Bueno, no he vuelto a tener el problema planteado en las pocas horas que llevo conectado. Espero informar si se vuelve a presentar la desconexión a internet.
El informe addition.txt creí que estaba incluido, como tiene la limitación de 65000 caracteres tuve que hacer muchos archivos.
Aqui va:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-11-2019
Ran by CARLOS-PC (21-11-2019 12:21:46)
Running from C:\Users\CARLOS-PC\Desktop
Windows 10 Pro Version 1903 18362.476 (X64) (2019-06-24 18:22:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-2882685397-3555233731-4115562749-500 - Administrator - Disabled)
CARLOS-PC (S-1-5-21-2882685397-3555233731-4115562749-1002 - Administrator - Enabled) => C:\Users\CARLOS-PC
DefaultAccount (S-1-5-21-2882685397-3555233731-4115562749-503 - Limited - Disabled)
Invitado (S-1-5-21-2882685397-3555233731-4115562749-501 - Limited - Disabled)
nicai (S-1-5-21-2882685397-3555233731-4115562749-1003 - Limited - Enabled)
Saydrya (S-1-5-21-2882685397-3555233731-4115562749-1004 - Limited - Enabled) => C:\Users\Saydrya
WDAGUtilityAccount (S-1-5-21-2882685397-3555233731-4115562749-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\uTorrent) (Version: 3.5.5.45365 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
888poker (HKLM-x32\...\{D22A2C85-EAC3-48FD-865A-806D3CAA7B0B}) (Version: 7.14.00112 - 888) Hidden
888poker (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\InstallShield_{D22A2C85-EAC3-48FD-865A-806D3CAA7B0B}) (Version: 7.14.00112 - 888)
Actualización de NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
Adobe Bridge 2019 (HKLM-x32\...\KBRG_9_1) (Version: 9.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe InDesign 2019 (HKLM-x32\...\IDSN_14_0_3) (Version: 14.0.3 - Adobe Systems Incorporated)
AIDA64 Engineer v5.97 (HKLM-x32\...\AIDA64 Engineer_is1) (Version: 5.97 - FinalWire Ltd.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Core Temp 1.15 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15 - ALCPU)
EaseUS Partition Master 12.10 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
GGPoker (HKLM-x32\...\{2FC54B12-A2E4-438C-8B00-1D7C333BC6DD}) (Version: 1.0.0.60 - NSUS Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hetman Partition Recovery 2.8 (HKLM-x32\...\Hetman Partition Recovery) (Version: - )
Intel(R) Smart Connect Technology (HKLM\...\{D3011052-0DB7-4979-B3AB-7F5FF4070864}) (Version: 5.0.10.2850 - Intel Corporation)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
KeePass Password Safe 2.43 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.43 - Dominik Reichl)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Office Language Pack 2016 - Spanish/Español (HKLM\...\Office16.OMUI.es-es) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 en-US) (HKLM\...\Mozilla Firefox 70.0 (x64 en-US)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.7.1 - Notepad++ Team)
NVIDIA Controlador de 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 22.0.2 - OBS Project)
Opera Stable 64.0.3417.92 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Opera 64.0.3417.92) (Version: 64.0.3417.92 - Opera Software)
Oracle VM VirtualBox 6.0.10 (HKLM\...\{6A145EBB-FA61-4F90-BDE1-2308B1C26C0F}) (Version: 6.0.10 - Oracle Corporation)
OStoGO (HKLM-x32\...\{4562754D-0F13-4EBD-9480-323899324E77}) (Version: 1.0.0 - A-DATA)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panel de control de NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PokerTracker 4 (remove only) (HKLM-x32\...\PokerTracker4) (Version: - )
PostgreSQL 9.3 (HKLM\...\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group)
PUSH Entertainment - Video Wallpaper (HKLM\...\Video Wallpaper_is1) (Version: 2.23 - PUSH Entertainment)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 beta r3258 - Rainmeter)
Registry Trash Keys Finder (Freeware) (HKLM-x32\...\Registry Trash Keys Finder) (Version: 3.9.4.0 - SNC)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Signal 1.24.1 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.24.1 - Open Whisper Systems)
Signal 1.27.2 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\{7d96caee-06e6-597c-9f2f-c7bb2e0948b4}) (Version: 1.27.2 - Open Whisper Systems)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Streamlabs OBS 0.18.5 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.18.5 - General Workings, Inc.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.1965 - TeamViewer)
Telegram Desktop version 1.8.2 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.8.2 - Telegram FZ-LLC)
TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.OMUI.es-es_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
USB Disk Storage Format Tool 6.0 (HKLM\...\USB Disk Storage Format Tool_is1) (Version: - Authorsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 0.14.0.0 - Winaero)
Windows Deployment Tools (HKLM-x32\...\{C4443D4E-AC00-CF0E-9519-C9111E83ADBB}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 (HKLM-x32\...\{346FC109-E9A8-2224-5726-843C7283E4F7}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{64FF0563-D6F1-C8E4-56F8-F678D1158C58}) (Version: 10.1.17134.1 - Microsoft)
Winner Poker (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\winnerpoker) (Version: 1.1.1.35 - Winner Poker)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XMind 8 Update 8 (v3.7.8) (HKLM-x32\...\XMind_is1) (Version: 3.7.8.201807240049 - XMind Ltd.)
Zoom (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\ZoomUMX) (Version: 4.5 - Zoom Video Communications, Inc.)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-10-16] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-10-16] (Adobe Systems Incorporated)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-03-23] (Microsoft Corporation)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-10-29] (Microsoft Corporation)
Meteor Showers -> C:\Program Files\WindowsApps\Microsoft.MeteorShowers_1.0.0.0_neutral__8wekyb3d8bbwe [2019-06-24] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Studios) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-25] (Thumbmunkeys Ltd) [MS Ad]
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.8.36.0_x64__43tkc6nmykmb6 [2019-11-03] (Ookla)
TV Player Online -> C:\Program Files\WindowsApps\11865smurz.TVPlayerOnline_1.0.9.0_x64__gxfbnsvapweh2 [2019-05-04] (smurz) [MS Ad]
Twitch Player: Live Game Streaming -> C:\Program Files\WindowsApps\42731GoodMediaGroup.VidsTokforTwitchGamingLiveStre_1.1.8.0_x64__wzw6dymc89v9p [2019-06-18] (Good Media Group) [MS Ad]
YouTube v2.0 -> C:\Program Files\WindowsApps\4041090013366.YouTubev2.0_1.0.19.0_x64__k5n3qe4w2etea [2019-10-29] (CopyPaste) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{04271989-C4D2-7DB2-AD74-23662A807611} -> [UPONIC] => C:\Users\CARLOS-PC\UPONIC [2019-10-07 07:51]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{04271989-C4D2-B344-C5CB-7A61879C1827} -> [OneDrive - UPONIC] => C:\Users\CARLOS-PC\OneDrive - UPONIC [2019-05-04 20:28]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8E1DDC2BF542} -> [Creative Cloud Files] => C:\Users\CARLOS-PC\Creative Cloud Files [2019-10-16 23:21]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-10-14] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-10-23 08:43 - 2019-10-23 08:43 - 000010240 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
2019-03-22 20:09 - 2017-05-08 22:59 - 000178688 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBPQ.dll
2019-03-22 20:10 - 2016-08-02 04:40 - 002257408 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libxml2.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000013824 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2019-03-22 20:09 - 2011-01-10 09:16 - 000240862 _____ (Free Software Foundation) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libintl-8.dll
2019-03-26 02:35 - 2019-02-21 10:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-10-29 21:36 - 2016-11-14 03:45 - 001408200 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-03-22 20:10 - 2017-01-31 00:35 - 001662976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBEAY32.dll
2019-03-22 20:10 - 2017-01-31 00:35 - 000353280 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\SSLEAY32.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\sharepoint.com -> hxxps://uponic-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 01:31 - 2019-10-07 06:47 - 000001934 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\CARLOS-PC\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Open-Shell Start Menu"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "Driver Updater"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "CCleaner"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{731A466B-3A03-4D17-9237-9AA48907A769}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{672E6088-58BB-41D8-A7A7-5299CCAB16AB}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{3C6DB419-50ED-4F7C-9715-19EC2D0A6D9C}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{3B56C224-E0E3-43F3-A0F9-EB730EDB4396}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{23C31FD6-2EF9-4207-8D17-563E4690B4C0}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{9FCA7CED-AB2A-4A67-A832-07567EDED131}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{BFBF68C2-F0F1-4D20-B05A-094CCDF217EF}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{6AEEE909-4E7A-4568-9228-E88524274C20}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [UDP Query User{952035FA-92EC-4A24-85BD-145C428CA7A1}C:\program files\microsoft office\office16\lync.exe] => (Block) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{03CB7A1E-4BF0-4C54-B68F-51DBCD096CCE}C:\program files\microsoft office\office16\lync.exe] => (Block) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B8F2290-9449-42AF-9F9F-779437046F9C}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F3D6F4FA-922D-48D0-95B3-3DC7C2F06630}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EBDE1FC-CE8D-4A9B-B9A9-AB36E1A500F8}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{62AC81D2-24E9-4EE0-8760-77BAEEDD29C5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D3D0656E-8D29-45DD-BA5F-92E329A138BF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{09638A82-B646-41B8-B5FB-4728A39F804B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EDB4F778-3609-4C22-BD22-7D72BD90C08E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6AE74B8A-C09F-4F9B-AB4E-41EB5D5A94C3}] => (Block) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{67B2A764-3A94-4DB9-ACF1-DC2FEC8CFC39}] => (Block) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{C3F3AA53-E663-4A62-A093-5AF828B78DBC}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [TCP Query User{38C13D9B-5FF6-4577-AA80-D3FB371C1F72}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{7AA507B9-7A44-4E7C-A412-191171F36169}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C0B34191-128E-4F62-9A99-B61B2EF4EB2F}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{678F3A77-FDB2-411A-BBB4-6C522E0F05E9}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF68088A-2FFF-4703-9EE1-672443783D7E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{85E143AA-987C-48F2-BD01-35501D9317DF}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{42037E13-E516-4921-9A73-EDB1103BF967}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{0B47B47E-AF43-4684-929E-E3A31FEC7DF4}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{B3377F9F-F1D3-48B1-97B6-1AE3B5EBCFE3}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{FF83257B-B35D-4E2B-8287-F94ED6589EF4}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{D3D611D6-5F68-4F01-8F9F-E9911988612A}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{E3BDE53F-325E-4D8E-A0CB-6437E41504F7}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{F2578D5D-A081-4E4D-A3A7-E7E94A6B671E}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{6EC14F66-F2A6-47B3-A8BC-9310EE18B274}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{58FF7F98-3643-4617-B55A-784DABAE72A1}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{C3FD7D08-CC3B-4983-85C1-DAA8700D12FC}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{D9D2D113-522C-457B-9FA9-8BA16E1BE13C}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{A43E5794-7DE3-40C4-91E3-58EC19DAA5E3}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{C631D194-51FB-4850-8A70-ECC5751F6491}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{9C3C8403-D4CC-4F8F-AF4C-F43ADBABBC61}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{A89824C1-8C69-43DA-9AE7-B4B68A47BB03}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{349868AD-4FEC-4D1E-8AC5-984A2E370741}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{7C0EFCB0-6D72-49EF-B854-8E8BAF6135E4}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{3AC7DF5B-673A-41FD-ABE2-FAF2EFADD826}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{17EF6C85-0B69-4C24-B5EB-00666DBBA77C}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{09694D3D-C77F-4EC9-A37E-146ED42571AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2210FA05-0E70-421A-917C-008CCDD0C971}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3011DCB5-02E7-479C-84C3-885E183F90AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{86679529-92B0-4FE7-AF1E-4DA89F8FDADC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{84DFCDA7-D9C8-4359-94B9-D506B105B195}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0CB5ACF3-C59B-4D64-8E1A-669533025EFC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{07C6E93C-A41B-40B8-9B45-089246F2112B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2C5A645E-D916-4CBD-921B-581965AE35B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{20F30C46-468B-4D43-A2E9-87D7B5082F08}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation)
FirewallRules: [UDP Query User{C81E1193-0FB6-4AF9-BB4B-87E525F8F4C5}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation)
FirewallRules: [{73935F3F-E795-4CCE-AF61-BCCC54903F01}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7FD9413E-6497-4A5A-B5C4-9E428F9483EE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9292D32A-1599-4A18-8D79-9316F5839D11}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{E95A1CE6-EEE2-4135-9B6D-4EEFDA098AD1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4FFCA829-52FF-423C-9936-FE3778FFCE5A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{CFED998A-E7C8-4210-A998-78321C7AFA6B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9217D441-DC11-4D09-A9DF-32CCE6631B60}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
01-11-2019 09:36:40 Installed DriversCloud.com (64 bits)
16-11-2019 00:42:46 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (11/21/2019 11:58:25 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3592,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (11/21/2019 11:43:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7760,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (11/21/2019 11:27:33 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1936,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (11/21/2019 11:15:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3668,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (11/21/2019 10:49:35 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Se agotó el tiempo de espera al inicio del servidor
Error: (11/21/2019 10:49:34 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: 2019-11-21 10:49:34 CST FATAL: el archivo de bloqueo �postmaster.pid� ya existe
2019-11-21 10:49:34 CST HINT: �Hay otro postmaster (PID 4400) corriendo en el directorio de datos �C:/Program Files/PostgreSQL/9.3/data�?
Error: (11/21/2019 10:40:56 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Se agotó el tiempo de espera al inicio del servidor
Error: (11/16/2019 04:48:22 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5180,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Disco virtual terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Genuine Monitor Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Genuine Software Integrity Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio AdobeUpdateService se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) HD Graphics Control Panel Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NVIDIA Stereoscopic 3D Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Windows Defender:
===================================
Date: 2019-11-21 11:36:04.146
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {186E6E58-29D8-475C-8BCC-71FA2BD0F885}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2019-09-04 19:21:06.201
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Nombre: Trojan:Win32/Wacatac.B!ml
Id.: 2147735505
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: containerfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso; file:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso->Adobe InDesign CC 20181 Portable.exe; webfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso|http://dhr2qa7vmdkjg.cloudfront.net/187b4b33dc1720c34757c6e00c045d5bb4fa1d607bbacecccd3072d749fbb685/|pid:10064,ProcessStart:132121166014530222
Origen de detección: Internet
Tipo de detección: FastPath
Origen de detección: Descargas y datos adjuntos
Usuario: PC-CARLOS\CARLOS-PC
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.301.549.0, AS: 1.301.549.0, NIS: 1.301.549.0
Versión de motor: AM: 1.1.16300.1, NIS: 1.1.16300.1
Date: 2019-09-04 19:20:41.199
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Nombre: Trojan:Win32/Wacatac.B!ml
Id.: 2147735505
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: containerfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso; file:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso->Adobe InDesign CC 20181 Portable.exe; webfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso|http://dhr2qa7vmdkjg.cloudfront.net/187b4b33dc1720c34757c6e00c045d5bb4fa1d607bbacecccd3072d749fbb685/|pid:10064,ProcessStart:132121166014530222
Origen de detección: Internet
Tipo de detección: FastPath
Origen de detección: Descargas y datos adjuntos
Usuario: PC-CARLOS\CARLOS-PC
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.301.549.0, AS: 1.301.549.0, NIS: 1.301.549.0
Versión de motor: AM: 1.1.16300.1, NIS: 1.1.16300.1
Date: 2019-11-16 00:00:16.036
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.305.2207.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16500.1
Código de error: 0x80240016
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.
Date: 2019-11-01 01:56:17.388
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor:
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección
Date: 2019-11-01 01:56:17.387
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor:
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección
Date: 2019-11-01 01:56:17.386
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor:
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección
Date: 2019-11-01 01:56:17.373
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor:
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección
CodeIntegrity:
===================================
Date: 2019-11-21 11:53:25.630
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2019-11-21 11:53:25.615
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2019-11-21 11:53:25.484
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2019-11-21 11:52:56.299
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-21 11:52:56.281
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-21 11:52:56.262
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-21 11:52:56.242
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-21 11:52:56.221
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P1.40 07/12/2013
Motherboard: ASRock H61M-VG4
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 41%
Total physical RAM: 8082.32 MB
Available physical RAM: 4690.89 MB
Total Virtual: 12946.32 MB
Available Virtual: 8159.27 MB
==================== Drives ================================
Drive c: (PRINCIPAL) (Fixed) (Total:456 GB) (Free:327.82 GB) NTFS
Drive d: (DATOS) (Fixed) (Total:474.47 GB) (Free:396.55 GB) NTFS
Drive e: () (Fixed) (Total:235.2 GB) (Free:166.67 GB) NTFS
Drive f: (CMM2) (Fixed) (Total:105.63 GB) (Free:58.65 GB) NTFS
Drive i: (Linux) (Fixed) (Total:123.86 GB) (Free:123.61 GB) NTFS
\\?\Volume{751bf3c8-255d-4471-af2a-b6bbd382ab09}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS
\\?\Volume{1a757d22-5a10-47c3-9425-fbf843c74398}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{bd753abc-f23f-4507-8a20-f1a180918921}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS
\\?\Volume{5d4040d2-0c90-48f2-85c0-c2b71e52c013}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{62156262-b1da-44a8-bd28-0bb4d9cb0802}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{3a050261-e3aa-44c9-b0f7-b133d08b4dee}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 92352768)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 94336703)
Partition: GPT.
==================== End of Addition.txt =======================