU 1000M @ 1.80GHz, 1800 Mhz, 2 procesadores principales, 2 procesadores lógicos Disco duro; Tamaño 931.51 GB (1,000,202,273,280 bytes)

El problema que presenta el equipo es que presenta diversas fallas, entre ellas en panel de control aparece en blanco, por momentos no funciona la opción de inicio o el área de búsqueda, no aparecen los iconos del escritorio, uso del disco al 100%, por momentos mouse no funciona o se congela, no aparecen varias opciones del menú configuración,equipo lento, no abre navegador de Internet Opera, anteriormente presento pantallazo azul, no se que se podría hacer, agradezco mucho su ayuda

Hola @CARLOS_ALFREDO_BELTR

Una de las posibles fallas, ya que pueden ser varias, es que el equipo este intentando actualizar y no lo logra ya que tu versión de Windows 10 Build 17763 (corresponde a la 1809, y actualmente va por la versión 1909.

Ademas de Virus, basuras varias y otras yerbas, que ya iremos viendo.

Por el momento intenta actualizar desde Windows Update, busca e instala todas las actualizaciones que te aparezcan, incluso la versión 1909.

Si no puedes desde Windows Update intenta directamente desde la pagina de Microsoft:

https://www.microsoft.com/es-es/software-download/windows10

Presionas en Actualizar ahora

Cualquier problema o error subes imágenes.

• Como subir imágenes al Foro?

Salu2

De momento no me es posible abrir navegador alguno de Internet, voy a tratar de ingresar en modo seguro.

Hola @CARLOS_ALFREDO_BELTR

Primero intenta desde Windows Update.

Luego intenta desde Modo Seguro con Red.

Salu2

Desde modo normal, al ingresar a windows update aparece en blanco , desde modo seguro, al ingresar automáticamente se cierra la opción de configuración, al utilizar el solucionador de problemas de windows update me aparece la siguiente información:

Sin título1368×520 19.6 KB

Sin título 21368×520 20.4 KB

Sin título31368×520 21.6 KB

Sin título 41368×520 21.1 KB

Sin título 51368×520 18.4 KB

Hola @CARLOS_ALFREDO_BELTR

Windows Update debe ejecutarse en Modo Normal.

En Modo Seguro con Red me refería a la descarga de la actualización desde la pagina de Microsoft con el navegador.

Salu2

Realice la descarga de las actualizaciones, pero no me permite instalarlas, ya que me indica que no se aceptan en el equipo de modo externo, así mismo trate de aplicar la última versión de Windows 10, pero me marca error 0x80072ee7 así como el 0xc0020036 lo que ayudó a solucionar algunos errores fue actualizar el controlador del adaptador de pantalla, sin embargo, al ingresar en modo normal y abrir Windows Update, este sigue apareciendo en blanco.

Hola:

Como ejecutaste la ultimo versión en Modo Seguro? Reinicia en Modo Normal y ejecútala desde allí.

Si aun persisten los errores intenta lo siguiente:

Paso 1: Descarga FSS.exe a tu escritorio.

• Ejecuta FSS.exe (Presiona clic derecho y seleccionas Ejecutar como administrador)

Marca todas las opciones:

• Presiona el botón Scan y espera a que termine su trabajo.

• Se abrirá un Bloc de notas. Copia y pega el contenido en tu próxima respuesta.

Paso 2: Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

• Ejecuta FRST.exe.
• En el mensaje de la ventana del Disclaimer, pulsamos Yes
• En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
• Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Nota Importante: Lleva las herramientas a través de un USB desde otro equipo en el que puedas usar un navegador, y las colocas en el escritorio de este equipo, y sigues los pasos.

Hola buen día, aquí están los reportes solicitados:

Farbar Service Scanner Version: 14-12-2019
Ran by Carlos Beltrán (administrator) on 12-02-2020 at 22:17:14
Running from "C:\Users\Carlos Beltrán\Downloads"
Microsoft Windows 10 Home Single Language  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 12-02-2020
Ejecutado por Carlos Beltrán (administrador) sobre CARLOS (LENOVO 20156) (13-02-2020 12:04:03)
Ejecutado desde C:\Users\Carlos Beltrán\Desktop
Perfiles cargados: Carlos Beltrán (Perfiles disponibles: Margarita & Carlos Beltrán)
Platform: Windows 10 Home Single Language Versión 1809 17763.973 (X64) Idioma: Español (México)
Navegador predeterminado: Opera
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Carlos Beltrán\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.850_none_7e18264b4d00f498\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-10] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-25] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508256 2019-04-24] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [USB Security] => C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528 2015-01-31] (Lanzhou Itanium Software Technology Co., Ltd. -> Zbshareware Lab)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1213848 2010-09-14] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5888320 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HPUsageTracking] => C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe "C:\Program Files (x86)\HP\HP UT\"
HKLM-x32\...\Run: [Argente Utilities] => C:\Program Files (x86)\Argente Utilities\ArgenteU.exe [2939904 2016-03-13] (Raúl Argente) [Archivo no firmado]
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-09-01] (Glarysoft LTD -> Glarysoft Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.75\Installer\chrmstp.exe [2019-09-11] (Google LLC -> Google LLC)
Startup: C:\Users\Carlos Beltrán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-03-03]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
BootExecute: autocheck autochk *  
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {04DF93D6-0C22-4361-9E75-B64028E34E26} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {05D77044-2F45-4FC9-9CD7-C1081B4B41E0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {093BE64A-2A6F-45B6-A375-81E5E07F63D1} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0ED64537-9796-4D27-859F-A31F89E63095} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1744E957-974E-406A-B862-72DFB88E1D86} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {1F25DD24-C654-4729-AB55-8EB34502B518} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {21D2B639-5E98-4C58-8E94-1A92C2C0470B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {253BD903-6E48-48A9-B706-61B438AB8BA7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-10] (Adobe Inc. -> Adobe)
Task: {27C59E3F-056F-4AE2-9B89-D853FE110E39} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {2B52A4C9-54AD-4EA1-AA40-686EAE06D76E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3E91AA1F-6FD7-4037-A326-A3CC5A8441B4} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {3F80080D-F1C2-4019-9200-6048BDCF03C9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {4B2DDF00-1702-44EA-B3B2-8ED5A9BF84B8} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2391081161-46834104-153621467-1009 => C:\Users\Carlos Beltrán\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [86824 2019-12-18] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {583591D9-163F-4B02-A9D8-7B4318C951A2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {5F0CE0F8-C218-4151-B9B6-C43054A88EA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {634B9C95-1208-4080-93B6-75B7C35A0644} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {656D9143-8D2D-43EF-AA93-E1450A93D518} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1952368 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {65CF1C02-53BD-4F8C-93F0-252D04A8775A} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2391081161-46834104-153621467-1001 => C:\Users\CARLOSALFREDO\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
Task: {662647FF-8867-4EB3-B144-7722D47D17E6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {69A27152-4748-4E63-96A1-479495AB002F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {6B4EA909-B9C4-47F9-B6A9-F7199103F06B} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Carlos Beltrán\Desktop\adwcleaner_7.4.1.exe
Task: {7600C10E-5C58-4F08-81F6-150E03E66BC8} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Carlos Beltrán\Desktop\esetonlinescanner_esl.exe
Task: {7950EEE6-1DAC-42AB-ABEE-EA748DC46D1B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {7DFE5BD8-59ED-4E80-A676-88B97D7D698C} - System32\Tasks\Opera scheduled Autoupdate 1521601420 => c:\program files\opera\launcher.exe
Task: {7F016F13-1C9F-41B6-AE8D-28C4456D528D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8F7B4FEC-7F9B-49EB-A0FE-EB66668CE218} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {93952C9D-31FE-4994-B075-F086EA4604CA} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2391081161-46834104-153621467-1001 => C:\Users\CARLOSALFREDO\AppData\Local\MEGAsync\MEGAupdater.exe
Task: {95776885-AD2B-4B68-AD8B-F7F5BC3D6524} - System32\Tasks\Lenovo\sysrun-5388 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-5388.cmd 
Task: {97594394-E4F0-441B-9020-3A8F8B7B058D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-27] (Google Inc -> Google LLC)
Task: {98F600DE-B437-4DF2-9A82-2ED07B9DD7E7} - System32\Tasks\Lenovo\sysrun-26466 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-26466.cmd 
Task: {9A01A1C0-57BE-486B-A7C5-B7A98E871AA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A4AF7CC5-0E12-40FB-A3F5-DD0B94C567B7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {AA387DDC-4430-4F38-81A8-CFD12B9ED0D8} - System32\Tasks\Lenovo\sysrun-25385 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-25385.cmd 
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B6F6DED4-EE94-45BC-B2C8-35FB19DFF932} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe
Task: {B7EAA85D-4CB9-4709-991C-E00683D6FEEE} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2391081161-46834104-153621467-1009 => C:\ProgramData\MEGAsync\MEGAupdater.exe [615160 2019-09-15] (Mega Limited -> Mega Limited)
Task: {BCBDC33A-28B7-44D9-ACAC-0F93CADF3CBE} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {BE2A6BF4-A7B7-466F-91CD-F7DE87E7C763} - System32\Tasks\Lenovo\Lenovo-10640 => C:\ProgramData\Lenovo-10640.vbs [198 2013-05-30] () [Archivo no firmado] <==== ATENCIÓN
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {D5FFD6E2-7C18-4A04-B203-3090D659C8AE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {D7071E32-2BA0-48D0-8913-144C9601BE38} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-04-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {DBC7ADEA-042C-4D2E-8A5C-BF688A7B7A54} - System32\Tasks\Opera scheduled Autoupdate 1561690032 => C:\Users\Carlos Beltrán\AppData\Local\Programs\Opera\launcher.exe [1532952 2020-02-05] (Opera Software AS -> Opera Software)
Task: {DC80A2F6-1746-4D7E-82AA-2559ECA66BA0} - System32\Tasks\Microsoft\Windows\Setup\8.1 auto install v2 => C:\WINDOWS\system32\AutoUpdate.exe
Task: {DEB8B56A-2600-4B3C-A709-42FFB62B9577} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-27] (Google Inc -> Google LLC)
Task: {E7625581-A937-4E96-A7D7-D0BE0A4007AD} - System32\Tasks\Microsoft\Windows\Setup\8.1 auto install ping => C:\WINDOWS\system32\AutoUpdate.exe
Task: {E8AD22A4-7E85-4CC4-8EBE-3129D9E88B2D} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Carlos Beltrán\Desktop\esetonlinescanner_esl.exe
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {F528752A-8556-47F8-B074-C7C49C719220} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {F685643D-0023-493B-92C9-76011AE01E8F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-04-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FA283665-AE9C-4584-9149-95D4B35EAFFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {FF8DD28D-9376-46F6-AD02-EEC737C79764} - \Microsoft\Windows\Setup\EOSNotify -> Ningún archivo <==== ATENCIÓN

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Archivo Hosts no detectado en el directorio predeterminado
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{0f6cedd6-c380-4d85-81da-8e8ce183523d}: [NameServer] 8.8.8.8,8.8.4.4,
Tcpip\..\Interfaces\{75F7D7D2-99DF-4C36-952E-B981B8CEEB05}: [NameServer] 8.8.8.8,8.8.4.4,192.168.100.1
Tcpip\..\Interfaces\{75F7D7D2-99DF-4C36-952E-B981B8CEEB05}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{7a008923-0d2e-4513-9b8a-1d2e66a21e31}: [NameServer] 8.8.8.8,8.8.4.4,
Tcpip\..\Interfaces\{c200d08e-9e85-46c9-bd04-f9dc0fd87cf3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{E2A339C6-5D3A-48FF-90D8-1898422D4395}: [NameServer] 8.8.8.8,8.8.4.4,192.168.2.1
Tcpip\..\Interfaces\{E2A339C6-5D3A-48FF-90D8-1898422D4395}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\IEExt\ie_plugin.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\IEExt\ie_plugin.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\IEExt\ie_plugin.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\IEExt\ie_plugin.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-2391081161-46834104-153621467-1009 -> Sin Nombre - {C500C267-63BF-451F-8797-4D720C9A2ED9} -  Ningún archivo

FireFox:
========
FF HKLM\...\Firefox\Extensions: [@sandblast] -  => no encontrado
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-04]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Archivo no firmado]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-14] (CANON INC.) [Archivo no firmado]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-06-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-06-27] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-02-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default [2020-02-12]
CHR Extension: (Presentaciones) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-12]
CHR Extension: (Documentos) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-27]
CHR Extension: (Google Drive) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-27]
CHR Extension: (IBM Security Rapport) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2020-02-12]
CHR Extension: (Adobe Acrobat) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-02-12]
CHR Extension: (Kaspersky Protection) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-02-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-12]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-12]
CHR Extension: (Gmail) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-27]
CHR Extension: (Chrome Media Router) - C:\Users\Carlos Beltrán\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-12]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKU\S-1-5-21-2391081161-46834104-153621467-1009\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

Opera: 
=======
OPR Notifications: hxxps://drive.google.com; hxxps://forospyware.com; hxxps://mail.google.com; hxxps://www.youtube.com
OPR Extension: (VT4Browsers) - C:\Users\Carlos Beltrán\AppData\Roaming\Opera Software\Opera Stable\Extensions\efbjojhplkelaegfbieplglfidafgoka [2020-01-27]
OPR Extension: (Install Chrome Extensions) - C:\Users\Carlos Beltrán\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-01-27]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-04-03] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-04-03] (Dropbox, Inc -> Dropbox, Inc.)
S4 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [92160 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronics Corp.)
S4 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [Archivo no firmado]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [137680 2010-07-26] (Canon Inc. -> )
S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation -> Intel Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-05-17] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175728 2019-05-17] (Electronic Arts, Inc. -> Electronic Arts)
S2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12097024 2019-11-06] (TeamViewer GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-04-20] (Huawei Technologies Co., Ltd.) [Archivo no firmado]
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2019-09-03] (Glarysoft LTD -> Glarysoft Ltd)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [76624 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [129152 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [199744 2019-12-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-12-30] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [306248 2019-12-30] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [119744 2019-12-30] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [204520 2019-12-30] (Kaspersky Lab -> AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [210280 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
S3 PortTalk; C:\Windows\SysWOW64\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [Archivo no firmado]
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
R1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2020-02-09] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
S3 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
S3 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
S3 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-06-29] (Oracle Corporation -> Oracle Corporation)
R3 vm332avs; C:\WINDOWS\System32\Drivers\vm332avs.sys [981112 2012-08-24] (Bison Electronics Inc. -> Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2020-01-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-03] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-13 11:38 - 2020-02-13 11:43 - 000064850 _____ C:\Users\Carlos Beltrán\Desktop\Addition.txt
2020-02-13 11:27 - 2020-02-13 15:01 - 000035264 _____ C:\Users\Carlos Beltrán\Desktop\FRST.txt
2020-02-13 11:27 - 2020-02-13 14:57 - 000000000 ____D C:\FRST
2020-02-13 11:13 - 2020-02-13 11:25 - 000195948 _____ C:\Users\Carlos Beltrán\Desktop\mb-clean-results.txt
2020-02-13 02:17 - 2020-02-13 02:18 - 002323896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 008905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 007922688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 006543736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 006444032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-02-13 02:17 - 2020-02-13 02:17 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-02-13 02:17 - 2020-02-13 02:17 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002419712 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-02-13 02:17 - 2020-02-13 02:17 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002149160 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001936520 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-02-13 02:17 - 2020-02-13 02:17 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001677088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001670800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001668960 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001665712 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 001465264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000678672 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000677144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000603792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000508928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000505632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000410616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000408736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-02-13 02:17 - 2020-02-13 02:17 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000350416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000122568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-02-13 02:17 - 2020-02-13 02:17 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-02-13 02:17 - 2020-02-13 02:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-02-12 23:37 - 2020-02-12 23:37 - 000000000 ____D C:\ProgramData\mb3migration
2020-02-12 23:31 - 2020-02-12 23:31 - 002279424 _____ (Farbar) C:\Users\Carlos Beltrán\Downloads\FRSTEnglish.exe
2020-02-12 23:31 - 2020-02-12 23:31 - 000858912 _____ (Malwarebytes) C:\Users\Carlos Beltrán\Downloads\mb-clean-3.1.0.1035.exe
2020-02-12 23:29 - 2020-02-12 23:29 - 009109256 _____ C:\Users\Carlos Beltrán\Downloads\mb-support-1.5.4.760.exe
2020-02-12 22:13 - 2020-02-12 22:13 - 002279424 _____ (Farbar) C:\Users\Carlos Beltrán\Downloads\FRST64 (1).exe
2020-02-12 22:13 - 2020-02-12 22:13 - 002279424 _____ (Farbar) C:\Users\Carlos Beltrán\Desktop\FRST64.exe
2020-02-12 22:06 - 2020-02-12 22:06 - 000925696 _____ (Farbar) C:\Users\Carlos Beltrán\Downloads\FSS (1).exe
2020-02-12 22:05 - 2020-02-12 22:06 - 000925696 _____ (Farbar) C:\Users\Carlos Beltrán\Downloads\FSS.exe
2020-02-12 21:30 - 2020-02-12 21:30 - 000313366 _____ C:\Users\Carlos Beltrán\Downloads\WindowsUpdateDiagnostic.diagcab
2020-02-12 21:25 - 2020-02-12 21:25 - 000000000 ___HD C:\$GetCurrent
2020-02-12 20:33 - 2020-02-12 22:29 - 000000000 ____D C:\Users\Carlos Beltrán\Desktop\Forospyware
2020-02-12 20:00 - 2020-02-12 20:00 - 000000656 _____ C:\Users\Carlos Beltrán\Downloads\wu10.diagcab
2020-02-12 19:22 - 2020-02-12 21:27 - 000000000 ____D C:\Windows10Upgrade
2020-02-12 19:22 - 2020-02-12 19:22 - 000000742 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asistente para actualización a Windows 10.lnk
2020-02-12 19:22 - 2020-02-12 19:22 - 000000730 _____ C:\Users\Carlos Beltrán\Desktop\Asistente para actualización a Windows 10.lnk
2020-02-12 19:20 - 2020-02-12 19:20 - 000000000 ___HD C:\$Windows.~WS
2020-02-12 19:19 - 2020-02-12 19:19 - 006261368 _____ (Microsoft Corporation) C:\Users\Carlos Beltrán\Desktop\Windows10Upgrade9252.exe
2020-02-12 19:18 - 2020-02-12 19:19 - 019255000 _____ (Microsoft Corporation) C:\Users\Carlos Beltrán\Desktop\MediaCreationTool1909.exe
2020-02-12 13:27 - 2020-02-12 13:27 - 000000350 _____ C:\WINDOWS\delsu.cmd
2020-02-12 13:27 - 2020-02-12 13:27 - 000000309 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2020-02-12 13:27 - 2020-02-12 13:27 - 000000000 ____D C:\WINDOWS\TempInst
2020-02-11 21:10 - 2020-02-11 21:10 - 000000000 ____D C:\Users\Carlos Beltrán\Downloads\Opera Installer Temp
2020-02-11 21:08 - 2020-02-11 21:08 - 002474520 _____ (Opera Software) C:\Users\Carlos Beltrán\Downloads\OperaSetup.exe
2020-02-11 21:08 - 2020-02-11 21:08 - 002474480 _____ (Opera Software) C:\Users\Carlos Beltrán\Downloads\OperaSetup (1).exe
2020-02-11 12:41 - 2020-02-11 12:41 - 000007607 _____ C:\Users\Carlos Beltrán\AppData\Local\Resmon.ResmonCfg
2020-02-11 09:49 - 2020-02-12 21:26 - 000672910 _____ C:\WINDOWS\ntbtlog.txt
2020-02-11 09:43 - 2020-02-11 09:48 - 000433276 _____ C:\WINDOWS\Minidump\021120-34609-01.dmp
2020-02-11 09:43 - 2020-02-11 09:43 - 288390096 _____ C:\WINDOWS\MEMORY.DMP
2020-02-11 09:43 - 2020-02-11 09:43 - 000000000 ____D C:\WINDOWS\Minidump
2020-02-11 01:03 - 2020-02-11 01:03 - 000000000 ___HD C:\$SysReset
2020-01-29 15:47 - 2020-01-29 15:47 - 000000000 ____D C:\Users\Carlos Beltrán\Downloads\opera autoupdate
2020-01-29 14:22 - 2020-01-29 14:22 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Local\cache
2020-01-28 12:29 - 2019-03-28 00:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2020-01-28 12:29 - 2019-03-28 00:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2020-01-28 12:28 - 2019-03-28 03:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2020-01-28 12:28 - 2019-03-28 03:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2020-01-28 12:28 - 2019-03-28 03:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2020-01-28 12:28 - 2019-03-28 03:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2020-01-28 12:28 - 2019-03-28 00:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2020-01-28 12:28 - 2019-03-28 00:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2020-01-28 12:28 - 2019-03-28 00:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2020-01-28 12:28 - 2019-03-28 00:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2020-01-27 19:56 - 2020-01-27 19:56 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_01009.Wdf
2020-01-27 19:56 - 2020-01-27 19:56 - 000000000 ____D C:\WINDOWS\system32\%ProgramData%
2020-01-27 15:32 - 2020-02-12 13:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2020-01-27 15:28 - 2020-02-11 22:19 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Local\LenovoServiceBridge
2020-01-27 15:25 - 2020-01-27 15:25 - 003210152 _____ (Lenovo ) C:\Users\Carlos Beltrán\Desktop\LSBSetup.exe
2020-01-27 15:18 - 2020-01-27 15:18 - 000142744 _____ C:\Users\Carlos Beltrán\Desktop\vtuploader2.2.exe

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-13 14:52 - 2019-04-24 11:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-13 12:03 - 2018-09-15 01:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 11:41 - 2018-09-15 01:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-13 11:29 - 2018-03-21 00:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-02-13 11:23 - 2019-04-24 13:17 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Local\ApplicationHistory
2020-02-13 11:21 - 2019-03-02 22:37 - 000000000 __SHD C:\Users\Carlos Beltrán\IntelGraphicsProfiles
2020-02-13 11:17 - 2019-04-24 12:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-13 11:15 - 2018-09-15 00:09 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-02-13 11:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-13 11:07 - 2019-04-24 12:27 - 001771698 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-13 11:07 - 2018-09-15 10:38 - 000784530 _____ C:\WINDOWS\system32\perfh00A.dat
2020-02-13 11:07 - 2018-09-15 10:38 - 000152964 _____ C:\WINDOWS\system32\perfc00A.dat
2020-02-13 11:07 - 2018-09-15 01:31 - 000000000 ____D C:\WINDOWS\INF
2020-02-13 11:01 - 2019-09-04 16:30 - 000449528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-02-13 10:59 - 2013-05-30 02:40 - 000000000 ____D C:\Program Files\Elantech
2020-02-13 10:51 - 2018-09-15 01:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-02-13 10:50 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-02-13 10:50 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-02-13 00:35 - 2019-04-24 11:57 - 000000000 ____D C:\Users\Carlos Beltrán
2020-02-12 23:25 - 2019-04-24 12:44 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-02-12 22:26 - 2018-09-15 01:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-12 21:16 - 2018-04-13 19:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-02-12 20:43 - 2018-04-01 03:47 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-02-12 20:02 - 2019-04-09 19:56 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Local\ElevatedDiagnostics
2020-02-12 19:21 - 2019-04-24 12:40 - 000018147 _____ C:\WINDOWS\diagwrn.xml
2020-02-12 19:21 - 2019-04-24 12:40 - 000017148 _____ C:\WINDOWS\diagerr.xml
2020-02-12 19:21 - 2019-04-18 17:56 - 000000000 ___DC C:\WINDOWS\Panther
2020-02-12 18:53 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-02-12 18:50 - 2013-05-30 02:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2020-02-12 13:26 - 2013-05-30 02:56 - 000000000 ____D C:\ProgramData\Lenovo
2020-02-11 21:13 - 2019-06-27 20:47 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1561690032
2020-02-11 21:13 - 2019-06-27 20:47 - 000001540 _____ C:\Users\Carlos Beltrán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2020-02-11 10:56 - 2018-03-20 21:19 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-02-11 10:22 - 2013-05-30 02:28 - 000000000 ____D C:\Intel
2020-02-11 00:28 - 2018-03-22 21:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2020-02-09 18:58 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-02-09 18:38 - 2018-03-21 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Seguridad Terminal
2020-02-09 18:36 - 2019-06-23 13:55 - 000000000 ____D C:\Program Files\UNP
2020-01-29 16:03 - 2018-07-21 12:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-01-29 14:53 - 2018-03-21 14:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-28 12:41 - 2018-03-21 14:56 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-28 12:21 - 2018-03-21 20:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-01-27 19:56 - 2019-04-08 18:50 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Local\Lenovo
2020-01-27 19:56 - 2013-05-30 02:47 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-01-27 15:26 - 2019-03-02 22:37 - 000000000 ____D C:\Users\Carlos Beltrán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2020-01-27 15:06 - 2019-04-24 12:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

==================== Archivos en la raíz de algunos directorios ========

2019-03-02 22:42 - 2019-03-02 22:42 - 000000102 _____ () C:\Users\Carlos Beltrán\AppData\Local\fusioncache.dat
2020-02-11 12:41 - 2020-02-11 12:41 - 000007607 _____ () C:\Users\Carlos Beltrán\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Saludos

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 12-02-2020
Ejecutado por Carlos Beltrán (13-02-2020 15:10:34)
Ejecutado desde C:\Users\Carlos Beltrán\Desktop
Windows 10 Home Single Language Versión 1809 17763.973 (X64) (2019-04-24 18:46:36)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2391081161-46834104-153621467-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2391081161-46834104-153621467-1006 - Limited - Enabled)
Carlos Beltrán (S-1-5-21-2391081161-46834104-153621467-1009 - Administrator - Enabled) => C:\Users\Carlos Beltrán
DefaultAccount (S-1-5-21-2391081161-46834104-153621467-503 - Limited - Disabled)
Invitado (S-1-5-21-2391081161-46834104-153621467-501 - Limited - Disabled)
Margarita (S-1-5-21-2391081161-46834104-153621467-1007 - Administrator - Enabled) => C:\Users\Margarita
WDAGUtilityAccount (S-1-5-21-2391081161-46834104-153621467-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Free (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Free (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\{3FD6908E-004E-4E1A-8E17-CFECB8FD0078}) (Version: 3.8.42.71502 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.8.42.71502 - Alcor Micro Corp.)
Argente Utilities 1.0.7.0 (HKLM-x32\...\Argente Utilities_is1) (Version: 1.0.7.0 - Raúl Argente)
Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.59.20 - Broadcom Corporation)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version:  - )
Canon MP Navigator EX 4.1 (HKLM-x32\...\MP Navigator EX 4.1) (Version:  - )
Canon MX360 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX360_series) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
Canon Utilidad de marcación rápida (HKLM-x32\...\Speed Dial Utility) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.13 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 80.4.126 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.2.5 - SCS Software)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Generador de Requerimientos FIREL (HKLM-x32\...\{5F871616-88FA-440D-84E9-4BDDE72078D6}) (Version: 2.0.0 - PJF)
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.297.0 - International GeoGebra Institute)
Glary Utilities 5.127 (HKLM-x32\...\Glary Utilities 5) (Version: 5.127.0.152 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Guía del usuario (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
HP LaserJet P1000 series (HKLM-x32\...\HP LaserJet P1000 series) (Version:  - )
hppMSRedist (HKLM-x32\...\{58ECE031-9AAD-4011-B34A-BC78E77527E2}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
hppusgP1000 (HKLM-x32\...\{2767DEDE-EA9D-4FCE-A06A-40F4DD293330}) (Version: 000.000.00003 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Kaspersky Free (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.11.7 - ELAN Microelectronic Corp.)
Lenovo Service Bridge (HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.0.4 - Lenovo)
Magic DVD Ripper V10.0.1 (HKLM-x32\...\Magic DVD Ripper_is1) (Version:  - Magic DVD Software, Inc.)
MarketResearch (HKLM-x32\...\{13F00518-807A-4B3A-83B0-A7CD90F3A398}) (Version: 90.0.142.000 - Hewlett-Packard) Hidden
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minimal ADB and Fastboot version 1.4.3 (HKLM-x32\...\{B561660D-8B3C-491D-9E3E-293F14FCAADA}_is1) (Version: 1.4.3 - Samuel Rodberg)
MiniTool Partition Wizard Free 10.2.3 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Opera Stable 66.0.3515.72 (HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\Opera 66.0.3515.72) (Version: 66.0.3515.72 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.39.26342 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Paquete de controladores de Windows - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Paquete de controladores de Windows - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Paquete de controladores de Windows - LG Electronics Inc (ANDModem) Modem  (11/30/2010 2.2.0.0) (HKLM\...\3F162CA9EF5A33FF16B97554663A71E35053783E) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc)
Paquete de controladores de Windows - LG Electronics Inc (ANDModem) Modem  (11/30/2010 2.2.0.0) (HKLM\...\A43025A72B6CC28CB38B93867B2740C581E3B100) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc)
Paquete de controladores de Windows - LG Electronics Inc. (Andbus) USB  (11/30/2010 2.2.0.0) (HKLM\...\4D55218052428488AFE6BA93FABC783E658657A7) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics Inc. (Andbus) USB  (11/30/2010 2.2.0.0) (HKLM\...\7972D4F247E02C0849331540773B9ABFA384B182) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics Inc. (AndDiag) Ports  (11/30/2010 2.2.0.0) (HKLM\...\38207DB32AC6A59CE6075F5AAE1448040FAC76DB) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics Inc. (AndDiag) Ports  (11/30/2010 2.2.0.0) (HKLM\...\A3F0461CF2623C40BC42C38D4C0E7319E5C458CA) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics Inc. (AndGps) Ports  (11/30/2010 2.2.0.0) (HKLM\...\37C6E863D718F6363FBAC33FBAAA927F5DC2A43E) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics Inc. (AndGps) Ports  (11/30/2010 2.2.0.0) (HKLM\...\BC0FC97093ED911878848F7852D617BA23E42F68) (Version: 11/30/2010 2.2.0.0 - LG Electronics Inc.)
Paquete de controladores de Windows - LG Electronics, Inc. (andnetndis) Net  (03/07/2012 3.7.0.0) (HKLM\...\BDE134075C5EB079E606351CBB25D6785210D594) (Version: 03/07/2012 3.7.0.0 - LG Electronics, Inc.)
Paquete de controladores de Windows - LG Electronics, Inc. (andnetndis) Net  (03/07/2012 3.7.0.0) (HKLM\...\E670C2A33F5DE62100C1BF6291C8DBBCE5457692) (Version: 03/07/2012 3.7.0.0 - LG Electronics, Inc.)
Paquete de controladores de Windows - LG Electronics, Inc. Net  (03/07/2012 3.7.0.0) (HKLM\...\1189BFED67524133874A995F6EE63DC76C2083C1) (Version: 03/07/2012 3.7.0.0 - LG Electronics, Inc.)
Paquete de controladores de Windows - LG Electronics, Inc. Net  (03/07/2012 3.7.0.0) (HKLM\...\97541C74689007984DD12A4E0B349E2F96A66C2F) (Version: 03/07/2012 3.7.0.0 - LG Electronics, Inc.)
Paquete de controladores de Windows - LG Electronics, Inc. WPD  (03/07/2012 3.7.0.0) (HKLM\...\5A454C002BB9011E261D0C1B7E846CD23A1D1806) (Version: 03/07/2012 3.7.0.0 - LG Electronics, Inc.)
Paquete de controladores de Windows - Microsoft Corporation (WinUSB) AndroidUsbDeviceClass  (07/11/2013 1.4.0015.00000) (HKLM\...\F556F06662CD592AC1110F9116ADB92815A9AA30) (Version: 07/11/2013 1.4.0015.00000 - Microsoft Corporation)
Paquete de controladores de Windows - Motorola (bqusbser) Modem  (02/24/2009 1.1.0.0) (HKLM\...\46D28B033482A13C68B1777C399248A0FE510D1A) (Version: 02/24/2009 1.1.0.0 - Motorola)
Paquete de controladores de Windows - Motorola (bqusbser) Ports  (02/24/2009 1.1.0.0) (HKLM\...\3E885DDD8DE7247FEBCE2F5FEF86A3664DF51FEC) (Version: 02/24/2009 1.1.0.0 - Motorola)
Paquete de controladores de Windows - Motorola (motandroidusb) USB  (11/26/2012 1.2.14.0) (HKLM\...\17DC46E7226DD240CE5480A071337C9D15C5991E) (Version: 11/26/2012 1.2.14.0 - Motorola)
Paquete de controladores de Windows - Motorola (motccgp) USB  (11/26/2012 3.3.1.0) (HKLM\...\F62C352416202B84E7804DE3CE695F30A4FDA328) (Version: 11/26/2012 3.3.1.0 - Motorola)
Paquete de controladores de Windows - Motorola (motmodem) Modem  (06/08/2012 5.0.0.0) (HKLM\...\EC59CFD8B4CBED0A412E4B22DAB4C565DE2E79D5) (Version: 06/08/2012 5.0.0.0 - Motorola)
Paquete de controladores de Windows - Motorola (Motousbnet) Net  (06/08/2012 2.6.0.0) (HKLM\...\F0EE2BD961E485B5B5AE20058D7FEC68F3C0DE1D) (Version: 06/08/2012 2.6.0.0 - Motorola)
Paquete de controladores de Windows - Motorola (motport) Ports  (06/08/2012 5.0.0.0) (HKLM\...\0E7272CE1AFA7996DFC0F8B0B359D995AA4DB9A1) (Version: 06/08/2012 5.0.0.0 - Motorola)
Paquete de controladores de Windows - Motorola (motusbdevice) USB  (06/08/2012 1.1.3.0) (HKLM\...\1F35118DF730077690CF2BAEBDAC57D2138F7E44) (Version: 06/08/2012 1.1.3.0 - Motorola)
Paquete de controladores de Windows - Motorola (usbser) Ports  (11/26/2012 1.0.1.0) (HKLM\...\23D2826F79B1BE46FCB42BB6BF83B57975E5A7F8) (Version: 11/26/2012 1.0.1.0 - Motorola)
Paquete de controladores de Windows - Motorola Inc (MotDev) MOTUSB  (11/08/2011 3.2.12.0) (HKLM\...\F8C33978D5941EC809F57F088EE5517BBBE19FFD) (Version: 11/08/2011 3.2.12.0 - Motorola Inc)
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (dg_ssudbus) USB  (03/10/2014 2.11.8.0) (HKLM\...\9134EDE55D2832A6C5C79340B00AB7994D858C86) (Version: 03/10/2014 2.11.8.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssaebus) USB  (02/05/2010 5.14.0.0) (HKLM\...\8CDE6EEFC346A059EC210060FC7B7DAA8279D584) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssaemdm) Modem  (02/05/2010 5.14.0.0) (HKLM\...\14AE004B19BD3BB393FF6268715C15E1F14216E8) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssaend5) Net  (02/05/2010 5.14.0.0) (HKLM\...\75005F34035E512FEEBCAE8E47C427F0D5B95E92) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssaeunic) USB  (02/05/2010 5.14.0.0) (HKLM\...\0B1DCCBA5BC4F4EEFC1C4D6AC8B27D2393A38E9B) (Version: 02/05/2010 5.14.0.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssuddmgr) Ports  (03/25/2013 2.9.508.0) (HKLM\...\79BE6E72F3FB459964ECB14CA5E9499EB84CED24) (Version: 03/25/2013 2.9.508.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssudmdm) Modem  (03/10/2014 2.11.8.0) (HKLM\...\9D887488E874F6E1E554D05711CE970A71288082) (Version: 03/10/2014 2.11.8.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssudobex) Ports  (03/25/2013 2.9.508.0) (HKLM\...\3889AC3DC15E870F7212E360BD6BD1FA71261AAC) (Version: 03/25/2013 2.9.508.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  (ssudserd) Ports  (03/25/2013 2.9.508.0) (HKLM\...\139FA893FBE6105A30D47E0FAB2B465546E1605D) (Version: 03/25/2013 2.9.508.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  Net  (03/25/2013 2.9.508.0) (HKLM\...\A8ACA907A00D578D644681DCA06EC0E1608C03A2) (Version: 03/25/2013 2.9.508.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd.  WPD  (01/02/2014 2.11.7.0) (HKLM\...\09A67B8CC5436D17AFCEA20406A9341A5E46FA9B) (Version: 01/02/2014 2.11.7.0 - SAMSUNG Electronics Co., Ltd. )
Paquete de controladores de Windows - SAMSUNG Electronics Co., Ltd. (ss_conn_usb_driver) USB  (03/10/2014 2.11.8.0) (HKLM\...\C3D7E8BFE65E2B80D351B529CD5B8818BC68B459) (Version: 03/10/2014 2.11.8.0 - SAMSUNG Electronics Co., Ltd.)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Password Remover v6.0 (HKLM-x32\...\PDF Password Remover v6.0_is1) (Version:  - VeryPDF.com Inc.)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1950.120 - Trusteer) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6675 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1258 - SUPERAntiSpyware.com)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.0.8397 - TeamViewer)
Trusteer Seguridad Terminal (HKLM-x32\...\Rapport_msi) (Version: 3.5.1950.120 - Trusteer)
Update for Skype for Business 2015 (KB4475564) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{14E2D22A-5164-4E35-8239-E2DB5D6B9A09}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4475564) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{14E2D22A-5164-4E35-8239-E2DB5D6B9A09}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4475564) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0C0A-0000-0000000FF1CE}_Office15.PROPLUS_{14E2D22A-5164-4E35-8239-E2DB5D6B9A09}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
USB Disk Security (HKLM-x32\...\USB Disk Security_is1) (Version:  - Zbshareware Lab)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.30.3.0_x86__kgqvnymyfvs32 [2020-02-11] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220 [2019-11-18] (Dolby Laboratories)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.22.8816.0_x86__q4d96b2w5wcc2 [2020-01-28] (Evernote)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-02] (Fitbit)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa [2020-02-12] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-20] (Microsoft Studios) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-20] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2018-03-31] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-26] (Thumbmunkeys Ltd) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0 [2019-12-20] (Spotify AB) [Startup Task]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2018-03-31] (Zinio LLC)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-2391081161-46834104-153621467-1009_Classes\CLSID\{2F225BCB-ACDE-4550-8EB5-FAF4FB8989C8} -> [MEGA] => C:\Users\Carlos Beltrán\Documents\MEGA [2019-03-03 19:24]
CustomCLSID: HKU\S-1-5-21-2391081161-46834104-153621467-1009_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2391081161-46834104-153621467-1009_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Carlos Beltrán\Dropbox [2019-03-02 23:31]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2019-12-04] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2019-01-31 14:25 - 2019-01-31 14:25 - 000948736 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220\e_sqlite3.dll
2018-03-22 20:47 - 2010-09-10 14:57 - 000026112 _____ (CANON INC.) [Archivo no firmado] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\ES\CNSELANG.dll
2018-03-22 20:44 - 2010-08-02 11:08 - 000069632 _____ (CANON INC.) [Archivo no firmado] C:\Program Files\Canon\MyPrinter\BJMyRes.dll
2018-03-22 20:44 - 2010-07-25 11:08 - 000136704 _____ (CANON INC.) [Archivo no firmado] C:\Program Files\Canon\MyPrinter\cnmpu.dll
2019-11-18 17:28 - 2019-11-18 17:28 - 032709632 _____ (Dolby) [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220\DolbyUWP.dll
2019-04-24 12:02 - 2019-04-24 12:02 - 001093120 _____ (Microsoft Corporation) [Archivo no firmado] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

2018-12-06 09:53 - 2019-11-11 14:36 - 000000504 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 CARLOS.mshome.net # 2023 12 2 5 17 32 2 452

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Ningún archivo)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: dbupdate => 2
MSCONFIG\Services: dbupdatem => 3
MSCONFIG\Services: DbxSvc => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WsAppService => 2
HKLM\...\StartupApproved\Run32: => "332BigDog"
HKLM\...\StartupApproved\Run32: => "USB Security"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Argente Utilities"
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2391081161-46834104-153621467-1009\...\StartupApproved\Run: => "GUDelayStartup"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{036625D9-9EE0-4E20-907D-D36A07C73F6A}] => (Allow) C:\Program Files (x86)\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada)
FirewallRules: [{E1E40013-86A2-41CF-8865-AFD4187FB91A}] => (Allow) C:\Program Files (x86)\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada)
FirewallRules: [{C31727FA-5B72-4898-9950-1B01940BF7FA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9E9B9BE7-1C91-4AEB-B4A6-9F8720BEE82A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{10A24911-2F54-46BA-9B76-7AF4A7052CC2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4EB8E970-20CE-4C91-8AA1-6C8129435476}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4435CED5-8F61-4F4F-9B1A-4D08E544BE12}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{E8D23F0E-8C14-4FD4-8603-BD60C91A8380}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B1D06DA9-4C90-48D0-AAAC-FDAE0C89AFF4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{4A6FC853-E77A-4DC2-A808-A3EB074673B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4E91A25D-D2B4-4A07-A1DE-DB9B83C5F03E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{EC5AA4E9-7628-4B47-8C72-3E248665DC59}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{8E5390A3-5373-474E-A81D-C9BF161DA632}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{81BBC373-A09A-40F0-BF1C-F74323A28AE5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{99689B7B-9C32-4C5E-BA21-A2F9F9CD5C02}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{FC3BBA0E-BD9B-464B-859A-EF71D6298A8F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{78D78490-6FE9-431F-894B-032A05103BFF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [{162280E0-D610-4D9B-BD14-A484F8F46924}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe Ningún archivo
FirewallRules: [TCP Query User{6BD294A4-569A-478A-BE70-8381CD0D3DF9}C:\program files\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe Ningún archivo
FirewallRules: [UDP Query User{80D4B650-1825-440D-9B5A-86828D471E85}C:\program files\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.120.510.0_x86__zpdnekdrzrea0\spotify.exe Ningún archivo
FirewallRules: [{28B966CF-F0FC-4AA3-8A02-21D33BFD9F54}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B60E464C-7663-4E40-8961-1A6D81D75428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6885E25A-A4A3-488C-B4F5-E1DA15CEFD26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8A41D271-A0AB-42B4-A92F-A489BA0E6F86}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3DF5D13C-C1DB-4CF5-A05C-D5E107382E67}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7E0B545C-9E7A-41D2-BD3A-173FF27775EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC9ADF94-E5FC-4ED6-AB99-63AFE2FF5425}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BB428F2B-1C79-4B4A-81B3-373A06ADBDFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F0B9F08E-2DF0-4565-8E13-E9E3C0DDB4E3}C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe Ningún archivo
FirewallRules: [UDP Query User{90179896-619E-4DF2-B542-C7C6EB404286}C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe Ningún archivo
FirewallRules: [{A998DFCB-BCA3-47C3-8226-B0A565087DCE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F9E18E74-5D6E-4B90-A5BC-2C438138E4DD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{91B40128-77D7-425C-93F4-15969C875479}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FA7BD02B-0900-46E5-BA16-C37FA73D0691}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{40854B5A-23E9-4D86-AF14-DC9422B1520A}C:\users\carlos beltrán\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Allow) C:\users\carlos beltrán\appdata\local\programs\opera\66.0.3515.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{370ABF55-6D8C-44E1-A7BB-38F1550D83F3}C:\users\carlos beltrán\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Allow) C:\users\carlos beltrán\appdata\local\programs\opera\66.0.3515.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{45570FAB-44D6-4EEB-BE14-8321CB09D1F5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CF67D9AD-FB99-4860-A45A-7EA911F94E19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5BE273DA-15CE-4136-9A52-DC82214A8E71}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EBDF3F7A-F725-4753-99DF-024FAD67320D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{359CB2C8-BEC0-48F9-AEDB-94B801E3018E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FE90BBEE-8E88-4CA3-96A9-A4D414626FAB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E1D291E7-D9FF-4FEA-A45C-AAD13F372D63}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C9D155A3-BB67-4114-9FF7-449A55F798D4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1F0EB260-7110-4693-8ABD-31B49538CD35}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6F3435C3-D9D3-42ED-B775-FC5A92A6BD65}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2E78094C-E5CD-4817-9E45-B08835C51B05}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A90F0C48-070E-4FBD-850D-EBD6E3B87989}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0E7D7F08-B7A9-4417-A34A-393AC78D3FDE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{059B5CF1-68A4-42F0-9323-9191AA72A4A7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A544A153-A523-4AE2-8C32-828F5176A4D4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F3E4EA3F-EAA5-4A22-88FC-4591038D97A5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

==================== Puntos de Restauración =========================

12-02-2020 23:12:48 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Lenovo pointing device
Description: Lenovo pointing device
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: ELAN
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (02/13/2020 03:12:40 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa WindowsInternal.ComposableShell.Experiences.TextInput.InputApp. (versión 10.0.17763.802) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 10ec

Hora de Inicio: 01d5e2b2320d4866

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe

Id. de informe: 6422e81d-b2d9-4435-b6e0-aabb370164f2

Nombre completo del paquete con errores: InputApp_1000.17763.1.0_neutral_neutral_cw5n1h2txyewy

Id. de la aplicación relativa al paquete con errores: App

Tipo de bloqueo: Quiesce

Error: (02/13/2020 12:35:09 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Windows no puede descargar su archivo de Registro. No se ha liberado la memoria usada por el Registro. La causa de este problema suelen ser servicios ejecutándose como cuentas de usuario. Intente configurar los servicios para ejecutarse en la cuenta LocalService o NetworkService.  

 DETALLE - Acceso denegado.

Error: (02/13/2020 12:35:09 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Windows no puede descargar su archivo de Registro. No se ha liberado la memoria usada por el Registro. La causa de este problema suelen ser servicios ejecutándose como cuentas de usuario. Intente configurar los servicios para ejecutarse en la cuenta LocalService o NetworkService.  

 DETALLE - Acceso denegado.

Error: (02/12/2020 11:12:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo de detección de nivel de vínculo de Microsoft.

System Error:
Acceso denegado.
.

Error: (02/12/2020 11:03:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Taskmgr.exe, versión: 10.0.17763.771, marca de tiempo: 0x976808d5
Nombre del módulo con errores: Taskmgr.exe, versión: 10.0.17763.771, marca de tiempo: 0x976808d5
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000001ec94
Identificador del proceso con errores: 0x9e8
Hora de inicio de la aplicación con errores: 0x01d5e22616c47173
Ruta de acceso de la aplicación con errores: C:\WINDOWS\System32\Taskmgr.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\Taskmgr.exe
Identificador del informe: 83ba4e17-e411-4355-98e8-4ad8a95d68fe
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (02/12/2020 11:03:36 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x8007001f, Uno de los dispositivos conectados al sistema no funciona.
.


Operación:
   Ejecutando operación asincrónica

Contexto:
   Estado actual: DoSnapshotSet

Error: (02/12/2020 11:01:45 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo de detección de nivel de vínculo de Microsoft.

System Error:
Acceso denegado.
.

Error: (02/12/2020 11:01:38 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {bfd7acea-5edb-4aae-aa69-12aeb99cc8c5}


Errores del sistema:
=============
Error: (02/13/2020 03:03:22 PM) (Source: DCOM) (EventID: 10016) (User: CARLOS)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario CARLOS\Carlos Beltrán con SID (S-1-5-21-2391081161-46834104-153621467-1009) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 03:03:22 PM) (Source: DCOM) (EventID: 10016) (User: CARLOS)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario CARLOS\Carlos Beltrán con SID (S-1-5-21-2391081161-46834104-153621467-1009) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 03:01:11 PM) (Source: DCOM) (EventID: 10016) (User: CARLOS)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario CARLOS\Carlos Beltrán con SID (S-1-5-21-2391081161-46834104-153621467-1009) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 11:25:15 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscBrokerManager
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 11:25:15 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.SecurityAppBroker
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 11:24:39 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Administrador de mapas descargado no respondió después de iniciar.

Error: (02/13/2020 11:24:02 AM) (Source: DCOM) (EventID: 10016) (User: CARLOS)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario CARLOS\Carlos Beltrán con SID (S-1-5-21-2391081161-46834104-153621467-1009) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0 (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (02/13/2020 11:21:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.


Windows Defender:
===================================
Date: 2020-02-12 15:25:19.131
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {F9FE4B87-9385-41FF-8019-69E518BD3267}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-02-12 12:29:31.745
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B133ED58-A0DA-40AF-B188-825BDE0ED8FB}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-02-12 11:21:04.277
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {F7BAE053-9BC4-44FD-8CAB-3711B36C16F3}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-02-12 11:06:25.249
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B38425B3-14A6-4E61-981C-E887ADEEB033}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-02-12 10:48:36.360
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {18777809-21FD-4ADF-94D1-A6F705E98A8D}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-02-12 21:26:34.182
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.309.857.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16700.3
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2020-02-12 21:15:52.939
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2020-02-12 19:23:07.091
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.309.775.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16700.3
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2020-02-12 19:12:40.834
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2020-02-12 19:00:45.435
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

CodeIntegrity:
===================================

Date: 2020-02-12 23:25:14.365
Description: 
Windows blocked file \Device\HarddiskVolume5\Windows\SysWOW64\scrobj.dll which has been disallowed for protected processes.

Date: 2020-02-12 11:29:56.471
Description: 
Windows blocked file \Device\HarddiskVolume5\Windows\SysWOW64\scrobj.dll which has been disallowed for protected processes.

Date: 2019-11-11 12:05:06.413
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-11 12:05:06.384
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-11 12:05:04.089
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-11 12:05:04.044
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-11 12:05:03.948
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-11 12:05:03.913
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

==================== Información de la memoria =========================== 

BIOS: LENOVO 62CN97WW 07/12/2013
Placa base: LENOVO Lenovo G480
Procesador: Intel(R) Celeron(R) CPU 1000M @ 1.80GHz
Porcentaje de memoria en uso: 89%
RAM física total: 3441.41 MB
RAM física disponible: 355.49 MB
Virtual total: 7537.41 MB
Virtual disponible: 3836.96 MB

==================== Unidades ================================

Drive c: (Windows8_OS) (Fixed) (Total:882.93 GB) (Free:754.96 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:2.57 GB) NTFS

\\?\Volume{f2c03ad5-68eb-4de0-b1b9-bd5ed841e260}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.44 GB) NTFS
\\?\Volume{8e05568e-7729-401b-bb46-ab8975f29217}\ () (Fixed) (Total:0.47 GB) (Free:0.07 GB) NTFS
\\?\Volume{a87dc5e1-c529-47d2-b6f6-95f453da716f}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS
\\?\Volume{e4dc6d9f-d7ab-46ed-bcca-31f509e79798}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS
\\?\Volume{e2910218-be58-4a05-a516-ae443237fa9d}\ (PBR_DRV) (Fixed) (Total:20 GB) (Free:9.78 GB) NTFS
\\?\Volume{09319b4c-2484-4d28-bb4b-555203f55664}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 7C88CAEB)

Partition: GPT.

==================== Final de Addition.txt =======================

Hola @CARLOS_ALFREDO_BELTR

Mientras analizo los reportes te pregunto que paso con mi consulta?

Salu2

Lo realice tanto en modo normal como en modo seguro, en ambos dándome error.

Hola @CARLOS_ALFREDO_BELTR

Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

• Descarga DelFix en el escritorio de Windows.
• Clic Derecho, “Ejecutar como Administrador”.
• En la ventana principal, marca solamente la casilla “Create Registry Backup”.
• Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:

Start
CloseProcesses:
CreateRestorePoint:
BootExecute: autocheck autochk *  
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {656D9143-8D2D-43EF-AA93-E1450A93D518} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1952368 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
C:\Program Files\Common Files\AVAST Software
Task: {6B4EA909-B9C4-47F9-B6A9-F7199103F06B} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Carlos Beltrán\Desktop\adwcleaner_7.4.1.exe
Task: {95776885-AD2B-4B68-AD8B-F7F5BC3D6524} - System32\Tasks\Lenovo\sysrun-5388 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-5388.cmd 
C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-5388.cmd
Task: {98F600DE-B437-4DF2-9A82-2ED07B9DD7E7} - System32\Tasks\Lenovo\sysrun-26466 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-26466.cmd 
C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-26466.cmd
Task: {AA387DDC-4430-4F38-81A8-CFD12B9ED0D8} - System32\Tasks\Lenovo\sysrun-25385 => C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-25385.cmd 
C:\Users\CARLOS~1\AppData\Local\Temp\sysrun-25385.cmd
Task: {BE2A6BF4-A7B7-466F-91CD-F7DE87E7C763} - System32\Tasks\Lenovo\Lenovo-10640 => C:\ProgramData\Lenovo-10640.vbs [198 2013-05-30] () [Archivo no firmado] <==== ATENCIÓN
Task: {E8AD22A4-7E85-4CC4-8EBE-3129D9E88B2D} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Carlos Beltrán\Desktop\esetonlinescanner_esl.exe
Task: {FF8DD28D-9376-46F6-AD02-EEC737C79764} - \Microsoft\Windows\Setup\EOSNotify -> Ningún archivo <==== ATENCIÓN
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2391081161-46834104-153621467-1009\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
Toolbar: HKU\S-1-5-21-2391081161-46834104-153621467-1009 -> Sin Nombre - {C500C267-63BF-451F-8797-4D720C9A2ED9} -  Ningún archivo
FF HKLM\...\Firefox\Extensions: [@sandblast] -  => no encontrado
2020-02-12 13:27 - 2020-02-12 13:27 - 000000350 _____ C:\WINDOWS\delsu.cmd
2020-01-27 19:56 - 2020-01-27 19:56 - 000000000 ____D C:\WINDOWS\system32\%ProgramData%
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
FirewallRules: [TCP Query User{F0B9F08E-2DF0-4565-8E13-E9E3C0DDB4E3}C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe Ningún archivo
FirewallRules: [UDP Query User{90179896-619E-4DF2-B542-C7C6EB404286}C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\carlos beltrán\appdata\local\programs\opera\65.0.3467.78\opera.exe Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END

• Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

• Ejecutas Frst.exe.
• Presionas el botón Fix y aguardas a que termine.
• La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
• Lo pegas en tu próxima respuesta.

Nos comentas como sigue el equipo.

Salu2.

Ya no puedo ingresar, me aparece pantallazo azul junto al siguiente error: bad system config info , que puedo hacer???

Hola @CARLOS_ALFREDO_BELTR

LLegaste a realizar los pasos del Fix ??

Dime si tienes acceso a otro equipo y a un USB.

Salu2

Si, si realice el fix, al igual si tengo acceso a otro equipo y a un USB.

Hola @CARLOS_ALFREDO_BELTR

Intenta reparar el Inicio de Windows 10 desde las opciones avanzadas:

El Punto 1:

Reparación de inicio de Windows 10 desde el disco duro de su equipo. (WinRE Entorno de recuperación)

Nos comentas.

Salu2

Ya cuento con una USB con windows 10 de autoinicio, ya realice el proceso, tanto con el USB con windows 10 y sin el, en ambos casos me da el siguiente mensaje: reparación de inicio no pudo reparar tu pc, archivo de registro c:\windows\system32\logfiles\srt\srtrail.txt

Hola @CARLOS_ALFREDO_BELTR

Intenta entrar a las Opciones Avanzadas de Windows 10, pero hasta llegar a Símbolo de Sistema (si no pasa nada desde el equipo, lo intentas desde el USB.)

Una vez allí escribes tal cual:

bcdedit /deletevalue {default} numproc

bcdedit /deletevalue {default} truncatememory

Nota Importante:

• Debes respetar exactamente cada espacio.
• Presiona Enter luego de cada comando.

Para salir escribes exit en la ventana del Símbolo del Sistema y luego reinicias el equipo.

Nos comentas.

Salu2