Posible troyano o programa raro en el navegador

Buenas llevo varias semana dandome cuenta que intentando descagar una serie de una web que uso al entrar en el link de descarga seme descaga un video llamado X.mp4 si le doy a ver online me sale un video de gallinas pero si en vez del chrome uso el internet explorer si se me descarga el video correcto y si puedo verlo online

Hola @Chaka_Ck

Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

  • Realiza un Análisis de amenazas, actualizando si te lo pide.
  • Pulsar en “Cuarentena seleccionado” para enviarlo a la cuarentena y Reinicias el sistema.
  • En el apartado del manual Informes :arrow_forward: Informe de análisis encontrarás el reporte de MBAM, clic en Exportar :arrow_forward: Copiar al portapapeles.

2) Descarga AdwCleaner | InfoSpyware en el escritorio.

  • Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus.
  • Cierra también todos los programas que tengas abiertos.
  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
  • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
  • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt

3) Descarga CCleaner

  • Instala Ccleaner
  • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine :arrow_forward: clic en ejecutar limpiador
  • Clic en la pestaña Registro :arrow_forward: clic en buscar problemas esperas que termine :arrow_forward: clic en Reparar Seleccionadas y haces una copia de seguridad
  • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.

Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.

Un saludo

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 21/3/19
Hora del análisis: 10:10
Archivo de registro: 22691cc2-4bb9-11e9-a22f-7824afb4e189.json

-Información del software-
Versión: 3.7.1.2839
Versión de los componentes: 1.0.538
Versión del paquete de actualización: 1.0.9778
Licencia: Gratis

-Información del sistema-
SO: Windows 8.1
CPU: x64
Sistema de archivos: NTFS
Usuario: chaka\ck

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 424304
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 9 hr, 57 min, 41 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build:    01-30-2019
# Database: 2019-03-21.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    03-21-2019
# Duration: 00:01:23
# OS:       Windows 8.1
# Scanned:  31923
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

El problema sigue igual pero solo ocurre en chrome

Hola

Descarga Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by ck (administrator) on CHAKA (22-03-2019 00:27:50)
Running from C:\Users\ck\Downloads
Loaded Profiles: ck (Available Profiles: ck & Administrador & Classic .NET AppPool & .NET v4.5 & DefaultAppPool & .NET v2.0 & .NET v4.5 Classic & .NET v2.0 Classic)
Platform: Windows 8.1 (Update) (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\bin\oracle.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE
(@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2018-05-16] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSLoader.exe [63296 2014-02-25] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [492808 2014-05-06] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2135904 2018-08-28] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}] => C:\Program Files (x86)\Common Files\A3\Instal\ComponentesA3.exe [50114792 2017-10-05] (Wolters Kluwer Espana S.A. -> Wolters Kluwer España, S.A.)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\MountPoints2: {740a08c7-2cf3-11e8-8298-7824afb4e189} - "G:\startme.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-06] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C5C7E09A-C216-44E7-96A2-C93C399BB9AA}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-191604999-3809266826-1454172177-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-191604999-3809266826-1454172177-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2019-01-13] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2019-01-13] (Oracle America, Inc. -> Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2019-01-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2019-01-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.es/","hxxp://www.iestrassierra.com/"
CHR Profile: C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default [2019-03-22]
CHR Extension: (MEGA) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2019-03-15]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2019-02-21]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-03-13]
CHR Extension: (Photovisi - Photo Collage Maker) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\emkkfkcbnpdnhgeolpbggbdogfngiadf [2018-05-15]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-07]
CHR Extension: (No Coin - Block miners on the web!) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojamcfopckidlocpkbelmpjcgmbgjcl [2018-05-15]
CHR Extension: (Dropbox) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-05-15]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-15]
CHR Extension: (Gmail) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-05-15]
CHR Extension: (Chrome Media Router) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
CHR Profile: C:\Users\ck\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-04]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [71680 2014-02-25] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1419424 2018-06-30] (Intel(R) Software -> Intel Corporation)
R2 ftpsvc; C:\WINDOWS\system32\inetsrv\ftpsvc.dll [372736 2019-02-21] (Microsoft Windows -> Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [329104 2014-12-04] (Intel Corporation - pGFX -> Intel Corporation)
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [16896 2019-02-21] (Microsoft Windows -> Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe [45568 2014-05-29] () [File not signed]
S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [81408 2014-05-29] (Oracle Corporation) [File not signed]
R2 OracleServiceXE; c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [147110912 2014-05-30] (Oracle Corporation) [File not signed]
S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [83968 2014-05-29] (Oracle Corporation) [File not signed]
R2 OracleXETNSListener; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [522240 2014-05-29] (Oracle Corporation) [File not signed]
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [737984 2015-08-30] (@ByELDI -> @ByELDI) [File not signed]
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [690424 2019-01-25] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WMSVC; C:\WINDOWS\system32\inetsrv\wmsvc.exe [10752 2019-02-21] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2198016 2018-08-28] (Sony) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AgereSoftModem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [1146880 2013-06-18] (Microsoft Windows -> LSI Corp)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205608 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254408 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196304 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320904 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58168 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42496 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169104 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88152 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034640 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476256 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220632 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380160 2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4319632 2018-10-29] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2014-06-03] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55792 2018-06-30] (Intel(R) Software -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52208 2018-06-30] (Intel(R) Software -> Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50672 2019-01-13] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260080 2018-06-30] (Intel(R) Software -> Intel Corporation)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2014-03-25] (Sony Mobile Communications AB -> Sony Mobile Communications)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. ->  )
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-03-21] (Malwarebytes Corporation -> Malwarebytes)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-02-11] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [905224 2018-11-29] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\WINDOWS\system32\DRIVERS\usb80236.sys [20992 2015-04-25] (Microsoft Windows -> Microsoft Corporation)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [235832 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247216 2019-01-28] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174008 2019-01-14] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
S3 cpuz140; \??\C:\Users\ck\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATTENTION
S3 DptfDevDram; \SystemRoot\system32\DRIVERS\DptfDevDram.sys [X]
S3 DptfDevPch; \SystemRoot\system32\DRIVERS\DptfDevPch.sys [X]
S3 DptfDevProc; \SystemRoot\system32\DRIVERS\DptfDevProc.sys [X]
S3 DptfManager; \SystemRoot\system32\DRIVERS\DptfManager.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-22 00:27 - 2019-03-22 00:29 - 000025627 _____ C:\Users\ck\Downloads\FRST.txt
2019-03-22 00:27 - 2019-03-22 00:27 - 000000000 ____D C:\FRST
2019-03-22 00:26 - 2019-03-22 00:26 - 002434048 _____ (Farbar) C:\Users\ck\Downloads\FRST64.exe
2019-03-21 20:34 - 2019-03-21 20:34 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-03-21 11:04 - 2019-03-21 11:04 - 001137729 _____ C:\Users\ck\Downloads\249341-Texto del artículo-900761-1-10-20160524.pdf
2019-03-21 10:06 - 2019-03-21 10:06 - 000001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-21 10:06 - 2019-03-21 10:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-21 10:06 - 2019-03-21 10:06 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-21 10:06 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-03-21 10:05 - 2019-03-21 10:05 - 062177776 _____ (Malwarebytes ) C:\Users\ck\Downloads\mb3-setup-consumer-3.7.1.2839-1.0.538-1.0.9712.exe
2019-03-21 09:37 - 2019-03-21 09:37 - 189169991 _____ C:\Users\ck\Downloads\BN 98.mp4
2019-03-19 18:08 - 2019-03-19 18:08 - 000649724 _____ C:\Users\ck\Downloads\MEMORIA DE PRÁCTICAS Carlos Díaz Rodríguez.pdf
2019-03-19 18:08 - 2019-03-19 18:08 - 000406174 _____ C:\Users\ck\Downloads\pdf2doc.zip
2019-03-17 09:09 - 2019-03-17 09:09 - 000288992 _____ C:\WINDOWS\Minidump\031719-25750-01.dmp
2019-03-17 09:08 - 2019-03-17 09:08 - 493919861 _____ C:\WINDOWS\MEMORY.DMP
2019-03-14 12:49 - 2019-03-14 12:49 - 001559078 _____ C:\Users\ck\Downloads\Ejercicios XSD.pdf
2019-03-14 12:13 - 2019-03-14 12:13 - 001814961 _____ C:\Users\ck\Downloads\UD05-XSL-EjerciciosEjemplo (1).pdf
2019-03-13 16:34 - 2019-03-13 16:34 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-03-13 09:01 - 2019-03-06 08:18 - 007368440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-13 09:01 - 2019-03-06 07:27 - 004167680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-03-13 09:01 - 2019-02-26 08:57 - 025737216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-13 09:01 - 2019-02-26 08:25 - 020281856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-13 09:01 - 2019-02-26 08:22 - 005777920 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-13 09:01 - 2019-02-26 07:43 - 015284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-13 09:01 - 2019-02-26 07:35 - 004494848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-13 09:01 - 2019-02-26 07:29 - 013681664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-13 09:01 - 2019-02-09 01:38 - 002534936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-13 09:01 - 2019-02-09 01:33 - 001901888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-13 09:00 - 2019-03-06 08:23 - 001737712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-03-13 09:00 - 2019-03-06 08:23 - 001501056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-13 09:00 - 2019-03-06 08:23 - 001371464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-13 09:00 - 2019-03-06 08:22 - 001677232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-13 09:00 - 2019-03-06 08:22 - 001537768 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-13 09:00 - 2019-03-06 07:26 - 000032896 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 09:00 - 2019-03-06 07:03 - 003324416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-13 09:00 - 2019-03-06 06:37 - 003617280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-13 09:00 - 2019-03-06 05:50 - 002780160 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2019-03-13 09:00 - 2019-03-06 05:39 - 002464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2019-03-13 09:00 - 2019-02-26 08:33 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-13 09:00 - 2019-02-26 08:31 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-13 09:00 - 2019-02-26 08:31 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2019-03-13 09:00 - 2019-02-26 08:31 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2019-03-13 09:00 - 2019-02-26 08:20 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-13 09:00 - 2019-02-26 08:07 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-13 09:00 - 2019-02-26 08:04 - 002295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-13 09:00 - 2019-02-26 07:58 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2019-03-13 09:00 - 2019-02-26 07:57 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-13 09:00 - 2019-02-26 07:56 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2019-03-13 09:00 - 2019-02-26 07:56 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2019-03-13 09:00 - 2019-02-26 07:51 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2019-03-13 09:00 - 2019-02-26 07:46 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2019-03-13 09:00 - 2019-02-26 07:44 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-03-13 09:00 - 2019-02-26 07:43 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-03-13 09:00 - 2019-02-26 07:41 - 002135552 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-03-13 09:00 - 2019-02-26 07:41 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2019-03-13 09:00 - 2019-02-26 07:39 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2019-03-13 09:00 - 2019-02-26 07:39 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2019-03-13 09:00 - 2019-02-26 07:36 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2019-03-13 09:00 - 2019-02-26 07:33 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2019-03-13 09:00 - 2019-02-26 07:31 - 002059776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-03-13 09:00 - 2019-02-26 07:31 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-03-13 09:00 - 2019-02-26 07:31 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-03-13 09:00 - 2019-02-26 07:29 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-13 09:00 - 2019-02-26 07:25 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2019-03-13 09:00 - 2019-02-26 07:20 - 001049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2019-03-13 09:00 - 2019-02-26 07:18 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-13 09:00 - 2019-02-26 07:12 - 004386304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-13 09:00 - 2019-02-26 07:09 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-13 09:00 - 2019-02-26 07:07 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-03-13 09:00 - 2019-02-26 07:06 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-03-13 09:00 - 2019-02-20 21:17 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 09:00 - 2019-02-15 20:58 - 000536584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-13 09:00 - 2019-02-15 20:58 - 000466272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-13 09:00 - 2019-02-15 20:58 - 000413176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-13 09:00 - 2019-02-15 20:54 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-13 09:00 - 2019-02-15 20:51 - 000449744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-13 09:00 - 2019-02-15 20:51 - 000413576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-13 09:00 - 2019-02-15 20:51 - 000033504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-13 09:00 - 2019-02-15 20:50 - 000372328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-03-13 09:00 - 2019-02-09 20:36 - 000444392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-13 09:00 - 2019-02-09 20:36 - 000218056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 09:00 - 2019-02-09 19:53 - 000923384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 09:00 - 2019-02-09 19:51 - 002014696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-13 09:00 - 2019-02-09 19:26 - 000333560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-13 09:00 - 2019-02-09 18:49 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 09:00 - 2019-02-09 18:49 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 09:00 - 2019-02-09 18:49 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 09:00 - 2019-02-09 18:46 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2019-03-13 09:00 - 2019-02-09 18:18 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2019-03-13 09:00 - 2019-02-09 18:03 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-03-13 09:00 - 2019-02-09 17:56 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2019-03-13 09:00 - 2019-02-09 17:45 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-03-13 09:00 - 2019-02-09 17:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-13 09:00 - 2019-02-09 17:16 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-13 09:00 - 2019-02-09 17:15 - 001095680 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 09:00 - 2019-02-08 20:55 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-13 09:00 - 2019-02-08 19:54 - 001755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-13 09:00 - 2019-02-08 19:51 - 002348032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-13 09:00 - 2019-02-08 19:32 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-13 09:00 - 2019-02-08 18:50 - 001493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-13 09:00 - 2019-02-08 18:45 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-13 09:00 - 2019-02-07 20:38 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 09:00 - 2019-02-07 01:40 - 001311240 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-13 09:00 - 2019-02-07 01:40 - 001308240 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 09:00 - 2019-02-06 20:32 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 09:00 - 2019-02-06 20:32 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 09:00 - 2019-02-06 20:31 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 09:00 - 2019-02-06 20:30 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2019-03-13 09:00 - 2019-02-06 20:30 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 09:00 - 2019-02-06 19:27 - 001040384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-13 09:00 - 2019-02-06 18:52 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 09:00 - 2019-02-01 05:27 - 002447600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-12 21:02 - 2019-03-12 21:02 - 000571291 _____ C:\Users\ck\Downloads\Ejercicios DTD Avanzados.pdf
2019-03-12 18:07 - 2019-03-12 18:07 - 000017529 _____ C:\Users\ck\Downloads\Diaz_Rodriguez_Carlos_tarea7_progra.zip
2019-03-12 10:25 - 2019-03-12 10:25 - 000182129 _____ C:\Users\ck\Downloads\Ejercicios DTD básicos.pdf
2019-03-12 10:08 - 2019-03-12 10:08 - 000001243 _____ C:\Users\ck\Downloads\LMSGI_TP04_DIAZ_RODRIGUEZCARLOS.zip
2019-03-12 10:00 - 2019-03-12 10:00 - 000001905 _____ C:\Users\ck\Downloads\Recursos Tarea Presencial Baile.zip
2019-03-10 23:53 - 2019-03-10 23:53 - 000017737 _____ C:\Users\ck\Desktop\Diaz_rodriguez_Carlos_PROG07_Tarea.zip
2019-03-10 22:39 - 2019-03-10 22:39 - 000582804 _____ C:\Users\ck\Downloads\Tarea Presencial 2 NO Evaluable.pdf
2019-03-10 22:19 - 2019-03-10 22:20 - 000001102 _____ C:\Users\ck\Downloads\Diaz_rodriguez_Carlos_BD_Tarea_4_2.sql
2019-03-10 22:13 - 2019-03-10 22:13 - 000000755 _____ C:\Users\ck\Downloads\tema05_3.sql
2019-03-09 19:43 - 2019-03-09 19:43 - 000012621 _____ C:\Users\ck\Downloads\JuegoRol.zip
2019-03-09 17:28 - 2019-03-09 17:41 - 000000000 _____ C:\Users\ck\Downloads\crealmacen.sql
2019-03-09 17:07 - 2019-03-09 17:07 - 000000000 _____ C:\Users\ck\Desktop\Nuevo documento de texto.txt
2019-03-08 10:37 - 2019-03-17 11:41 - 000000000 ____D C:\Users\ck\Downloads\lm
2019-03-07 21:29 - 2019-03-07 21:29 - 000810829 _____ C:\Users\ck\Desktop\Diaz_rodriguez_Carlos__SI07_Tarea.pdf
2019-03-07 11:30 - 2019-03-07 11:35 - 157207452 _____ C:\Users\ck\Downloads\Linux64CmapTools_v6.03.01_02-07-19.bin
2019-03-07 10:28 - 2019-03-07 10:28 - 000209420 _____ C:\Users\ck\Downloads\Tema_LMD_2.pdf
2019-03-07 09:48 - 2019-03-07 09:55 - 1513308160 _____ C:\Users\ck\Downloads\ubuntu-16.04.1-desktop-amd64.iso
2019-03-06 21:45 - 2019-03-22 00:29 - 000001539 _____ C:\Users\ck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AsusSmartGestureDetector.lnk
2019-03-05 22:05 - 2019-03-05 22:05 - 000244590 _____ C:\Users\ck\Desktop\Diaz_rodriguez_Carlos_FOL_Tarea_5.pdf
2019-03-04 09:05 - 2019-03-10 22:42 - 000000000 ____D C:\Users\ck\Downloads\Nueva carpeta (2)
2019-03-03 13:37 - 2017-09-27 17:29 - 000000232 _____ C:\WINDOWS\SysWOW64\dllhost.exe.config
2019-03-03 13:36 - 2019-03-03 13:46 - 000000000 ____D C:\ProgramData\Wondershare
2019-03-03 13:36 - 2019-03-03 13:46 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-03-03 13:35 - 2019-02-09 00:40 - 001137776 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-03-03 13:35 - 2019-02-09 00:40 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-03-03 13:35 - 2019-02-09 00:07 - 000614040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-03-03 13:35 - 2019-02-08 23:18 - 000862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-03-03 13:35 - 2019-02-08 22:39 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-03-03 13:35 - 2019-02-08 22:29 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-03-03 13:35 - 2019-01-09 05:20 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hcproviders.dll
2019-03-03 13:35 - 2019-01-09 05:10 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2019-03-03 13:35 - 2019-01-09 05:06 - 000894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2019-03-03 13:35 - 2019-01-09 04:52 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hcproviders.dll
2019-03-03 13:35 - 2019-01-09 04:45 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2019-03-03 13:35 - 2019-01-09 04:40 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2019-03-03 13:35 - 2019-01-08 07:02 - 001764504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-03-03 13:35 - 2019-01-08 06:12 - 001489704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-03-03 13:35 - 2019-01-05 08:35 - 000152128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-03 13:35 - 2019-01-04 15:15 - 001635328 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-03 13:35 - 2019-01-04 15:15 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-03 13:34 - 2019-03-03 13:37 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2019-03-02 09:06 - 2019-03-02 09:06 - 000000000 ____D C:\Users\ck\AppData\Local\Power2Go8
2019-03-01 10:47 - 2019-03-01 10:47 - 001814961 _____ C:\Users\ck\Desktop\UD05-XSL-EjerciciosEjemplo.pdf
2019-03-01 10:13 - 2019-03-01 10:13 - 001814961 _____ C:\Users\ck\Downloads\UD05-XSL-EjerciciosEjemplo.pdf
2019-03-01 09:11 - 2019-03-01 09:11 - 000000000 ____D C:\Users\Public\Documents\CyberLink
2019-03-01 09:11 - 2019-03-01 09:11 - 000000000 ____D C:\Users\Public\CyberLink
2019-03-01 09:11 - 2019-03-01 09:11 - 000000000 ____D C:\Users\ck\AppData\Roaming\CyberLink
2019-03-01 09:10 - 2019-03-01 09:10 - 000000000 ____D C:\ProgramData\CyberLink
2019-02-28 00:55 - 2019-02-28 00:55 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2019-02-28 00:55 - 2013-11-12 14:25 - 000091912 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2019-02-28 00:54 - 2019-02-28 00:55 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-02-28 00:46 - 2019-02-28 00:46 - 000000000 ____D C:\ProgramData\Temp
2019-02-28 00:45 - 2019-02-28 00:55 - 000000000 ____D C:\ProgramData\install_clap
2019-02-26 10:04 - 2019-02-26 10:04 - 001079595 _____ C:\Users\ck\Downloads\UD05-XSL-Teoria.pdf
2019-02-25 22:43 - 2019-02-25 22:45 - 2385070119 _____ C:\Users\ck\Downloads\el chapo 3x13.mkv
2019-02-25 22:30 - 2019-02-25 22:32 - 2164196762 _____ C:\Users\ck\Downloads\El chapo 3x12.mkv
2019-02-25 15:58 - 2019-02-25 16:02 - 2177688372 _____ C:\Users\ck\Downloads\El chapo 3x11.mkv
2019-02-25 11:46 - 2019-02-25 11:48 - 1817684317 _____ C:\Users\ck\Downloads\El chapo 3x06.mkv
2019-02-21 21:59 - 2019-02-21 21:59 - 000000000 ____D C:\Users\ck\AppData\Local\Privatefirewall
2019-02-21 21:42 - 2019-02-22 00:11 - 000000028 _____ C:\WINDOWS\ODBC.INI
2019-02-21 21:42 - 2019-02-21 21:42 - 000000000 ____D C:\ProgramData\Privacyware
2019-02-21 21:23 - 2019-03-17 11:27 - 000000000 ____D C:\Users\DefaultAppPool
2019-02-21 21:23 - 2019-02-21 21:23 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Reciente
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Plantillas
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Mis documentos
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Menú Inicio
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Impresoras
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Entorno de red
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mis vídeos
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mis imágenes
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Mi música
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Datos de programa
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\Configuración local
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historial
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Datos de programa
2019-02-21 21:23 - 2019-02-21 21:23 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Archivos temporales de Internet
2019-02-21 21:23 - 2014-03-18 16:27 - 000000369 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 21:23 - 2014-03-18 16:27 - 000000369 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:05 - 2019-02-21 19:05 - 000006976 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2019-02-21 19:05 - 2019-02-21 19:05 - 000000020 ___SH C:\Users\Classic .NET AppPool\ntuser.ini
2019-02-21 19:05 - 2019-02-21 19:05 - 000000020 ___SH C:\Users\.NET v4.5\ntuser.ini
2019-02-21 19:05 - 2019-02-21 19:05 - 000000020 ___SH C:\Users\.NET v4.5 Classic\ntuser.ini
2019-02-21 19:05 - 2019-02-21 19:05 - 000000020 ___SH C:\Users\.NET v2.0\ntuser.ini
2019-02-21 19:05 - 2019-02-21 19:05 - 000000020 ___SH C:\Users\.NET v2.0 Classic\ntuser.ini
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Reciente
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Plantillas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Mis documentos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Menú Inicio
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Impresoras
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Entorno de red
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Mis vídeos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Mis imágenes
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Mi música
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Configuración local
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Local\Historial
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Local\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Local\Archivos temporales de Internet
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Reciente
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Plantillas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Mis documentos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Menú Inicio
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Impresoras
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Entorno de red
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Mis vídeos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Mis imágenes
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Documents\Mi música
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\Configuración local
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Local\Historial
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Local\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5\AppData\Local\Archivos temporales de Internet
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Reciente
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Plantillas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Mis documentos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Menú Inicio
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Impresoras
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Entorno de red
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mis vídeos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mis imágenes
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mi música
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\Configuración local
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Local\Historial
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Local\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Local\Archivos temporales de Internet
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Reciente
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Plantillas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Mis documentos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Menú Inicio
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Impresoras
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Entorno de red
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Documents\Mis vídeos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Documents\Mis imágenes
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Documents\Mi música
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\Configuración local
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\AppData\Local\Historial
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\AppData\Local\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0\AppData\Local\Archivos temporales de Internet
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Reciente
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Plantillas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Mis documentos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Menú Inicio
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Impresoras
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Entorno de red
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Mis vídeos
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Mis imágenes
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Mi música
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\Configuración local
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Local\Historial
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Local\Datos de programa
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Local\Archivos temporales de Internet
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 ____D C:\Users\Classic .NET AppPool
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 ____D C:\Users\.NET v4.5 Classic
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 ____D C:\Users\.NET v4.5
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 ____D C:\Users\.NET v2.0 Classic
2019-02-21 19:05 - 2019-02-21 19:05 - 000000000 ____D C:\Users\.NET v2.0
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v2.0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v2.0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v2.0 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-02-21 19:05 - 2014-03-18 16:27 - 000000369 _____ C:\Users\.NET v2.0 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-02-21 19:03 - 2019-02-21 19:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS
2019-02-21 19:03 - 2019-02-21 19:03 - 000000000 ____D C:\WINDOWS\system32\0C0A
2019-02-21 18:54 - 2019-02-21 19:03 - 000000000 ____D C:\inetpub
2019-02-21 18:54 - 2019-02-21 18:54 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-02-21 18:54 - 2019-02-21 18:54 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-02-21 16:04 - 2019-02-21 16:04 - 000001581 _____ C:\Users\ck\Desktop\VirtualBox.exe - Acceso directo.lnk
2019-02-21 09:05 - 2019-02-21 09:05 - 000000000 ____D C:\Program Files\Oracle
2019-02-21 09:05 - 2019-01-28 02:14 - 001021768 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2019-02-21 09:05 - 2019-01-28 02:14 - 000185960 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2019-02-21 00:19 - 2019-02-21 00:22 - 1740651769 _____ C:\Users\ck\Downloads\El chapo 3x10.mkv
2019-02-21 00:05 - 2019-02-21 00:08 - 801210523 _____ C:\Users\ck\Downloads\el chapo 3x08.mp4
2019-02-20 18:24 - 2019-02-20 18:28 - 1960569678 _____ C:\Users\ck\Downloads\El chapo 3x05.mkv
2019-02-20 18:09 - 2019-02-20 18:13 - 1862705889 _____ C:\Users\ck\Downloads\El chapo 3x04.mkv
2019-02-20 12:49 - 2019-02-20 12:51 - 1763668781 _____ C:\Users\ck\Downloads\El chapo 3x03.mkv
2019-02-20 12:38 - 2019-02-20 12:42 - 1617393797 _____ C:\Users\ck\Downloads\El chapo 3x02.mkv
2019-02-20 12:17 - 2019-02-20 12:18 - 1871548698 _____ C:\Users\ck\Downloads\El chapo 3x01.mkv

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-22 00:19 - 2018-05-16 08:05 - 000000000 ____D C:\Users\ck\AppData\Roaming\vlc
2019-03-21 23:54 - 2018-05-15 21:37 - 000000093 _____ C:\Users\ck\AppData\Roaming\sp_data.sys
2019-03-21 20:35 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-03-21 20:33 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-21 20:30 - 2018-05-15 22:01 - 000000000 ____D C:\Users\ck\AppData\Local\ClassicShell
2019-03-21 20:23 - 2018-05-15 21:39 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-191604999-3809266826-1454172177-1001
2019-03-21 17:44 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-03-21 10:06 - 2018-09-18 00:21 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-21 08:52 - 2018-05-15 22:09 - 000000000 ____D C:\Users\ck\AppData\Roaming\BiglyBT
2019-03-21 00:36 - 2014-05-15 03:29 - 005599822 _____ C:\WINDOWS\system32\perfh00A.dat
2019-03-21 00:36 - 2014-05-15 03:29 - 001687562 _____ C:\WINDOWS\system32\perfc00A.dat
2019-03-21 00:36 - 2014-03-18 16:26 - 000007336 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-20 16:39 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2019-03-20 08:48 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2019-03-19 18:10 - 2017-09-07 14:47 - 000000000 ____D C:\Users\ck\AppData\Local\Packages
2019-03-19 08:53 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-18 00:20 - 2018-06-23 00:55 - 000002780 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-03-18 00:19 - 2018-09-17 09:25 - 000000000 ____D C:\Users\ck\Downloads\Nueva carpeta
2019-03-17 11:48 - 2018-05-15 21:25 - 000000000 ____D C:\Users\ck
2019-03-17 09:09 - 2018-06-18 16:50 - 000000000 ____D C:\WINDOWS\Minidump
2019-03-14 21:39 - 2018-05-16 00:39 - 000004168 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-03-14 09:10 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2019-03-13 21:01 - 2019-02-03 19:23 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-03-13 21:01 - 2018-11-27 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-03-13 21:01 - 2018-11-27 19:14 - 000000000 ____D C:\Program Files\7-Zip
2019-03-13 21:01 - 2018-06-23 00:55 - 000003870 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-03-13 16:39 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-13 16:34 - 2019-01-14 15:52 - 000254408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-03-13 16:34 - 2019-01-06 02:10 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-03-13 16:34 - 2019-01-06 02:10 - 000196304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-03-13 16:34 - 2019-01-06 02:10 - 000058168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-03-13 16:34 - 2019-01-06 02:10 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-03-13 16:34 - 2018-10-12 11:17 - 000042496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 001034640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000476256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000380160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000220632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000205608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000169104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-03-13 16:34 - 2018-05-16 00:36 - 000088152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-03-13 16:10 - 2013-08-22 15:44 - 000478256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-13 16:04 - 2018-05-16 01:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-13 16:04 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2019-03-13 15:59 - 2018-05-16 01:41 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-13 15:05 - 2018-06-25 16:42 - 000000000 ____D 
C:\Users\ck\AppData\Local\CrashDumps
2019-03-13 08:38 - 2017-09-07 16:42 - 000000000 ____D C:\Users\ck\.flashTool
2019-03-12 08:31 - 2018-05-15 22:04 - 000000000 ____D C:\Users\ck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-12 08:31 - 2018-05-15 22:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-12 08:31 - 2018-05-15 22:03 - 000000000 ____D C:\Program Files\WinRAR
2019-03-11 10:51 - 2018-06-22 17:59 - 000000000 ____D C:\Users\ck\AppData\Local\JDownloader v2.0
2019-03-10 23:30 - 2018-09-30 09:41 - 000000000 ____D C:\Users\ck\Documents\NetBeansProjects
2019-03-08 11:55 - 2018-05-16 01:44 - 000000000 ___SD C:\WINDOWS\system32\CompatTel
2019-03-08 11:55 - 2018-05-16 01:44 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-07 17:28 - 2019-01-14 17:43 - 000000000 ____D C:\Users\ck\.VirtualBox
2019-03-07 16:13 - 2019-01-14 17:45 - 000000000 ____D C:\Users\ck\VirtualBox VMs
2019-03-07 09:34 - 2019-01-14 17:43 - 000000000 ____D C:\ProgramData\VirtualBox
2019-03-06 10:34 - 2018-05-15 22:02 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-05 23:59 - 2019-01-27 10:34 - 000000000 ____D C:\Program Files\KMSpico
2019-03-05 18:53 - 2017-09-07 13:22 - 000404619 _____ C:\Users\ck\Desktop\Carlos Díaz CV C.pdf
2019-03-04 20:36 - 2019-01-07 17:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2019-03-03 13:21 - 2018-11-28 10:23 - 000513376 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-03-03 13:20 - 2018-11-28 10:23 - 000513376 _____ C:\WINDOWS\system32\locale.nls
2019-03-03 13:17 - 2014-05-14 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-03-03 13:17 - 2014-05-14 19:55 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-03-02 16:01 - 2019-01-09 22:38 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-03-02 16:01 - 2019-01-09 22:38 - 000179608 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-28 00:46 - 2014-07-09 13:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-02-28 00:40 - 2014-05-15 02:49 - 000000000 ____D C:\WINDOWS\Log
2019-02-26 10:20 - 2017-09-08 12:08 - 000000000 ____D C:\Users\ck\Downloads\antispyware
2019-02-23 17:06 - 2018-05-16 00:32 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-02-22 16:08 - 2018-10-29 11:38 - 000000412 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2019-02-22 00:24 - 2018-10-29 11:38 - 000003792 _____ C:\WINDOWS\System32\Tasks\Driver Easy Scheduled Scan
2019-02-21 20:35 - 2018-05-17 16:08 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-21 19:03 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-02-21 19:02 - 2018-05-15 22:46 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\infoadmn.dll
2019-02-21 19:02 - 2018-05-15 22:46 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\infoadmn.dll
2019-02-21 19:02 - 2018-05-15 22:46 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\infoctrs.dll
2019-02-21 19:02 - 2018-05-15 22:46 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\infoctrs.dll
2019-02-21 19:02 - 2013-08-22 12:31 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\TFTP.EXE
2019-02-21 19:02 - 2013-08-22 12:25 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspperf.dll
2019-02-21 19:02 - 2013-08-22 07:59 - 000047974 _____ C:\WINDOWS\system32\IIsScHlp.wsc
2019-02-21 19:02 - 2013-08-22 07:59 - 000041401 _____ C:\WINDOWS\system32\IIsExt.vbs
2019-02-21 19:02 - 2013-08-22 04:59 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspperf.dll
2019-02-21 19:02 - 2013-08-22 00:54 - 000047974 _____ C:\WINDOWS\SysWOW64\IIsScHlp.wsc
2019-02-21 19:02 - 2013-08-22 00:54 - 000041401 _____ C:\WINDOWS\SysWOW64\IIsExt.vbs
2019-02-21 18:56 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\Registration
2019-02-21 18:54 - 2018-05-15 23:41 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2019-02-21 18:54 - 2018-05-15 23:41 - 000015872 _____ (Microsoft Corporation) 
C:\WINDOWS\SysWOW64\iisreset.exe
2019-02-21 18:54 - 2018-05-15 23:41 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2019-02-21 18:54 - 2018-05-15 23:41 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2019-02-21 12:07 - 2014-05-14 19:48 - 000000000 ____D C:\Users\Administrator
2019-02-20 14:39 - 2014-05-15 04:38 - 000000000 ___DC C:\WINDOWS\Panther

==================== Files in the root of some directories =======

2018-05-15 21:37 - 2019-03-21 23:54 - 000000093 _____ () C:\Users\ck\AppData\Roaming\sp_data.sys
2018-11-04 14:09 - 2018-11-04 14:09 - 000002223 _____ () C:\Users\ck\AppData\Local\recently-used.xbel
2019-02-13 22:46 - 2019-02-13 22:46 - 000000017 _____ () C:\Users\ck\AppData\Local\resmon.resmoncfg
2018-11-12 08:55 - 2018-11-12 08:55 - 000000000 _____ () C:\Users\ck\AppData\Local\{219FD576-8896-415E-95BB-2945BF3DA81A}

Some files in TEMP:
====================
2019-03-14 21:39 - 2019-03-21 08:52 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel0.exe
2019-03-01 08:39 - 2019-03-17 09:03 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel1.exe
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole1156905234702111784.dll
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole312834910381932740.dll
2019-03-11 09:18 - 2019-03-11 09:18 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole9064284925609701378.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-03-20 09:54

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by ck (22-03-2019 00:30:01)
Running from C:\Users\ck\Downloads
Windows 8.1 (Update) (X64) (2018-05-15 20:27:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-191604999-3809266826-1454172177-500 - Administrator - Disabled) => C:\Users\Administrator
ck (S-1-5-21-191604999-3809266826-1454172177-1001 - Administrator - Enabled) => C:\Users\ck
Invitado (S-1-5-21-191604999-3809266826-1454172177-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Malwarebytes (Disabled - Out of date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
A3CONV5 (HKLM-x32\...\A3CONV5) (Version:  - )
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (32 Bit) (HKLM-x32\...\{7C25E7A0-A0A1-4B87-BB30-BF0FBDC37878}) (Version: 15.2 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 7.1 - PainteR)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.8 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.01.0003 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0036 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software)
BiglyBT (HKLM\...\0112-2557-8304-7048) (Version: 1.8.0.0 - Bigly Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft)
Componentes A3 Software (HKLM-x32\...\{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}) (Version: 1.5.22 - Wolters Kluwer España, S.A.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4105 - CyberLink Corp.)
Driver Easy 5.6.9 (HKLM\...\DriverEasy_is1) (Version: 5.6.9 - Easeware)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.25.0 - Androxyde)
GlassFish Server Open Source Edition 4.1.1 (HKLM\...\nbi-glassfish-mod-4.1.1.0.1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.6.0.1038 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4029 - Intel Corporation)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Java(TM) SE Development Kit 11 (64-bit) (HKLM\...\{E973EEA1-3C61-5347-8DF7-30494D4EC697}) (Version: 11.0.0.0 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{E34002C7-8CE7-3F76-B36C-09FA973BC4F6}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.30.2 - Microsoft Corporation)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Oracle Database 11g Express Edition (HKLM\...\{05A7B662-80A3-4EB9-AE1D-89A62449431C}) (Version: 11.2.0 - Oracle Corporation) Hidden
Oracle Database 11g Express Edition (HKLM-x32\...\InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C}) (Version: 11.2.0 - Oracle Corporation)
Oracle VM VirtualBox 6.0.4 (HKLM\...\{79366295-CD6A-4467-9901-4A7DFCF90F40}) (Version: 6.0.4 - Oracle Corporation)
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.29.314.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8597 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Servicio Xperia Companion (HKLM\...\{C530A679-C5D7-48E5-8958-E09E4207AE8B}) (Version: 2.2.5.0 - Sony) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.2.301 - ASUS Cloud Corporation)
Windows Driver Package - ASUS (ATP) Mouse  (05/14/2014 1.0.0.219) (HKLM\...\FDEE821D736774A5824C3D7701C8423487401A6D) (Version: 05/14/2014 1.0.0.219 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Xperia Companion (HKLM-x32\...\{234b8fcc-726f-4746-b00f-f987f4290cb9}) (Version: 2.2.5.0 - Sony)
Xperia Companion (HKLM-x32\...\{36B6CE92-327C-485C-A0D3-4460BE30AB7A}) (Version: 2.2.5.0 - Sony) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-191604999-3809266826-1454172177-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> [CC]{B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers3: [00asw] -> [CC]{472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSContextMenu.dll [2014-02-25] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2014-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2014-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-13] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0090CA98-B825-462A-8340-870541040BE2} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
Task: {01022563-CE45-43F8-B8FA-75931FD64907} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe (ASUSTeK Computer Inc. -> AsusTek)
Task: {07DADB2A-3A83-446A-BBC8-A330A61F68DC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {0803A662-27AE-4B28-A288-8C7DD17CAFC2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {1FE74884-35A0-48C4-9272-EA5B4267996C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {20F1F00D-5910-4F4D-8379-EC674300D4BB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {5975F07F-D75B-4788-8332-C67CC89347F3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5F036A9D-9806-45CE-8479-D5DCDC2B26D4} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe (ASUSTeK Computer Inc. -> )
Task: {6CDCFFDB-D0D5-4668-B891-BAE85591F1F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7E023E96-61B0-4EA3-96C6-E6A1D5732BC6} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {886BF095-D2DD-43CF-A593-638EE4B1EBC7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8E4A2D1F-69AD-4514-8F7A-8114FBEB564D} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTeK Computer Inc. -> ASUS)
Task: {8E50BD45-25F0-40F1-83AA-0DA16EB66B21} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A1F61685-E993-4CD8-9115-11412B3AD4EF} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A72CC576-E9B8-465B-8092-A8120D652791} - System32\Tasks\Games\UpdateCheck_S-1-5-21-191604999-3809266826-1454172177-1001
Task: {B0A50CB2-C42A-413F-BFFB-C54E0BE16956} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK Computer Inc. -> ASUS)
Task: {B0C2A04E-35A6-4D94-A2AD-4911D261492C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BE40F26C-947E-443F-AAE5-7F87286A3711} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E2E48C0A-32EC-40AE-862E-1E10AE58E04A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F079145D-D230-4B97-9A35-818B356A2579} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {F6538794-800B-4BA0-8655-4B35EA75BE14} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-07-30 08:05 - 2016-07-30 08:05 - 003661784 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2013-06-26 04:26 - 2013-06-26 04:26 - 001479168 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll
2016-07-30 08:05 - 2016-07-30 08:05 - 000163800 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
2014-02-11 17:08 - 2014-02-11 17:08 - 000028672 _____ () [File not signed] C:\Program Files\ASUS\P4G\plctrl.dll
2014-02-25 05:00 - 2014-02-25 05:00 - 000071680 _____ (ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
2014-05-30 02:03 - 2014-05-30 02:03 - 147110912 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE
2014-05-29 12:06 - 2014-05-29 12:06 - 005309952 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraclient11.dll
2014-05-29 12:06 - 2014-05-29 12:06 - 003099136 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oracommon11.dll
2014-05-29 12:06 - 2014-05-29 12:06 - 016880128 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orageneric11.dll
2014-05-29 12:06 - 2014-05-29 12:06 - 000009728 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oravsn11.dll
2014-05-29 12:03 - 2014-05-29 12:03 - 006001664 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraxml11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 005547008 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orapls11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 004142592 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraplp11.dll
2014-05-29 12:05 - 2014-05-29 12:05 - 003220992 _____ (Intel Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\libmmd.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 004532736 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oran11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000132608 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orancrypt11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 001582592 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orannzsbb11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 002033152 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraldapclnt11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000157696 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oransgr11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000428032 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oranl11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000350720 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oranro11.dll
2014-05-29 12:13 - 2014-05-29 12:13 - 001026048 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oranls11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 001424896 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oracore11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000010240 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orauts.dll
2014-05-29 12:13 - 2014-05-29 12:13 - 000236544 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orasnls11.dll
2014-05-29 12:13 - 2014-05-29 12:13 - 000112640 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraunls11.dll
2014-05-29 12:15 - 2014-05-29 12:15 - 000129024 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraclsra11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000329728 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oracell11.dll
2014-05-29 12:15 - 2014-05-29 12:15 - 003018752 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orahasgen11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000635904 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraocr11.dll
2014-05-29 12:17 - 2014-05-29 12:17 - 000455680 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraasmclnt11.dll
2014-05-29 12:03 - 2014-05-29 12:03 - 000210944 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orawwg.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000712704 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraztkg11.dll
2014-05-29 12:03 - 2014-05-29 12:03 - 000038400 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraslax11.dll
2014-05-29 12:11 - 2014-05-29 12:11 - 000357888 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orasql11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 002022400 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orazt11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000290816 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oranldap11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000022528 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oranhost11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000008704 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orancds11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000048128 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orantns11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000199168 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\orantcp11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000153088 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oradbcfg11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000048640 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraocrutl11.dll
2014-05-29 12:12 - 2014-05-29 12:12 - 000699392 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\oraocrb11.dll
2014-05-29 12:06 - 2014-05-29 12:06 - 000684032 _____ (Oracle Corporation) [File not signed] c:\oraclexe\app\oracle\product\11.2.0\server\bin\OCI.dll
2014-05-29 12:06 - 2014-05-29 12:06 - 000106496 _____ (Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\BIN\ORAIMR11.Dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000104448 _____ (Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\bin\oranbeq11.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000522240 _____ (Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
2014-05-29 12:12 - 2014-05-29 12:12 - 000099840 _____ (Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\BIN\oraons.dll
2014-05-29 12:14 - 2014-05-29 12:14 - 000094208 _____ (Oracle Corporation) [File not signed] C:\oraclexe\app\oracle\product\11.2.0\server\bin\oranipc11.dll
2019-01-27 10:34 - 2015-08-30 19:05 - 000737984 _____ (@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
2018-08-28 12:53 - 2018-08-28 12:53 - 002198016 _____ (Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
2014-04-02 14:46 - 2014-04-02 14:46 - 001600000 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 000163840 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2014-04-02 14:46 - 2014-04-02 14:46 - 000117248 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-21 10:06 - 2019-02-01 10:55 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-21 10:06 - 2019-02-01 10:56 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\a3software.com -> hxxp://a3software.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-10-09 08:23 - 2019-01-13 11:27 - 000000963 ____R C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1         app.drivereasy.com
149.202.196.40         dow0.drivereasy.com
149.202.196.40         dow1.drivereasy.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\oraclexe\app\oracle\product\11.2.0\server\bin;;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\adb
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "ASUSPRP"
HKLM\...\StartupApproved\Run32: => "WebStorage"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\StartupApproved\Run: => "{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F3F8B9BC-0A44-4FC3-AC1C-01CF1E24F35E}] => (Allow) C:\Program Files\BiglyBT\BiglyBT.exe (Bigly Software -> Bigly Software)
FirewallRules: [{DDD1C324-492C-4E1F-9366-A8CEEA9A94E9}] => (Allow) C:\Program Files\BiglyBT\BiglyBT.exe (Bigly Software -> Bigly Software)
FirewallRules: [{C35DEDF6-EF4F-4AE8-AC08-66559E214958}] => (Allow) C:\Users\ck\AppData\Roaming\A3\A3Update\A3Update.exe (Wolters Kluwer Espana S.A. -> Wolters Kluwer España, S.A.)
FirewallRules: [{A5726B6A-22D1-4D1E-9C14-3EEE16492DD0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{60F918FC-899C-4BCC-9B76-C77876A8E321}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{F1D07957-E0B1-43BB-8C0E-5A9D6B67E1AB}C:\program files\biglybt\biglybt.exe] => (Allow) C:\program files\biglybt\biglybt.exe (Bigly Software -> Bigly Software)
FirewallRules: [UDP Query User{3BE949DD-F58F-497C-A247-64D8554D3EC4}C:\program files\biglybt\biglybt.exe] => (Allow) C:\program files\biglybt\biglybt.exe (Bigly Software -> Bigly Software)
FirewallRules: [TCP Query User{7D8E1291-3FE8-4063-8A39-198A5294D057}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{1917D1CB-E4BC-4E56-A6E6-269644F05C88}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{26D8BD89-F1C2-4D42-982F-F1EB0D09FB4E}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{CF91665C-9EA8-4818-8A6A-0A869471B837}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{B55D6E6A-3B92-44D9-A87F-26CDDA82EDF3}] => (Allow) C:\Program Files (x86)\Common Files\A3\A3SHARED\A3UPDATE\A3Update.exe (Wolters Kluwer España, S.A.) [File not signed]
FirewallRules: [{87342CA8-54EA-407E-AD71-05DC61EB4F3B}] => (Allow) C:\Program Files\BiglyBT\BiglyBT.exe (Bigly Software -> Bigly Software)
FirewallRules: [{9842F74F-60E6-4F36-97A2-2361BEFBBFA6}] => (Allow) C:\Program Files\BiglyBT\BiglyBT.exe (Bigly Software -> Bigly Software)
FirewallRules: [{6854C85E-CDC1-4CBE-AED7-A88EF2423BC2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B6A17354-42EB-4D09-9B33-0D9909E39EEB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{A272CE2A-1622-43C0-AB3B-4A92AD39F9C2}] => (Allow) LPort=80
FirewallRules: [{5A48F4C0-1FE8-4CB1-91C5-93375AF4983F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{A3C9768C-6880-488E-8598-41824D982BE0}] => (Allow) LPort=1688
FirewallRules: [{4F48C04F-3E1B-44ED-8B48-B4C2A6E6F9C5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]
FirewallRules: [{2AC2FDF1-0997-46E3-9872-AD5E3CBF4AE5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]

==================== Restore Points =========================

07-03-2019 01:07:25 Windows Update
13-03-2019 15:48:44 Windows Update
21-03-2019 04:27:27 Punto de control programado

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/21/2019 08:33:27 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10608.329) TYPE: ERROR

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\WIPolicyCreateAll.cpp @ line 59
Executing Function:  WIPolicyCreateAll::execute
Message:  Unhandled exception caught during execution of work item
Policy File Name:  DptfPolicyPassive.dll
Framework Event:  PolicyCreate [27]
Exception Function:  PolicyManager::createPolicy
Exception Text:  

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_THERMAL_RELATIONSHIP_TABLE [91]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (03/21/2019 08:33:27 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10608.329) TYPE: ERROR

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\WIPolicyCreateAll.cpp @ line 59
Executing Function:  WIPolicyCreateAll::execute
Message:  Unhandled exception caught during execution of work item
Policy File Name:  DptfPolicyActive.dll
Framework Event:  PolicyCreate [27]
Exception Function:  PolicyManager::createPolicy
Exception Text:  

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (03/21/2019 12:35:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Error al descargar las cadenas del contador de rendimiento para el servicio WmiApRpl (WmiApRpl). El primer valor DWORD de la sección de datos contiene el código de error.

Error: (03/21/2019 12:35:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Las cadenas de rendimiento del valor del Registro de rendimiento están dañadas al procesar el proveedor de contador de extensión Performance. El valor BaseIndex del Registro de rendimiento es el primer valor DWORD, el valor LastCounter es el segundo valor DWORD y el valor LastHelp es el tercer valor DWORD de la sección de datos.

Error: (03/21/2019 12:35:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Las cadenas de rendimiento del valor del Registro de rendimiento están dañadas al procesar el proveedor de contador de extensión Performance. El valor BaseIndex del Registro de rendimiento es el primer valor DWORD, el valor LastCounter es el segundo valor DWORD y el valor LastHelp es el tercer valor DWORD de la sección de datos.

Error: (03/21/2019 12:28:31 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10608.329) TYPE: ERROR

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\WIPolicyCreateAll.cpp @ line 59
Executing Function:  WIPolicyCreateAll::execute
Message:  Unhandled exception caught during execution of work item
Policy File Name:  DptfPolicyPassive.dll
Framework Event:  PolicyCreate [27]
Exception Function:  PolicyManager::createPolicy
Exception Text:  

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_THERMAL_RELATIONSHIP_TABLE [91]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (03/21/2019 12:28:30 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10608.329) TYPE: ERROR

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\WIPolicyCreateAll.cpp @ line 59
Executing Function:  WIPolicyCreateAll::execute
Message:  Unhandled exception caught during execution of work item
Policy File Name:  DptfPolicyActive.dll
Framework Event:  PolicyCreate [27]
Exception Function:  PolicyManager::createPolicy
Exception Text:  

DPTF Build Version:  8.1.10608.329
DPTF Build Date:  May 13 2016 11:00:20
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 457
Executing Function:  EsifServices::primitiveExecuteGet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]

Error: (03/20/2019 02:48:21 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Error al descargar las cadenas del contador de rendimiento para el servicio WmiApRpl (WmiApRpl). El primer valor DWORD de la sección de datos contiene el código de error.


System errors:
=============
Error: (03/21/2019 08:35:48 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: El servidor {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/21/2019 08:33:33 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (03/21/2019 08:33:32 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (03/21/2019 08:33:27 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (03/21/2019 08:31:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Asus WebStorage Windows Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (03/21/2019 08:30:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (03/21/2019 08:30:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de administración IIS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Ejecutar el programa de recuperación configurado.

Error: (03/21/2019 08:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Wondershare Application Framework Service se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2018-05-15 22:48:35.018
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 1.263.536.0
Versión de firma anterior: 1.167.387.0
Origen de actualización: Carpeta de actualizaciones de firmas
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 1.1.14600.4
Versión de motor anterior: 1.1.10302.0
Código de error: 0x80509004
Descripción del error: Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2018-05-15 22:48:35.018
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 1.263.536.0
Versión de firma anterior: 1.167.387.0
Origen de actualización: Carpeta de actualizaciones de firmas
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 1.1.14600.4
Versión de motor anterior: 1.1.10302.0
Código de error: 0x80509004
Descripción del error: Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2018-05-15 22:48:35.018
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor: 1.1.14600.4
Versión de motor anterior: 1.1.10302.0
Usuario: NT AUTHORITY\SYSTEM
Código de error: 0x80509004
Descripción del error: Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2018-12-08 11:54:08.925
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:08.693
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:08.447
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:08.219
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:07.989
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:07.762
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:07.535
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-12-08 11:54:07.307
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 72%
Total physical RAM: 3979.79 MB
Available physical RAM: 1091.46 MB
Total Virtual: 8075.79 MB
Available Virtual: 4694.45 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:62.57 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:258.35 GB) (Free:257.9 GB) NTFS
Drive f: (Seagate Expansion Drive) (Fixed) (Total:3725.9 GB) (Free:1632.93 GB) NTFS

\\?\Volume{1b6b4d2a-21a6-4bb3-b780-58c4026fe96f}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.55 GB) NTFS
\\?\Volume{4d6e7acd-87c1-4891-9e8f-e65363791ebc}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.74 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (Size: 3726 GB) (Disk ID: E87BAB54)

Partition: GPT.

==================== End of Addition.txt ============================

Hola

No descargaste y ejecutaste FRST desde el escritorio como te indiqué, muevelo allí para realizar esl siguiente paso si no no funcionará.

:arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe( en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

A continuación inicia tu equipo desde el Modo Seguro de Windows sin función de red

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2018-05-16] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2135904 2018-08-28] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}] => C:\Program Files (x86)\Common Files\A3\Instal\ComponentesA3.exe [50114792 2017-10-05] (Wolters Kluwer Espana S.A. -> Wolters Kluwer España, S.A.)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\MountPoints2: {740a08c7-2cf3-11e8-8298-7824afb4e189} - "G:\startme.exe" 
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
CHR Extension: (Chrome Media Router) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
U1 aswbdisk; no ImagePath
S3 cpuz140; \??\C:\Users\ck\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATTENTION
S3 DptfDevDram; \SystemRoot\system32\DRIVERS\DptfDevDram.sys [X]
S3 DptfDevPch; \SystemRoot\system32\DRIVERS\DptfDevPch.sys [X]
S3 DptfDevProc; \SystemRoot\system32\DRIVERS\DptfDevProc.sys [X]
S3 DptfManager; \SystemRoot\system32\DRIVERS\DptfManager.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
2019-03-14 21:39 - 2019-03-21 08:52 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel0.exe
2019-03-01 08:39 - 2019-03-17 09:03 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel1.exe
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole1156905234702111784.dll
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole312834910381932740.dll
2019-03-11 09:18 - 2019-03-11 09:18 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole9064284925609701378.dll
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> [CC]{B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers2: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers3: [00asw] -> [CC]{472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers6: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
FirewallRules: [{B55D6E6A-3B92-44D9-A87F-26CDDA82EDF3}] => (Allow) C:\Program Files (x86)\Common Files\A3\A3SHARED\A3UPDATE\A3Update.exe (Wolters Kluwer España, S.A.) [File not signed]
FirewallRules: [{4F48C04F-3E1B-44ED-8B48-B4C2A6E6F9C5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]
FirewallRules: [{2AC2FDF1-0997-46E3-9872-AD5E3CBF4AE5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.


  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
  • Presionar el botón FIX y aguardar a que termine.
  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by ck (25-03-2019 09:35:55) Run:1
Running from C:\Users\ck\Desktop
Loaded Profiles: ck (Available Profiles: ck & Administrador)
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2018-05-16] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2135904 2018-08-28] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\Run: [{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}] => C:\Program Files (x86)\Common Files\A3\Instal\ComponentesA3.exe [50114792 2017-10-05] (Wolters Kluwer Espana S.A. -> Wolters Kluwer Espa�a, S.A.)
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\...\MountPoints2: {740a08c7-2cf3-11e8-8298-7824afb4e189} - "G:\startme.exe" 
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
CHR Extension: (Chrome Media Router) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
U1 aswbdisk; no ImagePath
S3 cpuz140; \??\C:\Users\ck\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATTENTION
S3 DptfDevDram; \SystemRoot\system32\DRIVERS\DptfDevDram.sys [X]
S3 DptfDevPch; \SystemRoot\system32\DRIVERS\DptfDevPch.sys [X]
S3 DptfDevProc; \SystemRoot\system32\DRIVERS\DptfDevProc.sys [X]
S3 DptfManager; \SystemRoot\system32\DRIVERS\DptfManager.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
2019-03-14 21:39 - 2019-03-21 08:52 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel0.exe
2019-03-01 08:39 - 2019-03-17 09:03 - 000091120 _____ () C:\Users\ck\AppData\Local\Temp\i4jdel1.exe
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole1156905234702111784.dll
2019-03-11 09:17 - 2019-03-11 09:17 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole312834910381932740.dll
2019-03-11 09:18 - 2019-03-11 09:18 - 000040448 ____N () C:\Users\ck\AppData\Local\Temp\proxy_vole9064284925609701378.dll
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.2.301\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> [CC]{B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers2: [CLVDShellExt] -> [CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers3: [00asw] -> [CC]{472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> [CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers6: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
FirewallRules: [{B55D6E6A-3B92-44D9-A87F-26CDDA82EDF3}] => (Allow) C:\Program Files (x86)\Common Files\A3\A3SHARED\A3UPDATE\A3Update.exe (Wolters Kluwer Espa�a, S.A.) [File not signed]
FirewallRules: [{4F48C04F-3E1B-44ED-8B48-B4C2A6E6F9C5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]
FirewallRules: [{2AC2FDF1-0997-46E3-9872-AD5E3CBF4AE5}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> @ByELDI) [File not signed]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Classic Start Menu" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ETDCtrl" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ASUSPRP" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => removed successfully
"HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Software\Microsoft\Windows\CurrentVersion\Run\\XperiaCompanionAgent" => removed successfully
"HKU\S-1-5-21-191604999-3809266826-1454172177-1001\Software\Microsoft\Windows\CurrentVersion\Run\\{52A5F4A4-65EF-4D98-BBE2-A723E25CE3A0}" => removed successfully
HKU\S-1-5-21-191604999-3809266826-1454172177-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{740a08c7-2cf3-11e8-8298-7824afb4e189} => removed successfully
HKLM\Software\Classes\CLSID\{740a08c7-2cf3-11e8-8298-7824afb4e189} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52} => removed successfully
HKLM\Software\Classes\CLSID\{449D0D6E-2412-4E61-B68F-1CB625CD9E52} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4} => removed successfully
HKLM\Software\Classes\CLSID\{EA801577-E6AD-4BD5-8F71-4BE0154331A4} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{449D0D6E-2412-4E61-B68F-1CB625CD9E52} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{EA801577-E6AD-4BD5-8F71-4BE0154331A4} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{553891B7-A0D5-4526-BE18-D3CE461D6310}" => removed successfully
HKLM\Software\Classes\CLSID\{553891B7-A0D5-4526-BE18-D3CE461D6310} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{553891B7-A0D5-4526-BE18-D3CE461D6310}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{553891B7-A0D5-4526-BE18-D3CE461D6310} => removed successfully
CHR Extension: (Chrome Media Router) - C:\Users\ck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15] => Error: No automatic fix found for this entry.
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz140 => removed successfully
cpuz140 => service removed successfully
HKLM\System\CurrentControlSet\Services\DptfDevDram => removed successfully
DptfDevDram => service removed successfully
HKLM\System\CurrentControlSet\Services\DptfDevPch => removed successfully
DptfDevPch => service removed successfully
HKLM\System\CurrentControlSet\Services\DptfDevProc => removed successfully
DptfDevProc => service removed successfully
HKLM\System\CurrentControlSet\Services\DptfManager => removed successfully
DptfManager => service removed successfully
HKLM\System\CurrentControlSet\Services\msahci => removed successfully
msahci => service removed successfully
HKLM\System\CurrentControlSet\Services\SWDUMon => removed successfully
SWDUMon => service removed successfully
C:\Users\ck\AppData\Local\Temp\i4jdel0.exe => moved successfully
"C:\Users\ck\AppData\Local\Temp\i4jdel1.exe" => not found
"C:\Users\ck\AppData\Local\Temp\proxy_vole1156905234702111784.dll" => not found
"C:\Users\ck\AppData\Local\Temp\proxy_vole312834910381932740.dll" => not found
"C:\Users\ck\AppData\Local\Temp\proxy_vole9064284925609701378.dll" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\!AsusWSShellExt_B => removed successfully
HKLM\Software\Classes\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7191} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\!AsusWSShellExt_O => removed successfully
HKLM\Software\Classes\CLSID\{64174815-8D98-4CE6-8646-4C039977D809} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\!AsusWSShellExt_U => removed successfully
HKLM\Software\Classes\CLSID\{1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ShareOverlay => removed successfully
HKLM\Software\Classes\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516} => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Wow6432Node\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Wow6432Node\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Wow6432Node\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ShareOverlay => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\[CC]{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\[CC]{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\CLSID\[CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removed successfully
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\CLSID\[CC]{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removed successfully
HKLM\Software\Classes\CLSID\[CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00asw => removed successfully
HKLM\Software\Classes\CLSID\[CC]{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removed successfully
HKLM\Software\Classes\CLSID\[CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\[CC]{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removed successfully
HKLM\Software\Classes\CLSID\[CC]{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\[CC]{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\StartMenuExt => removed successfully
HKLM\Software\Classes\CLSID\{E595F05F-903F-4318-8B0A-7F633B520D2B} => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 => removed successfully
HKLM\Software\Classes\CLSID\[CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B55D6E6A-3B92-44D9-A87F-26CDDA82EDF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F48C04F-3E1B-44ED-8B48-B4C2A6E6F9C5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2AC2FDF1-0997-46E3-9872-AD5E3CBF4AE5}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-191604999-3809266826-1454172177-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-191604999-3809266826-1454172177-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.7.9600 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.



========= End of CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo.


========= End of CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28550998 B
Java, Flash, Steam htmlcache => 1124 B
Windows/system/drivers => 3238234 B
Edge => 0 B
Chrome => 327952662 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 6278 B
NetworkService => 4160 B
ck => 13451702 B
Administrator => 6370 B
Classic .NET AppPool => 0 B
.NET v4.5 => 0 B
DefaultAppPool => 0 B
.NET v2.0 => 0 B
.NET v4.5 Classic => 0 B
.NET v2.0 Classic => 0 B

RecycleBin => 283489592 B
EmptyTemp: => 626.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:38:11 ====

ahora si creo que esta bien el reporte

Hola

Como sigue el problema.

Un saludo

Buenas, acabo de probar con el mismo link que me pasaba y con otro nuevo y me sigue ocurriendo igual. Pero el administrador de la web dice que a el se le descarga los capitulos perfectamente que es problema mio.

Hola Chaka Ck. Es un video de palomas en un parque ? si es asi , es debido al Adblock o algun bloqueador de elementos emergentes,o que ese enlace ya esta caido,desactívalo y vuelvelo a intentar en otros links

si el **** video de las palomas. si desactivo del adblock va?

Hola @Chaka_Ck

Desactiva AdBlock y comprueba si sigue ocurriendo.

@Krloselmero gracias por el aporte :+1:

Un saludo

1 me gusta

buenas incluso desactivando adblock y poperblocker sigue el video de la paloma descargandose

1 me gusta

Enlace caido , no es otro motivo

no puede ser porque el encargado de la web por asi llamarlo diceque el no tiene problema en descargarlo

No ,aunque lo desactives , no impedirá que deje de salir ese video corto,el enlace esta caido,busca otro enlace Un Saludo,A mi ha pasado en otras ocasiones y es por eso ,

que no puede ser enlace caido porque yo lo reporto y me dicen que lo han probado y funciona

El mismo link con internet explorer descaga el archivo peor con chrome sale el video ese de la paloma por lo que caido no esta