Redirección demasiadas veces al intentar descargar vídeos de Facebook

Hola, muchas gracias por su ayuda, les comento mi problema, cuando intento descargar un video de facebook en google crome me sale el siguiente mensaje:

Esta página no funciona

La página free.facebook.com te ha redirigido demasiadas veces.

ERR_TOO_MANY_REDIRECTS

Estoy intentando solucionar con los procedimientos indicados pero me indican que tengo que abrir un tema con mi problema, por lo que les adjunto los informes que he logrado hasta el momento

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02

Ran by USER (administrator) on HP (Hewlett-Packard HP ENVY 15 Notebook PC) (15-10-2019 12:50:14)

Running from C:\Users\USER\Desktop

Loaded Profiles: USER (Available Profiles: USER)

Platform: Windows 10 Pro Version 1803 17134.1069 (X64) Language: Español (España, internacional)

Default browser: Chrome

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe

(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe

(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe

(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe

(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe

(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe

(CyberLink -> cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe

(FSPro Labs -> FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe

(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler.exe

(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler64.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe

(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe

(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.1137\SSScheduler.exe

(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Users\USER\AppData\Local\Microsoft\OneDrive\OneDrive.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe

(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe

(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe

(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe

(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe

(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Tweakbit Pty Ltd -> TweakBit) C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe

(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2617608 2015-05-25] (FSPro Labs -> FSPro Labs)

HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2010-02-03] (CyberLink -> CyberLink Corp.)

HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-03-13] (CyberLink -> cyberlink)

HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare)

HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [706392 2017-11-20] (Autodesk, Inc. -> Autodesk, Inc.)

HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650784 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863776 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION

HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)

HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Run: [BingSvc] => C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Policies\Explorer: []

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [36864 2018-04-11] (Microsoft Windows -> Microsoft Corporation)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-10-14]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1137\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)

FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01CFB1C6-45F8-431B-83BD-F7C2B7C75D74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [249720 2019-08-19] (HP Inc. -> HP Inc.)

Task: {03310AC2-40F3-421B-91AA-16E2D1DFFA53} - System32\Tasks\HPCeeScheduleForUSER => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97848 2016-01-22] (Hewlett-Packard Company -> Hewlett-Packard)

Task: {0660A08D-B3DD-4139-A00C-4013718E87F3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION

Task: {0760C644-7ABA-4D14-8E66-983B2B8FFB50} - System32\Tasks\AdobeAAMUpdater-1.0-HP-USER => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe

Task: {10B8F9A8-6F70-4C16-B600-05886BAAB220} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2016-11-07] (HP Inc. -> HP Inc.)

Task: {140D89C4-05E1-4EDE-B973-D44AA0EB34B9} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION

Task: {1E0F395F-E93A-4A85-BAD2-3777DF9A443C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)

Task: {2092D6E8-CCF4-4CF5-AE46-06F5B398CB26} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

Task: {2D8D1C07-CFB5-4388-AD54-B2EAB09729C6} - System32\Tasks\Microsoft Office 15 Sync Maintenance for HP-USER HP => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [470720 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {30E56A0C-6D90-47B5-B991-A2F1B223C078} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION

Task: {33CC0A65-68DB-40B2-8C67-0F613A4D3F66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [143736 2019-09-12] (HP Inc. -> HP Inc.)

Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe

Task: {380231C2-620C-466B-B1E2-CAAC6F12F3C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)

Task: {3978D9B8-5402-4903-813C-5BBFF8B72561} - System32\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

Task: {39F344B9-647F-4B82-8E4A-7464D2CF1CC2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION

Task: {3ACCD476-FBFC-4A01-9076-70165E0AFB6B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)

Task: {3B1ADEEE-7D5F-4376-AE69-754542E2A4AF} - System32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404

Task: {4283971C-7070-4451-B395-7AEBC85F713C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

Task: {4E0C37A6-5C42-43A3-AC33-A1C2673EB8D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1094008 2019-08-21] (HP Inc. -> HP Inc.)

Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [33280 2018-04-11] (Microsoft Windows -> Microsoft Corporation)

Task: {6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

Task: {65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION

Task: {66847ABE-B2CF-427B-B0C5-E6FC6BC677F0} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe

Task: {68AFFA8E-9430-4095-A50B-5B94A16D0084} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION

Task: {6DD6161C-263E-4441-B5A8-8E747119D4DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Task: {6E35227E-2C5C-4316-B8EC-9970728A53E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION

Task: {77712788-00D8-4365-B786-3437E639D49E} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe

Task: {79AB15A1-77B5-4F8B-9D02-8C7A28C9381E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION

Task: {7E2521D4-9EDE-499C-A34C-3C536E660861} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {8170303B-30DF-4EAF-9A43-F2B14507E813} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}

Task: {922598FA-FB85-45B5-9B1C-40B958014396} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)

Task: {9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

Task: {9DF6B5E0-9774-4D8E-9693-3EF106B51499} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

Task: {A2A3778B-0CC1-4799-8588-7C8F88108ED7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {A3FD05AB-DDF6-49D8-8D1F-BCBA88A19C90} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)

Task: {A9418F40-D7AC-446A-B8CD-9200A6967B37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)

Task: {AD1B01DD-02DE-4FEA-AC18-42FE8195B248} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1094008 2019-08-21] (HP Inc. -> HP Inc.)

Task: {B5D140F8-1D9F-4091-A498-5B143B0E3675} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

Task: {B85799CA-6F41-485B-B610-4B25842630AF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

Task: {BE4E11A4-212D-43BD-B529-45810AF9E39C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

Task: {C0D8B3B1-BAE2-4EF9-99ED-B48CE2EB98D6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-10-01] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {C13A5E8A-12B1-413F-AC23-3E90F1A1900D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)

Task: {C47CF533-F9C7-4B72-8E04-E90A7200225A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18732320 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)

Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}

Task: {D1FE1173-D107-488C-924C-C740815C88CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

Task: {D21808A7-461A-40A3-9638-42CE601F03CC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}

Task: {D353C236-A4C2-428B-9CE6-942D51C8B5F2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)

Task: {E13A5EDC-A976-4B80-91B2-E26485A88E4E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION

Task: {E1AF9AF8-6DE7-4202-B4A7-3DAC9C120EAB} - System32\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

Task: {E9A90791-4935-4876-AE10-669FB30BA592} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1577416 2016-02-26] (Corel Corporation -> Corel Corporation)

Task: {E9FC7376-895F-4A1A-9F3A-94A0008F94CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Restart => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

Task: {EC85DC36-1AF9-4E66-865B-BC985C76703C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

Task: {F3757602-C8F9-49A6-A2FF-E30B7924F731} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)

Task: {F9D7EAAD-14AF-41AD-AE0E-10E8358DF914} - \WPD\SqmUpload_S-1-5-21-1647861114-2623618104-3830117335-1001 -> No File <==== ATTENTION

Task: {FE2A77F2-04C0-4765-BE49-14A8612B062D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

Task: {FF0487CB-5296-4E1A-A3B5-DB4633CE4E4B} - System32\Tasks\TweakBit\PCRepairKit\Start PCRepairKit оn logon => C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe [5735064 2019-08-27] (Tweakbit Pty Ltd -> TweakBit) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE:/EXE:{627B8EAC-673B-4107-B81A-BC69FC328B48} /F:UpdateWORKGROUP\HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

Task: C:\WINDOWS\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE:/EXE:{7B7802FA-0585-4BF4-ADB4-821D2358EEF1} /F:UpdateWORKGROUP\HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

Task: C:\WINDOWS\Tasks\HPCeeScheduleForUSER.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.43.1

Tcpip\..\Interfaces\{cab8c0e5-ee79-4627-980e-07db38ae1959}: [DhcpNameServer] 192.168.43.1

Internet Explorer:

==================

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-pe/?ocid=iehp

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-11-28] (Google Inc -> Google Inc.)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-11-28] (Google Inc -> Google Inc.)

Toolbar: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

FireFox:

========

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)

FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File]

Chrome:

=======

CHR HomePage: Default -> msn.com

CHR StartupUrls: Default -> "hxxp://www.google.com.pe/"

CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default [2019-10-15]

CHR Extension: (Presentaciones) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-15]

CHR Extension: (Documentos) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-15]

CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-15]

CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-15]

CHR Extension: (FromDocToPDF para Chrome) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck [2019-10-15]

CHR Extension: (Adobe Acrobat) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-15]

CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-10-15]

CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-15]

CHR Extension: (Hojas de cálculo) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-15]

CHR Extension: (Documentos de Google sin conexión) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-15]

CHR Extension: (Consultas en Línea - Sin Clave RNP | ...) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjlaflanlffgegodnempidncmajeanad [2019-10-15]

CHR Extension: (Avast Online Security) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-10-15]

CHR Extension: (Ask Web Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf [2019-10-15]

CHR Extension: (Instagram) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\maonlnecdeecdljpahhnnlmhbmalehlm [2019-10-15]

CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]

CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-15]

CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-15]

CHR HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-11-21] (Autodesk, Inc. -> Autodesk Inc.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)

S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)

S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)

R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)

R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [681400 2018-11-28] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)

R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [358264 2019-08-07] (HP Inc. -> HP Inc.)

R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1137\McCHSvc.exe [406416 2019-07-17] (McAfee, Inc. -> McAfee, Inc.)

R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [60416 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5098408 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-11-05] (Synaptics Incorporated -> Synaptics Incorporated)

S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)

R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [171520 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-04-11] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)

S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (Bitdefender SRL -> BitDefender)

R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [610336 2016-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)

S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)

S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)

S3 Dot4Scan; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [14760 2013-06-04] (BoiseTest -> Microsoft Corporation)

S3 dot4usb; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [43944 2013-06-04] (BoiseTest -> Microsoft Corporation)

R0 FSProFilter2; C:\WINDOWS\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (Alfa System Programming -> FSPro Labs)

R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)

R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-02-03] (Intel CASE -> )

S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)

R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_9172c4e962e5b3ee\nvlddmkm.sys [17200384 2018-07-04] (NVIDIA Corporation -> NVIDIA Corporation)

R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-11] (Microsoft Windows -> Realtek )

R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)

R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46680 2017-11-05] (Synaptics Incorporated -> Synaptics Incorporated)

S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-10] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-10] (Microsoft Windows -> Microsoft Corporation)

S3 WinDivert1.1; C:\Program Files\KMSpico\WinDivert.sys [35376 2016-05-19] (Nemea Mjukvaruutveckling AB -> Basil Projects)

R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)

R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-03-13] (CyberLink -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-15 12:50 - 2019-10-15 12:51 - 000040380 _____ C:\Users\USER\Desktop\FRST.txt

2019-10-15 12:49 - 2019-10-15 12:51 - 000000000 ____D C:\FRST

2019-10-15 12:46 - 2019-10-15 12:46 - 001616384 _____ (Farbar) C:\Users\USER\Desktop\FRST64.exe

2019-10-15 12:15 - 2019-10-15 12:15 - 000001251 _____ C:\Users\USER\Desktop\TweakBit PCRepairKit.lnk

2019-10-15 12:15 - 2019-10-15 12:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\TweakBit

2019-10-15 12:15 - 2019-10-15 12:15 - 000000000 ____D C:\ProgramData\TweakBit

2019-10-15 12:15 - 2019-10-15 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit

2019-10-15 12:15 - 2019-10-15 12:15 - 000000000 ____D C:\Program Files (x86)\TweakBit

2019-10-15 12:11 - 2019-10-15 12:13 - 017187216 _____ (TweakBit ) C:\Users\USER\Desktop\pc-repair-kit-setup.exe

2019-10-15 11:10 - 2019-10-15 11:10 - 000000000 ___HD C:\OneDriveTemp

2019-10-15 10:31 - 2019-10-15 10:31 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-10-15 10:31 - 2019-10-15 10:31 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2019-10-15 00:09 - 2019-10-15 00:09 - 000202842 _____ C:\Users\USER\Documents\cc_20191015_000932.reg

2019-10-15 00:09 - 2019-10-15 00:09 - 000001730 _____ C:\Users\USER\Documents\cc_20191015_000957.reg

2019-10-15 00:04 - 2019-10-15 10:23 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

2019-10-15 00:04 - 2019-10-15 10:23 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC

2019-10-15 00:04 - 2019-10-15 00:04 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk

2019-10-15 00:04 - 2019-10-15 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

2019-10-15 00:04 - 2019-10-15 00:04 - 000000000 ____D C:\Program Files\CCleaner

2019-10-15 00:03 - 2019-10-15 00:04 - 025441808 _____ (Piriform Software Ltd) C:\Users\USER\Downloads\ccsetup562.exe

2019-10-14 20:43 - 2019-10-14 20:43 - 000056566 _____ C:\Users\USER\Downloads\fisca7254824733964241681.pdf

2019-10-14 11:13 - 2019-10-14 11:13 - 000002018 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk

2019-10-14 11:13 - 2019-10-14 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus

2019-10-14 11:12 - 2019-10-14 11:13 - 000000000 ____D C:\Program Files\McAfee Security Scan

2019-10-14 11:11 - 2019-10-14 11:15 - 000000000 ____D C:\ProgramData\McAfee Security Scan

2019-10-14 11:05 - 2019-10-14 11:05 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2019-10-14 11:05 - 2019-10-14 11:05 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk

2019-10-14 10:34 - 2019-10-14 11:05 - 000000000 ____D C:\ProgramData\McAfee

2019-10-13 20:32 - 2019-10-13 20:32 - 000458883 _____ C:\Users\USER\Downloads\Dialnet-PequenosMamiferos-1167938.pdf

2019-10-13 14:39 - 2019-10-13 15:06 - 539864670 _____ C:\Users\USER\Downloads\wetransfer-28fc99.zip

2019-10-13 12:26 - 2019-10-13 12:26 - 000156184 _____ C:\Users\USER\Downloads\ridetrac_20549696784_0230241470560_20191011112546_447293102.pdf

2019-10-13 12:25 - 2019-10-13 12:25 - 000102898 _____ C:\Users\USER\Downloads\rcce_20549696784_0230078119194_20191010162333_447076474.pdf

2019-10-11 14:41 - 2019-10-11 14:42 - 001615948 _____ C:\Users\USER\Downloads\cotizacion.pdf

2019-10-11 10:48 - 2019-10-11 10:48 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca (2).xlsx

2019-10-11 10:46 - 2019-10-11 10:46 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca (1).xlsx

2019-10-10 09:04 - 2019-10-10 08:54 - 000741432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2019-10-09 23:23 - 2019-10-09 23:23 - 000325759 _____ C:\Users\USER\Downloads\Membrete_Modelo 2 (1).rar

2019-10-09 23:22 - 2019-10-09 23:22 - 000257979 _____ C:\Users\USER\Downloads\Modelo de membrete 3 (1).rar

2019-10-09 23:22 - 2019-10-09 23:22 - 000140260 _____ C:\Users\USER\Downloads\membrete Modelo 4.rar

2019-10-09 23:21 - 2019-10-09 23:21 - 000268601 _____ C:\Users\USER\Downloads\5-Modelo de membrete 5.rar

2019-10-09 23:20 - 2019-10-09 23:20 - 000140398 _____ C:\Users\USER\Downloads\membrete-x1 (2).rar

2019-10-09 23:19 - 2019-10-09 23:19 - 000257979 _____ C:\Users\USER\Downloads\Modelo de membrete 3.rar

2019-10-09 23:19 - 2019-10-09 23:19 - 000219307 _____ C:\Users\USER\Downloads\Membrete_Modelo 1.rar

2019-10-09 23:17 - 2019-10-09 23:17 - 000325759 _____ C:\Users\USER\Downloads\Membrete_Modelo 2.rar

2019-10-09 22:22 - 2019-10-15 10:23 - 000002598 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTaskCore

2019-10-09 22:22 - 2019-10-09 22:19 - 000002975 _____ C:\Users\Public\Desktop\Corel CAPTURE X8 (64-Bit).lnk

2019-10-09 22:22 - 2019-10-09 22:19 - 000002974 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X8 (64-Bit).lnk

2019-10-09 22:22 - 2019-10-09 22:19 - 000002942 _____ C:\Users\Public\Desktop\CorelDRAW X8 (64-Bit).lnk

2019-10-09 22:22 - 2019-10-09 22:19 - 000002420 _____ C:\Users\Public\Desktop\Corel CONNECT X8 (64-Bit).lnk

2019-10-09 22:22 - 2019-10-09 22:19 - 000002333 _____ C:\Users\Public\Desktop\Corel Font Manager X8 (64-Bit).lnk

2019-10-09 22:21 - 2019-10-09 22:21 - 000000000 ____D C:\Program Files\Common Files\Corel

2019-10-09 22:19 - 2019-10-09 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X8 (64-bit)

2019-10-09 21:47 - 2017-12-23 20:20 - 000000000 ____D C:\Users\USER\Desktop\CorelDRAWX8

2019-10-09 21:06 - 2019-10-09 21:46 - 2046110787 _____ C:\Users\USER\Downloads\CorelDRAWX8.rar

2019-10-09 14:12 - 2019-10-09 14:13 - 014021686 _____ C:\Users\USER\Downloads\DTLite4471-0337 (2).rar

2019-10-09 12:33 - 2019-10-15 10:23 - 000003466 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA

2019-10-09 12:33 - 2019-10-15 10:23 - 000003242 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore

2019-10-09 11:23 - 2019-10-09 11:24 - 014021686 _____ C:\Users\USER\Downloads\DTLite4471-0337 (1).rar

2019-10-09 10:16 - 2019-10-09 10:16 - 007411912 _____ (VS Revo Group ) C:\Users\USER\Downloads\revosetup (1).exe

2019-10-09 09:43 - 2019-10-09 09:44 - 1856966866 _____ C:\Users\USER\Downloads\CorelDRAW suit 2018 (1).rar

2019-10-08 20:36 - 2019-10-08 20:41 - 058299600 _____ (Microsoft Corporation) C:\Users\USER\Downloads\IE11-Windows6.1-x64-es-es.exe

2019-10-08 20:34 - 2019-10-08 20:34 - 014021686 _____ C:\Users\USER\Downloads\DTLite4471-0337.rar

2019-10-08 20:12 - 2019-10-02 06:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2019-10-08 20:12 - 2019-10-02 06:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2019-10-08 20:12 - 2019-10-02 05:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2019-10-08 20:12 - 2019-10-02 05:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2019-10-08 20:12 - 2019-10-02 03:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2019-10-08 20:12 - 2019-10-02 00:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2019-10-08 20:12 - 2019-10-02 00:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2019-10-08 20:12 - 2019-10-02 00:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2019-10-08 20:12 - 2019-10-02 00:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2019-10-08 20:12 - 2019-10-02 00:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2019-10-08 20:12 - 2019-10-01 23:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2019-10-08 20:12 - 2019-10-01 23:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2019-10-08 20:12 - 2019-10-01 23:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2019-10-08 20:12 - 2019-10-01 23:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2019-10-08 20:12 - 2019-10-01 23:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2019-10-08 20:12 - 2019-10-01 23:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2019-10-08 20:12 - 2019-10-01 23:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2019-10-08 20:12 - 2019-10-01 23:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll

2019-10-08 20:12 - 2019-10-01 23:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2019-10-08 20:12 - 2019-10-01 23:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2019-10-08 20:12 - 2019-10-01 23:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2019-10-08 20:12 - 2019-10-01 23:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2019-10-08 20:12 - 2019-10-01 23:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll

2019-10-08 20:12 - 2019-10-01 23:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll

2019-10-08 20:12 - 2019-10-01 23:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2019-10-08 20:12 - 2019-10-01 23:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2019-10-08 20:12 - 2019-10-01 23:25 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2019-10-08 20:12 - 2019-10-01 23:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2019-10-08 20:12 - 2019-10-01 23:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2019-10-08 20:12 - 2019-09-10 02:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2019-10-08 20:12 - 2019-09-10 02:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2019-10-08 20:11 - 2019-10-05 20:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2019-10-08 20:11 - 2019-10-05 20:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2019-10-08 20:11 - 2019-10-02 06:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe

2019-10-08 20:11 - 2019-10-02 06:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2019-10-08 20:11 - 2019-10-02 06:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL

2019-10-08 20:11 - 2019-10-02 06:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2019-10-08 20:11 - 2019-10-02 05:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll

2019-10-08 20:11 - 2019-10-02 05:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2019-10-08 20:11 - 2019-10-02 05:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe

2019-10-08 20:11 - 2019-10-02 05:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll

2019-10-08 20:11 - 2019-10-02 05:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE

2019-10-08 20:11 - 2019-10-02 05:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe

2019-10-08 20:11 - 2019-10-02 05:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2019-10-08 20:11 - 2019-10-02 05:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2019-10-08 20:11 - 2019-10-02 05:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll

2019-10-08 20:11 - 2019-10-02 05:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll

2019-10-08 20:11 - 2019-10-02 05:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll

2019-10-08 20:11 - 2019-10-02 05:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll

2019-10-08 20:11 - 2019-10-02 05:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll

2019-10-08 20:11 - 2019-10-02 05:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll

2019-10-08 20:11 - 2019-10-02 05:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2019-10-08 20:11 - 2019-10-02 05:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE

2019-10-08 20:11 - 2019-10-02 05:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2019-10-08 20:11 - 2019-10-02 05:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll

2019-10-08 20:11 - 2019-10-02 03:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2019-10-08 20:11 - 2019-10-02 03:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2019-10-08 20:11 - 2019-10-02 03:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL

2019-10-08 20:11 - 2019-10-02 03:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2019-10-08 20:11 - 2019-10-02 03:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe

2019-10-08 20:11 - 2019-10-02 03:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE

2019-10-08 20:11 - 2019-10-02 03:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll

2019-10-08 20:11 - 2019-10-02 03:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll

2019-10-08 20:11 - 2019-10-02 03:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll

2019-10-08 20:11 - 2019-10-02 00:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2019-10-08 20:11 - 2019-10-02 00:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2019-10-08 20:11 - 2019-10-02 00:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2019-10-08 20:11 - 2019-10-02 00:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys

2019-10-08 20:11 - 2019-10-02 00:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll

2019-10-08 20:11 - 2019-10-02 00:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2019-10-08 20:11 - 2019-10-02 00:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2019-10-08 20:11 - 2019-10-02 00:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2019-10-08 20:11 - 2019-10-02 00:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys

2019-10-08 20:11 - 2019-10-02 00:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2019-10-08 20:11 - 2019-10-02 00:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2019-10-08 20:11 - 2019-10-02 00:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe

2019-10-08 20:11 - 2019-10-02 00:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys

2019-10-08 20:11 - 2019-10-02 00:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2019-10-08 20:11 - 2019-10-02 00:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2019-10-08 20:11 - 2019-10-02 00:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.

Aqui la continuacion del reporte d

2019-10-08 20:11 - 2019-10-02 00:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2019-10-08 20:11 - 2019-10-02 00:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys

2019-10-08 20:11 - 2019-10-02 00:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll

2019-10-08 20:11 - 2019-10-02 00:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe

2019-10-08 20:11 - 2019-10-02 00:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll

2019-10-08 20:11 - 2019-10-01 23:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2019-10-08 20:11 - 2019-10-01 23:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2019-10-08 20:11 - 2019-10-01 23:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2019-10-08 20:11 - 2019-10-01 23:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2019-10-08 20:11 - 2019-10-01 23:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2019-10-08 20:11 - 2019-10-01 23:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2019-10-08 20:11 - 2019-10-01 23:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe

2019-10-08 20:11 - 2019-10-01 23:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2019-10-08 20:11 - 2019-10-01 23:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll

2019-10-08 20:11 - 2019-10-01 23:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2019-10-08 20:11 - 2019-10-01 23:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll

2019-10-08 20:11 - 2019-10-01 23:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe

2019-10-08 20:11 - 2019-10-01 23:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe

2019-10-08 20:11 - 2019-10-01 23:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll

2019-10-08 20:11 - 2019-10-01 23:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll

2019-10-08 20:11 - 2019-10-01 23:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2019-10-08 20:11 - 2019-10-01 23:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2019-10-08 20:11 - 2019-10-01 23:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2019-10-08 20:11 - 2019-10-01 23:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll

2019-10-08 20:11 - 2019-10-01 23:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2019-10-08 20:11 - 2019-10-01 23:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2019-10-08 20:11 - 2019-10-01 23:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll

2019-10-08 20:11 - 2019-10-01 23:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2019-10-08 20:11 - 2019-10-01 23:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll

2019-10-08 20:11 - 2019-10-01 23:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2019-10-08 20:11 - 2019-10-01 23:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll

2019-10-08 20:11 - 2019-10-01 23:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL

2019-10-08 20:11 - 2019-10-01 23:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll

2019-10-08 20:11 - 2019-10-01 23:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2019-10-08 20:11 - 2019-10-01 23:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe

2019-10-08 20:11 - 2019-10-01 23:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe

2019-10-08 20:11 - 2019-10-01 23:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll

2019-10-08 20:11 - 2019-10-01 23:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll

2019-10-08 20:11 - 2019-10-01 23:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll

2019-10-08 20:11 - 2019-10-01 23:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2019-10-08 20:11 - 2019-10-01 23:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2019-10-08 20:11 - 2019-10-01 23:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL

2019-10-08 20:11 - 2019-10-01 23:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2019-10-08 20:11 - 2019-10-01 23:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2019-10-08 20:11 - 2019-10-01 23:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2019-10-08 20:11 - 2019-10-01 23:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll

2019-10-08 20:11 - 2019-10-01 23:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2019-10-08 20:11 - 2019-10-01 23:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll

2019-10-08 20:11 - 2019-10-01 23:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll

2019-10-08 20:11 - 2019-10-01 23:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2019-10-08 20:11 - 2019-10-01 23:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2019-10-08 20:11 - 2019-10-01 23:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 001110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys

2019-10-08 20:11 - 2019-10-01 23:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2019-10-08 20:11 - 2019-10-01 23:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll

2019-10-08 20:11 - 2019-10-01 23:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll

2019-10-08 20:11 - 2019-10-01 22:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim

2019-10-08 20:11 - 2019-09-19 02:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll

2019-10-08 20:11 - 2019-09-10 01:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll

2019-10-08 20:11 - 2019-09-09 20:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll

2019-10-08 20:11 - 2019-09-09 20:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll

2019-10-08 20:11 - 2019-08-13 09:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll

2019-10-08 18:10 - 2019-10-08 18:11 - 005701187 _____ C:\Users\USER\Downloads\re8366ingenieriaobrascivilesstatus3.zip

2019-10-08 17:48 - 2019-10-08 17:48 - 003211971 _____ C:\Users\USER\Downloads\V-101946-0525-0389_1_Status_2 (1).PDF

2019-10-08 17:12 - 2019-10-08 18:54 - 1856966866 _____ C:\Users\USER\Downloads\CorelDRAW suit 2018.rar

2019-10-08 15:57 - 2019-10-08 15:57 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca.xlsx

2019-10-08 15:49 - 2019-10-02 08:26 - 000355720 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

2019-10-08 15:45 - 2019-10-08 15:45 - 000000000 ____D C:\ProgramData\Dropbox

2019-10-08 12:05 - 2019-10-08 12:05 - 003211971 _____ C:\Users\USER\Downloads\V-101946-0525-0389_1_Status_2.PDF

2019-10-08 11:41 - 2019-10-08 11:41 - 000000080 ___SH C:\bootTel.dat

2019-10-07 23:30 - 2019-10-07 23:30 - 338701621 _____ C:\Users\USER\Downloads\CorelDraw Graphics Suite X3.rar

2019-10-07 23:03 - 2019-10-07 23:03 - 001144524 _____ C:\Users\USER\Downloads\CARTA 019-2019-GRA-CJR.pdf

2019-10-07 22:37 - 2019-10-07 22:37 - 000048263 _____ C:\Users\USER\Downloads\SELLO EDIFICAR-EDGAR FIRMA.pdf

2019-10-07 22:11 - 2019-10-07 22:11 - 000596657 _____ C:\Users\USER\Downloads\Brochure 2019.pdf

2019-10-07 19:04 - 2019-10-07 21:43 - 000016528 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2.xlsx

2019-10-07 18:31 - 2019-10-07 18:31 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION TRASLOMA N°0200 - CONSORCIO S.S. NOVA S (4).pdf

2019-10-07 18:31 - 2019-10-07 18:31 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2 (2).pdf

2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION TRASLOMA N°0200 - CONSORCIO S.S. NOVA S (3).pdf

2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION TRASLOMA N°0200 - CONSORCIO S.S. NOVA S (2).pdf

2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION TRASLOMA N°0200 - CONSORCIO S.S. NOVA S (1).pdf

2019-10-07 18:07 - 2019-10-07 18:07 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2 (1).pdf

2019-10-07 18:06 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION TRASLOMA N°0200 - CONSORCIO S.S. NOVA S.pdf

2019-10-06 22:15 - 2019-10-14 19:53 - 000000000 ____D C:\Users\USER\AppData\Local\Adobe

2019-10-06 22:15 - 2019-10-14 11:50 - 000000000 ____D C:\Users\USER\AppData\Roaming\Adobe

2019-10-06 22:15 - 2019-10-14 11:16 - 000000000 ____D C:\ProgramData\Adobe

2019-10-06 22:15 - 2019-10-06 22:15 - 000000040 ____H C:\C7165E494294

2019-10-06 22:15 - 2019-10-06 22:15 - 000000000 ____D C:\Users\USER\AppData\Local\NVIDIA

2019-10-06 22:13 - 2015-04-29 23:44 - 000000000 ____D C:\Users\USER\Desktop\Adobe photoshop cs6 DJ RICK

2019-10-06 21:57 - 2019-10-06 22:13 - 136745563 _____ C:\Users\USER\Downloads\Adobe photoshop cs6 DJ RICK.rar

2019-10-06 12:47 - 2019-10-06 14:16 - 745074508 _____ C:\Users\USER\Downloads\AdobePhotoshop2014-32bit-mul.zip

2019-10-06 12:26 - 2019-10-06 12:26 - 000455085 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR (2).pdf

2019-10-06 04:43 - 2019-10-06 04:45 - 042262776 _____ (SUPERAntiSpyware) C:\Users\USER\Downloads\SUPERAntiSpyware (4).exe

2019-10-05 22:45 - 2019-10-05 22:46 - 008162616 _____ (ESET spol. s r.o.) C:\Users\USER\Downloads\esetonlinescanner_esn (2).exe

2019-10-05 21:27 - 2019-10-08 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes

2019-10-05 21:27 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

2019-10-05 21:27 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys

2019-10-05 21:22 - 2019-10-05 21:25 - 066458912 _____ (Malwarebytes ) C:\Users\USER\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12781 (1).exe

2019-10-05 21:18 - 2019-10-05 21:18 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\USER\Downloads\iExplore (6).exe

2019-10-05 21:10 - 2019-10-05 21:15 - 020889016 _____ (Piriform Software Ltd) C:\Users\USER\Downloads\ccsetup561 (1).exe

2019-10-05 21:08 - 2019-10-05 21:09 - 000841241 _____ C:\Users\USER\Downloads\rkill.zip

2019-10-05 20:48 - 2019-10-05 21:05 - 027231312 _____ (Malwarebytes ) C:\Users\USER\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12781.exe

2019-10-05 16:13 - 2019-10-05 16:13 - 000455946 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR.pdf

2019-10-05 16:13 - 2019-10-05 16:13 - 000455946 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR (1).pdf

2019-10-05 11:39 - 2019-10-05 11:39 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2.pdf

2019-10-04 17:33 - 2019-10-04 17:33 - 000018815 _____ C:\Users\USER\Downloads\fisca205529783133614487.pdf

2019-10-04 10:49 - 2019-09-13 06:04 - 001429816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll

2019-10-04 10:49 - 2019-09-13 06:03 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll

2019-10-04 10:49 - 2019-09-13 06:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll

2019-10-04 10:49 - 2019-09-13 06:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2019-10-04 10:49 - 2019-09-13 05:58 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys

2019-10-04 10:49 - 2019-09-13 05:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2019-10-04 10:49 - 2019-09-13 05:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2019-10-04 10:49 - 2019-09-13 05:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll

2019-10-04 10:49 - 2019-09-13 05:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll

2019-10-04 10:49 - 2019-09-13 05:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2019-10-04 10:49 - 2019-09-13 05:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys

2019-10-04 10:49 - 2019-09-13 05:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll

2019-10-04 10:49 - 2019-09-13 05:44 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll

2019-10-04 10:49 - 2019-09-13 05:42 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe

2019-10-04 10:49 - 2019-09-13 05:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll

2019-10-04 10:49 - 2019-09-13 05:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll

2019-10-04 10:49 - 2019-09-13 05:41 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys

2019-10-04 10:49 - 2019-09-13 05:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2019-10-04 10:49 - 2019-09-13 05:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2019-10-04 10:49 - 2019-09-13 05:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll

2019-10-04 10:49 - 2019-09-13 05:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll

2019-10-04 10:49 - 2019-09-13 05:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll

2019-10-04 10:49 - 2019-09-13 05:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe

2019-10-04 10:49 - 2019-09-13 05:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll

2019-10-04 10:49 - 2019-09-13 05:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2019-10-04 10:49 - 2019-09-13 05:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll

2019-10-04 10:49 - 2019-09-13 05:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll

2019-10-04 10:49 - 2019-09-13 04:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll

2019-10-04 10:49 - 2019-09-13 04:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll

2019-10-04 10:49 - 2019-09-13 04:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2019-10-04 10:49 - 2019-09-13 04:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2019-10-04 10:49 - 2019-09-13 04:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2019-10-04 10:49 - 2019-09-13 04:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2019-10-04 10:49 - 2019-09-13 04:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll

2019-10-04 10:49 - 2019-09-13 04:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll

2019-10-04 10:49 - 2019-09-13 04:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2019-10-04 10:49 - 2019-09-13 04:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2019-10-04 10:49 - 2019-09-13 03:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2019-10-04 10:49 - 2019-09-12 23:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2019-10-04 10:49 - 2019-09-12 23:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll

2019-10-04 10:49 - 2019-09-12 23:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2019-10-04 10:49 - 2019-09-12 23:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll

2019-10-04 10:49 - 2019-09-12 23:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll

2019-10-04 10:49 - 2019-09-12 23:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe

2019-10-04 10:49 - 2019-09-12 23:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2019-10-04 10:49 - 2019-09-12 23:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2019-10-04 10:49 - 2019-09-12 23:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll

2019-10-04 10:49 - 2019-09-12 23:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll

2019-10-04 10:49 - 2019-09-12 23:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2019-10-04 10:49 - 2019-09-12 23:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2019-10-04 10:49 - 2019-09-12 23:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2019-10-04 10:49 - 2019-09-12 23:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2019-10-04 10:49 - 2019-09-12 23:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll

2019-10-04 10:49 - 2019-09-12 23:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll

2019-10-04 10:49 - 2019-09-12 23:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys

2019-10-04 10:49 - 2019-09-12 23:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys

2019-10-04 10:49 - 2019-09-12 23:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2019-10-04 10:49 - 2019-09-12 23:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll

2019-10-04 10:49 - 2019-09-12 23:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2019-10-04 10:49 - 2019-09-12 23:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2019-10-04 10:49 - 2019-09-12 23:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2019-10-04 10:49 - 2019-09-12 23:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2019-10-04 10:49 - 2019-09-12 23:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll

2019-10-04 10:49 - 2019-09-12 23:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll

2019-10-04 10:49 - 2019-09-12 23:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll

2019-10-04 10:49 - 2019-09-12 23:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll

2019-10-04 10:49 - 2019-09-12 23:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe

2019-10-04 10:49 - 2019-09-12 23:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe

2019-10-04 10:49 - 2019-09-12 23:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe

2019-10-04 10:49 - 2019-09-12 23:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll

2019-10-04 10:49 - 2019-09-12 23:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll

2019-10-04 10:49 - 2019-09-12 23:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll

2019-10-04 10:49 - 2019-09-12 23:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe

2019-10-04 10:49 - 2019-09-12 23:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2019-10-04 10:49 - 2019-09-12 23:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe

2019-10-04 10:49 - 2019-09-12 23:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll

2019-10-04 10:49 - 2019-09-12 23:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2019-10-04 10:49 - 2019-09-12 23:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll

2019-10-04 10:49 - 2019-09-12 23:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll

2019-10-04 10:49 - 2019-09-12 23:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll

2019-10-04 10:49 - 2019-09-12 23:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll

2019-10-04 10:49 - 2019-09-12 23:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2019-10-04 10:49 - 2019-09-12 23:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll

2019-10-04 10:49 - 2019-09-12 23:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2019-10-04 10:49 - 2019-09-12 23:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2019-10-04 10:49 - 2019-09-12 23:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll

2019-10-04 10:49 - 2019-09-12 23:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2019-10-04 10:49 - 2019-09-12 23:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2019-10-04 10:49 - 2019-09-12 23:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll

2019-10-04 10:49 - 2019-09-12 23:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll

2019-10-04 10:49 - 2019-09-12 23:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll

2019-10-03 17:31 - 2019-10-03 17:31 - 000137054 _____ C:\Users\USER\Downloads\201811010012053001467120 (2).pdf

2019-10-03 17:30 - 2019-10-03 17:30 - 000130730 _____ C:\Users\USER\Downloads\201810010012053001467120 (2).pdf

2019-10-03 13:48 - 2019-10-03 13:48 - 000014455 _____ C:\Users\USER\Downloads\RELACION DE OBRAS A POSTULAR No 01-19.xlsx

2019-10-03 13:40 - 2019-10-03 13:40 - 000761473 _____ C:\Users\USER\Downloads\BROCHURE ROPRUCSA (1).pdf

2019-10-03 13:39 - 2019-10-03 20:09 - 000031680 _____ C:\Users\USER\Downloads\EXPERIENCIA DE OBRAS- ROPRUCSA (1).xlsx

2019-10-03 13:36 - 2019-10-03 13:36 - 002881062 _____ C:\Users\USER\Downloads\BROCHURE JGE INGENIERIA.pdf

2019-10-03 13:36 - 2019-10-03 13:36 - 000761473 _____ C:\Users\USER\Downloads\BROCHURE ROPRUCSA.pdf

2019-10-03 13:36 - 2019-10-03 13:36 - 000031377 _____ C:\Users\USER\Downloads\EXPERIENCIA DE OBRAS- ROPRUCSA.xlsx

2019-10-02 22:17 - 2019-10-02 22:17 - 000056551 _____ C:\Users\USER\Downloads\fisca4314646354544097484.pdf

2019-10-02 08:27 - 2019-10-02 08:26 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys

2019-10-02 08:27 - 2019-10-02 08:26 - 000171520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

2019-10-02 07:14 - 2019-10-02 07:14 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys

2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys

2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys

2019-09-30 20:54 - 2019-09-30 20:54 - 000634310 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0002_0 CERRADO.pdf

2019-09-30 09:08 - 2019-09-30 09:08 - 006510485 _____ C:\Users\USER\Downloads\JU-001-06-0525-4411-07-21-0001_0.dwg

2019-09-30 08:56 - 2019-09-30 08:56 - 011352081 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0001_0 (1).dwg

2019-09-29 09:06 - 2019-09-29 09:07 - 011352081 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0001_0.dwg

2019-09-29 09:06 - 2019-09-29 09:06 - 001657817 _____ C:\Users\USER\Downloads\JU-001-06-0525-1412-07-21-0001_0.dwg

2019-09-29 09:01 - 2019-09-29 09:01 - 016034376 _____ C:\Users\USER\Downloads\rv04ultimosplanosobservados.zip

2019-09-29 09:01 - 2019-09-29 09:01 - 001876105 _____ C:\Users\USER\Downloads\V-101946-0525-0086_1_Status_3.PDF

2019-09-28 16:27 - 2019-09-28 16:27 - 003539941 _____ C:\Users\USER\Downloads\V-101946-0525-0455_1_Status_2.PDF

2019-09-28 16:27 - 2019-09-28 16:27 - 002102305 _____ C:\Users\USER\Downloads\V-101946-0525-0327_1_Status_2.PDF

2019-09-26 22:52 - 2019-09-26 22:52 - 000010845 _____ C:\Users\USER\Downloads\libro de ept flor de plastico.xlsx

2019-09-25 15:25 - 2019-09-25 15:25 - 000056540 _____ C:\Users\USER\Downloads\fisca2185803501925787816.pdf

2019-09-23 14:00 - 2019-09-23 14:01 - 018019768 _____ C:\Users\USER\Downloads\planosalevantarobservaciones (1).zip

2019-09-23 13:32 - 2019-09-23 13:32 - 000118387 _____ C:\Users\USER\Downloads\recgen_20549696784_0230065857561_20190917094611_441351154 (1).pdf

2019-09-23 11:21 - 2019-09-23 11:21 - 000017107 _____ C:\Users\USER\Downloads\OBRA.xlsx

2019-09-22 15:35 - 2019-09-22 15:35 - 000184680 _____ C:\Users\USER\Downloads\ridetrac_20549696784_0239501117969_20190920103415_442295267.pdf

2019-09-21 10:37 - 2019-09-21 10:37 - 000061065 _____ C:\Users\USER\Downloads\72751645129-1062093527-entrada.pdf

2019-09-20 13:54 - 2019-09-20 13:54 - 023413515 _____ C:\Users\USER\Downloads\JU-001-06-0525-0000-07-21-0003_C - Revisión AUS (2).pdf

2019-09-20 13:54 - 2019-09-20 13:54 - 023413515 _____ C:\Users\USER\Downloads\JU-001-06-0525-0000-07-21-0003_C - Revisión AUS (1).pdf

2019-09-18 22:58 - 2019-09-18 22:58 - 000002400 _____ C:\Users\USER\Downloads\gen0001587799983894845172329.pdf

2019-09-18 22:41 - 2019-09-18 22:41 - 000002501 _____ C:\Users\USER\Downloads\gen0001589200425648981619014.pdf

2019-09-18 00:21 - 2019-09-18 00:22 - 018019768 _____ C:\Users\USER\Downloads\planosalevantarobservaciones.zip

2019-09-18 00:18 - 2019-09-18 00:18 - 000118387 _____ C:\Users\USER\Downloads\recgen_20549696784_0230065857561_20190917094611_441351154.pdf

2019-09-18 00:18 - 2019-09-18 00:18 - 000056527 _____ C:\Users\USER\Downloads\fisca3076498111275573884.pdf

2019-09-18 00:18 - 2019-09-18 00:18 - 000056527 _____ C:\Users\USER\Downloads\fisca1427321311054298144.pdf

2019-09-18 00:17 - 2019-09-18 00:17 - 000056527 _____ C:\Users\USER\Downloads\fisca7580815422453889720.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 023413515 ____N C:\Users\USER\Downloads\JU-001-06-0525-0000-07-21-0003_C - Revisión AUS.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 000361746 ____N C:\Users\USER\Downloads\101946-0000-C-014.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 000315988 ____N C:\Users\USER\Downloads\101946-0000-C-015.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 000263455 ____N C:\Users\USER\Downloads\101946-0000-C-001.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 000232433 ____N C:\Users\USER\Downloads\101946-0000-C-002.pdf

2019-09-16 14:16 - 2019-09-16 13:57 - 000204673 ____N C:\Users\USER\Downloads\101946-0000-S-026.pdf

2019-09-16 13:57 - 2019-09-16 13:57 - 020467339 _____ C:\Users\USER\Downloads\8366ingenierialevobsju001060525000007210003_c.zip

2019-09-15 12:49 - 2019-03-28 04:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll

2019-09-15 12:49 - 2019-03-28 01:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll

2019-09-15 12:49 - 2019-03-28 01:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll

2019-09-15 12:49 - 2019-03-28 01:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll

2019-09-15 12:49 - 2019-03-28 01:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll

2019-09-15 12:48 - 2019-03-28 04:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll

2019-09-15 12:48 - 2019-03-28 04:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll

2019-09-15 12:48 - 2019-03-28 04:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll

2019-09-15 12:48 - 2019-03-28 01:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll

2019-09-15 12:48 - 2019-03-28 01:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-15 12:43 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\NDF

2019-10-15 12:22 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2019-10-15 11:11 - 2018-03-25 18:49 - 000000000 ____D C:\Users\USER\AppData\Local\AVAST Software

2019-10-15 11:10 - 2016-07-25 13:14 - 000000000 ___RD C:\Users\USER\OneDrive

2019-10-15 11:09 - 2017-12-18 13:47 - 000000000 ____D C:\ProgramData\boost_interprocess

2019-10-15 11:07 - 2017-06-27 17:39 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2019-10-15 11:07 - 2016-05-19 10:43 - 000000000 __SHD C:\Users\USER\IntelGraphicsProfiles

2019-10-15 11:06 - 2018-12-18 18:02 - 000000925 _____ C:\WINDOWS\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}.job

2019-10-15 11:06 - 2018-12-13 16:42 - 000000334 _____ C:\WINDOWS\Tasks\HPCeeScheduleForUSER.job

2019-10-15 11:06 - 2018-07-04 13:11 - 000000925 _____ C:\WINDOWS\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}.job

2019-10-15 11:06 - 2018-05-21 13:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2019-10-15 11:06 - 2017-06-27 17:40 - 000000000 ____D C:\ProgramData\NVIDIA

2019-10-15 11:05 - 2018-04-11 16:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI

2019-10-15 10:31 - 2016-05-19 11:11 - 000000000 ____D C:\Program Files (x86)\Google

2019-10-15 10:23 - 2019-08-15 23:24 - 000002974 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn

2019-10-15 10:23 - 2019-08-15 23:24 - 000002594 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime

2019-10-15 10:23 - 2018-12-18 18:02 - 000003472 _____ C:\WINDOWS\system32\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}

2019-10-15 10:23 - 2018-12-13 16:42 - 000002770 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForUSER

2019-10-15 10:23 - 2018-09-06 18:42 - 000002520 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart

2019-10-15 10:23 - 2018-07-04 13:11 - 000003472 _____ C:\WINDOWS\system32\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}

2019-10-15 10:23 - 2018-05-21 13:55 - 000004026 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for HP-USER HP

2019-10-15 10:23 - 2018-05-21 13:55 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA

2019-10-15 10:23 - 2018-05-21 13:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

2019-10-15 10:23 - 2018-05-21 13:55 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

2019-10-15 10:23 - 2018-05-21 13:55 - 000003112 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5D5696A8-321C-4B33-BF91-9F07D0EE34B3}

2019-10-15 10:23 - 2018-05-21 13:55 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1647861114-2623618104-3830117335-1001

2019-10-15 10:23 - 2018-05-21 13:55 - 000002598 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-HP-USER

2019-10-15 10:23 - 2018-05-21 13:55 - 000002264 _____ C:\WINDOWS\system32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC}

2019-10-15 10:23 - 2018-05-21 13:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software

2019-10-15 10:22 - 2016-08-25 13:55 - 000000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome

2019-10-15 09:58 - 2018-05-21 13:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2019-10-15 00:07 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF

2019-10-15 00:07 - 2017-02-20 11:31 - 000000000 ____D C:\Users\USER\AppData\Local\CrashDumps

2019-10-14 19:46 - 2018-05-21 13:55 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update

2019-10-14 11:04 - 2016-06-13 09:18 - 000000000 ____D C:\Program Files (x86)\Adobe

2019-10-14 10:45 - 2016-05-19 11:14 - 000000000 ____D C:\ProgramData\Adobe-BackupByPhotoshopCS6Portable

2019-10-14 08:35 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness

2019-10-13 10:54 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps

2019-10-11 18:58 - 2018-08-16 00:57 - 000000000 ____D C:\Users\USER\Desktop\KMSpico Install

2019-10-11 10:48 - 2018-01-26 12:16 - 000000000 ____D C:\Users\USER\AppData\Local\Packages

2019-10-10 11:22 - 2018-05-21 13:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

2019-10-10 11:22 - 2018-04-11 18:38 - 000000000 ___RD C:\Program Files\Windows Defender

2019-10-09 22:22 - 2016-12-12 09:31 - 000000000 ____D C:\Program Files (x86)\Corel

2019-10-09 22:22 - 2016-05-19 11:38 - 000000000 ____D C:\Program Files\Corel

2019-10-09 22:21 - 2016-05-19 11:40 - 000000000 ____D C:\ProgramData\Corel

2019-10-09 22:19 - 2016-05-19 11:43 - 000000000 ____D C:\Users\USER\AppData\Roaming\Corel

2019-10-09 22:18 - 2016-05-19 10:54 - 000000000 ____D C:\ProgramData\Package Cache

2019-10-09 10:52 - 2018-05-21 13:45 - 001768608 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2019-10-09 10:52 - 2018-04-12 11:19 - 000787754 _____ C:\WINDOWS\system32\perfh00A.dat

2019-10-09 10:52 - 2018-04-12 11:19 - 000155350 _____ C:\WINDOWS\system32\perfc00A.dat

2019-10-09 10:46 - 2016-12-16 16:55 - 000000000 ____D C:\Program Files\Malwarebytes

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\TextInput

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\oobe

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\ShellExperiences

2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\bcastdvr

2019-10-09 00:12 - 2018-04-11 16:04 - 000000000 ____D C:\WINDOWS\system32\Dism

2019-10-08 20:18 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp

2019-10-08 17:01 - 2016-05-24 17:57 - 000000000 ____D C:\WINDOWS\system32\MRT

2019-10-08 16:56 - 2016-05-24 17:57 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2019-10-08 15:52 - 2016-09-09 06:32 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk

2019-10-08 15:52 - 2016-05-19 22:11 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

2019-10-08 15:49 - 2018-04-11 18:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP

2019-10-08 15:45 - 2018-09-04 17:46 - 000000000 ____D C:\Program Files (x86)\Dropbox

2019-10-08 15:44 - 2019-08-12 10:19 - 000000000 ____D C:\ProgramData\Malwarebytes

2019-10-08 15:39 - 2018-04-11 16:04 - 000000000 ____D C:\WINDOWS\system32\Sysprep

2019-10-08 15:39 - 2016-10-01 09:06 - 000000000 ____D C:\Users\USER\AppData\Local\ConnectedDevicesPlatform

2019-10-08 15:08 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\InfusedApps

2019-10-08 14:58 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\registration

2019-10-08 13:38 - 2018-06-12 22:19 - 000000000 ____D C:\Users\USER\AppData\Local\D3DSCache

2019-10-08 13:24 - 2018-07-02 12:43 - 000000000 ____D C:\ProgramData\Packages

2019-10-08 10:22 - 2018-05-21 16:59 - 000082258 ____H C:\Users\USER\AppData\Local\IconCache.db.backup

2019-10-08 10:22 - 2016-05-31 22:29 - 000000000 ____D C:\Users\USER\AppData\Local\ElevatedDiagnostics

2019-10-06 08:28 - 2019-08-15 20:05 - 000000689 _____ C:\Users\USER\Desktop\ESET Online Scanner.lnk

2019-10-05 11:45 - 2018-05-21 13:32 - 000002398 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2019-10-04 20:27 - 2018-01-26 12:43 - 000000000 ___RD C:\Users\USER\3D Objects

2019-10-04 20:27 - 2016-04-27 01:17 - 000000000 __RHD C:\Users\Public\AccountPictures

2019-10-04 20:26 - 2018-05-21 13:26 - 000592816 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2019-10-04 17:38 - 2018-04-12 11:24 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection

2019-10-04 17:38 - 2018-04-11 18:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml

2019-10-02 08:28 - 2018-05-21 12:51 - 000848432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys

2019-10-02 08:28 - 2018-05-21 12:51 - 000460448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys

2019-10-02 08:26 - 2019-02-15 09:57 - 000276952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys

2019-10-02 08:26 - 2019-01-14 08:49 - 000274456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys

2019-10-02 08:26 - 2019-01-04 21:32 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys

2019-10-02 08:26 - 2019-01-04 21:32 - 000065120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys

2019-10-02 08:26 - 2019-01-04 21:32 - 000037616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys

2019-10-02 08:26 - 2018-11-04 07:25 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys

2019-10-02 08:26 - 2018-07-25 09:53 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys

2019-10-02 08:26 - 2018-05-21 12:51 - 000316528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys

2019-10-02 08:26 - 2018-05-21 12:51 - 000204824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys

2019-10-02 08:26 - 2018-05-21 12:51 - 000110320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys

2019-10-02 08:26 - 2018-05-21 12:51 - 000083792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

2019-09-27 09:21 - 2018-08-02 16:28 - 000000431 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics

2019-09-18 22:57 - 2017-01-13 18:18 - 000000000 ____D C:\PDTPLAME

==================== Files in the root of some directories ================

2016-07-18 21:08 - 2016-07-18 21:08 - 000007596 _____ () C:\Users\USER\AppData\Local\Resmon.ResmonCfg

2016-08-22 23:45 - 2016-08-22 23:45 - 000000000 _____ () C:\Users\USER\AppData\Local\{A1091682-A19C-4D28-90BB-9400AFA686E5}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Aqui el reporte de Adition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02

Ran by USER (15-10-2019 12:53:46)

Running from C:\Users\USER\Desktop

Windows 10 Pro Version 1803 17134.1069 (X64) (2018-05-21 18:56:51)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrador (S-1-5-21-1647861114-2623618104-3830117335-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-1647861114-2623618104-3830117335-503 - Limited - Disabled)

Invitado (S-1-5-21-1647861114-2623618104-3830117335-501 - Limited - Disabled)

USER (S-1-5-21-1647861114-2623618104-3830117335-1001 - Administrator - Enabled) => C:\Users\USER

WDAGUtilityAccount (S-1-5-21-1647861114-2623618104-3830117335-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)

ACA & MEP 2018 Object Enabler (HKLM\...\{28B89EEF-1004-0000-5102-CF3F3A09B77D}) (Version: 8.0.40.0 - Autodesk) Hidden

ACAD Private (HKLM\...\{28B89EEF-1001-0000-3102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

Actualización de NVIDIA 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.4.1.21 - NVIDIA Corporation)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20036 - Adobe Systems Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)

Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)

Aplicación de escritorio de Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.7.230 - Autodesk)

Aplicaciones destacadas de Autodesk (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)

Aplicaciones destacadas de Autodesk 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk)

App Manager de Autodesk (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)

Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)

AutoCAD 2018 - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-1102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 (HKLM\...\{28B89EEF-1001-0000-0102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)

Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)

Autodesk AutoCAD 2018 - Español (Spanish) (HKLM\...\AutoCAD 2018 - Español (Spanish)) (Version: 22.0.49.0 - Autodesk)

Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)

Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)

Autodesk Content Service (HKLM-x32\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden

Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)

Autodesk Content Service Language Pack (HKLM-x32\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden

Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)

Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)

Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)

Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden

Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)

Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)

CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)

Corel Compatibility Pack (HKLM-x32\...\{77ECF7E9-5758-4965-803D-77AABC474747}) (Version: 12.4518.1018 - Corel Corporation)

Corel Graphics - Windows Shell Extension (HKLM\...\_{3CAAE169-6001-48ED-B2C6-5B6F511552FD}) (Version: 18.0.0.448 - Corel Corporation)

Corel Graphics - Windows Shell Extension (HKLM\...\{3CAAE169-6001-48ED-B2C6-5B6F511552FD}) (Version: 18.0.448 - Corel Corporation) Hidden

Corel Graphics - Windows Shell Extension 32 Bit Keys (HKLM\...\{C8730B1A-133D-4546-8E21-9EC186341F20}) (Version: 18.0.448 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - BR (x64) (HKLM\...\{67D57366-EFCC-46DA-BB1F-BBE89B377177}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Capture (x64) (HKLM\...\{1253ED86-69FD-4A7B-BDF2-96A522583A88}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Common (x64) (HKLM\...\{72922AB6-F920-4C98-985D-EC90CE0918D4}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Connect (x64) (HKLM\...\{9782A612-03A7-488F-A598-33558163D8F8}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - CS (x64) (HKLM\...\{300DB480-7301-436A-A312-B695B2BC6D71}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - CT (x64) (HKLM\...\{43C4A17D-93D9-41C6-8ACA-370EA390ED2A}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Custom Data (x64) (HKLM\...\{02C85FBD-87D3-4352-BF2E-AFE897CD5559}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - CZ (x64) (HKLM\...\{A67AEE14-0435-4B8C-A367-F5EDE6CAF9F6}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - DE (x64) (HKLM\...\{4AA43BE3-D21B-44D7-B9CD-86692DEF3706}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Draw (x64) (HKLM\...\{A66E09BB-9892-421D-9EB9-311D12AA5244}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - EN (x64) (HKLM\...\{A0845CAD-ED13-46A4-A050-5ACE4631FDEC}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - ES (x64) (HKLM\...\{B1452C41-DC90-4B58-8320-ABB515E87FFB}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Filters (x64) (HKLM\...\{6E6D1438-33CC-413B-BC96-3497B1271CDD}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Font Manager (x64) (HKLM\...\{5FB5FF89-0938-49D9-850B-53B78B84A7E4}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - FR (x64) (HKLM\...\{0A182180-3BAF-4B94-BFD0-CF082CC5FF0D}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - IPM (x64) (HKLM\...\{A040C72A-0ADC-4FB9-9DB4-19B18F6053F1}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - IPM Content (x64) (HKLM\...\{FB081BA0-08D2-4C8C-9E55-788A90430BE3}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - IT (x64) (HKLM\...\{8285FEBA-D373-493F-BC78-934F84A0A298}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - JP (x64) (HKLM\...\{F5A1D3E4-416E-4723-AD35-86A372B99174}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - NL (x64) (HKLM\...\{A7922CC8-0EBD-497B-B381-5B3992905327}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - PHOTO-PAINT (x64) (HKLM\...\{04D8C47E-C0FE-4CA5-8878-91ECD9552109}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - PL (x64) (HKLM\...\{6F03D92C-48DB-4182-8A51-BEF8FE64B72C}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Redist (x64) (HKLM\...\{50D1BD2D-6D8C-45A8-9DB5-CDAB7227DB36}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - RU (x64) (HKLM\...\{B83D220A-33AB-4AF5-963A-887BD971270E}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Setup Files (x64) (HKLM\...\{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - VBA (x64) (HKLM\...\{48DD8181-A983-447B-9660-A55A935CA751}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - VideoBrowser (x64) (HKLM\...\{81EBD8D4-9142-4D33-BF34-D99EFC1180F5}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Workspaces (x64) (HKLM\...\{1D4B870D-A5A8-4B88-9520-ED8EFD545AA1}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 - Writing Tools (x64) (HKLM\...\{23A2ABD8-8231-48AD-AD71-FF0566A7DD8F}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 (64-Bit) (HKLM\...\_{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.0.0.448 - Corel Corporation)

CorelDRAW Graphics Suite X8 (HKLM\...\{ECFAF1D6-342D-4AE2-B6BF-82B22F9FE8DE}) (Version: 18.0 - Corel Corporation) Hidden

CorelDRAW Graphics Suite X8 -TR (x64) (HKLM\...\{ACC8C1B0-E560-4B42-AA52-9CAD14883B29}) (Version: 18.0 - Corel Corporation) Hidden

CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1516 - CyberLink Corp.)

Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden

Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation)

Epson Easy Photo Print 2 (HKLM-x32\...\{922E2D91-9314-45AA-9AEF-E585F93B59A9}) (Version: 2.6.1.0 - Seiko Epson Corporation)

Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation)

Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.53.00 - SEIKO EPSON CORPORATION)

EPSON L575 Series Printer Uninstall (HKLM\...\EPSON L575 Series) (Version: - SEIKO EPSON Corporation)

EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)

EpsonNet Print (HKLM\...\{15A0F113-BF2C-4C12-8AA8-42AE0D9AE1C9}) (Version: 3.1.2.0 - SEIKO EPSON Corporation)

FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)

Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)

FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)

Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)

Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)

Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden

Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden

HP Control Zone (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)

HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.8.24.33 - HP)

HP Support Solutions Framework (HKLM-x32\...\{8EF98706-3C4B-4C5B-B035-01187E17D0E6}) (Version: 12.12.32.3 - HP)

Importación de SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)

Inkscape 0.48.2 (HKLM-x32\...\Inkscape) (Version: 0.48.2 - )

Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)

IPM_Installer (HKLM\...\{B8C05FFE-C36F-4F17-AD20-739E4BC65AC9}) (Version: 2.1 - Your Company Name) Hidden

KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )

Manual Epson L575 versión 1.0 (HKLM-x32\...\UsersGuideManual Epson L575_is1) (Version: 1.0 - )

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.1137.1 - McAfee, Inc.)

MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)

Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)

Microsoft Project Professional 2013 (HKLM\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)

Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual Studio Tools for Applications 2.0 Language Pack - ESN (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - ESN (HKLM-x32\...\{4A28444E-0532-3264-B07D-5AFE590E30BE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)

My Lockbox 3.8.1 (HKLM\...\My Lockbox_is1) (Version: 3.8.1 - )

NVIDIA Controlador de gráficos 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation)

Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Panel de control de NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden

PDT Planilla Electronica - PLAME (HKLM-x32\...\{9E772C31-FA5E-9C78-30F7-DE1A693254BC}) (Version: 3.6.3 - SUPERINTENDENCIA NAC DE ADUANAS Y DE ADMINISTRACION TRIBUTARIA) Hidden

PDT Planilla Electronica - PLAME (HKLM-x32\...\PDTPLAME) (Version: 3.6.3 - SUPERINTENDENCIA NAC DE ADUANAS Y DE ADMINISTRACION TRIBUTARIA)

Programa de Declaración Telemática (HKLM-x32\...\{A6E23415-7BA4-4CA3-99DA-B7F9D33E1F5B}) (Version: - )

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)

Revisión para Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}.KB947789) (Version: 1 - Microsoft Corporation)

Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Silabas 3.0 (HKLM-x32\...\Silabas_is1) (Version: - Cuenta Métrica)

Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)

TweakBit PCRepairKit (HKLM-x32\...\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1) (Version: 1.8.4.16 - Tweakbit Pty Ltd)

Type3351 TWAIN Driver Ver.4 (HKLM-x32\...\{99C7F873-FAE4-41F2-B769-5DB77ED64533}) (Version: 4.28.07 - )

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden

VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)

WAsP 11 (HKLM-x32\...\{79D6DC41-B304-4CB7-B53B-36C79E9A8366}) (Version: 11.4.0.26 - DTU Wind Energy, Denmark)

WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Wondershare Video Editor(Build 5.0.1) (HKLM-x32\...\Wondershare Video Editor_is1) (Version: - Wondershare Software)

XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)

Yodot PPT Repair (HKLM-x32\...\{50B30042-0A14-4661-80E3-DE448A0BD936}_is1) (Version: 1.0.0.14 - Yodot Software)

Your Application Name (HKLM-x32\...\{AA6EB693-FE08-4515-A991-C74F53AD7D7A}) (Version: - )

Packages:

=========

Complemento de teléfono de Microsoft -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)

Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

Microsoft Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Studios) [MS Ad]

MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

MSN Recetas -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

MSN Salud -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]

RICOH Class Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHClassDriverUtility_1.4.0.0_neutral__fxme7667cy4q4 [2019-10-08] (Ricoh Company, Ltd.)

RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.4.0.5_x86__fxme7667cy4q4 [2019-10-08] (Ricoh Company, Ltd.)

Teléfono Microsoft -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)

Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-10-08] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\USER\Dropbox0

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-02] (Autodesk, Inc -> Autodesk, Inc.)

ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => -> No File

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File

ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-02] (Autodesk, Inc -> Autodesk)

ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File

ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File

ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\USER\Desktop\Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm

ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm

==================== Loaded Modules (Whitelisted) ==============

2017-05-15 00:45 - 2014-05-19 17:19 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll

2017-05-15 00:45 - 2014-09-11 18:09 - 001498112 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll

2016-06-30 03:23 - 2016-06-30 03:23 - 000592384 _____ () [File not signed] C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll

2013-08-01 16:05 - 2013-08-01 16:05 - 000112128 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll

2015-01-29 10:04 - 2015-01-29 10:04 - 000004096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll

2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000095744 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\EbpD4Fax.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000212992 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUADRFIL.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000282624 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCFG.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000438272 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCSR.DLL

2018-07-04 13:13 - 2015-01-20 01:00 - 000385024 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXLDB.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000536576 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXTIF.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000421888 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUIMGCDC.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000274432 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FULEPP.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000077824 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSTMMSG.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000327680 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSVCCLT.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000065536 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUUSBHLP.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000253952 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUVERDLG.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000069632 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDEVCOM.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000135168 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDRVUTL.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000339968 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRBDEV.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000286720 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUSNMPUT.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000081920 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000090112 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000245760 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXRCV.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000110592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000022016 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FULEPPRes.dll

2018-07-04 13:13 - 2015-01-19 11:00 - 000077824 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll

2015-06-17 16:44 - 2015-06-17 16:44 - 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000786432 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENCM.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000278528 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENNW.dll

2018-07-04 13:13 - 2015-01-20 01:00 - 000299008 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENUTIL.dll

2017-05-15 00:45 - 2014-09-11 18:10 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:95913E45 [127]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:25 - 2019-10-14 11:13 - 000000870 _____ C:\WINDOWS\system32\drivers\etc\hosts

0.0.0.1 mssplus.mcafee.com

2018-08-02 16:28 - 2019-09-27 09:21 - 000000431 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

92.168.1.11 HP.mshome.net # 2023 12 6 9 19 51 48 505

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %C_EM64T_REDIST11%bin\Intel64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\USER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper

DNS Servers: 192.168.43.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{38F0C528-9FD6-40D9-9A20-5B16132B2835}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{5F3239D5-086C-4E60-8113-7FA34DE96EDD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{F4DB506D-10FD-43D4-ACEA-C6E5128FD688}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{125732FF-CE4C-43CD-846F-E77C20E3BFC5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [UDP Query User{46298892-30CF-4976-BA69-98C4ADF41AC9}C:\program files (x86)\xnview\xnview.exe] => (Allow) C:\program files (x86)\xnview\xnview.exe (Pierre GOUGELET -> XnView, hxxp://www.xnview.com) [File not signed]

FirewallRules: [TCP Query User{EB8B8ED2-19B5-4241-A2CD-2426AA4BE047}C:\program files (x86)\xnview\xnview.exe] => (Allow) C:\program files (x86)\xnview\xnview.exe (Pierre GOUGELET -> XnView, hxxp://www.xnview.com) [File not signed]

FirewallRules: [{8CEE859E-6ED0-4F00-A4F8-352DC95C688B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink -> CyberLink Corp.)

FirewallRules: [{673BEB21-8462-43F4-8E84-203BF9FBF6C1}] => (Allow) LPort=50248

FirewallRules: [{4ECB81FD-F4CD-4762-98D4-1379AC7A0453}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{268F6118-1282-4DEB-92E5-71858A7F33A5}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{00CF9154-09FE-4365-9586-D4F5FEBF7E79}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{B77A789B-3C62-4764-AF59-E07EBC19FC17}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{9BA43833-4B22-4E06-89D6-E67D73FB7734}] => (Allow) LPort=52664

FirewallRules: [{8C9016B4-D6A3-4B48-89FC-325E2B5A2809}] => (Allow) LPort=5000

FirewallRules: [{8AFDA6C5-B619-4C16-8027-18B596889632}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FirewallRules: [{B231DDA3-2AB7-421E-9EC9-885E19DFF824}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FirewallRules: [{562FE0DD-FE09-48BF-9038-B71F834206EF}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File

FirewallRules: [{F5A5F3F5-7DBF-40CB-B590-017DA1E464A9}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File

FirewallRules: [TCP Query User{DC938F21-FC1C-4049-9C97-C72D25A3CB14}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FirewallRules: [UDP Query User{3851B6C5-5EB5-4E9B-A225-5F68F120C0BC}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FirewallRules: [{588E6323-3809-446B-A752-9EB656B12C3A}] => (Allow) %systemroot%\system32\alg.exe No File

FirewallRules: [{0E458DBB-B95F-4CFE-A9EC-E515A4243D65}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelDrw.exe (Corel Corporation -> Corel Corporation)

FirewallRules: [{644D1D7F-029F-4874-8C9B-90F942B181BB}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelPP.exe (Corel Corporation -> Corel Corporation)

FirewallRules: [{FEF30E23-068E-4F6F-8E3C-AB4BBE0DB906}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

09-10-2019 11:01:55 Removed Skype™ 7.40

09-10-2019 22:09:28 Removed Corel Graphics - Windows Shell Extension.

09-10-2019 22:11:02 Removed Corel Graphics - Windows Shell Extension 32 Bit Keys.

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (10/15/2019 11:08:23 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:37:03 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:36:55 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:32:11 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:31:55 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:22:41 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:19:56 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/15/2019 10:19:08 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

System errors:

=============

Error: (10/15/2019 11:12:20 AM) (Source: Service Control Manager) (EventID: 7022) (User: )

Description: El servicio Optimización de entrega no respondió después de iniciar.

Error: (10/15/2019 11:10:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)

Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID

{D63B10C5-BB46-4990-A94F-E40B9D520160}

 y APPID

{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}

 al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/15/2019 11:09:55 AM) (Source: DCOM) (EventID: 10016) (User: HP)

Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID

{D63B10C5-BB46-4990-A94F-E40B9D520160}

 y APPID

{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}

 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/15/2019 11:09:49 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)

Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID

Windows.SecurityCenter.WscBrokerManager

 y APPID

No disponible

 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/15/2019 11:07:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error:

El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (10/15/2019 11:07:35 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio FontCache3.0.0.0.

Error: (10/15/2019 11:07:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: El servicio Autodesk Content Service no pudo iniciarse debido al siguiente error:

El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (10/15/2019 11:07:22 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Autodesk Content Service.

Windows Defender:

===================================

Date: 2019-10-11 18:57:59.039

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para obtener más información consulte lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0

Nombre: HackTool:Win32/AutoKMS

Id.: 2147685180

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Users\USER\Desktop\KMSpico Install\UnInstall_Service.cmd

Origen de detección: Equipo local

Tipo de detección: Concreto

Fuente de detección: Protección en tiempo real

Usuario: HP\USER

Nombre de proceso: C:\Windows\explorer.exe

Versión de firma: AV: 1.303.1459.0, AS: 1.303.1459.0, NIS: 1.303.1459.0

Versión de motor: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-06-04 18:01:05.379

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para obtener más información consulte lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS&threatid=2147711767&enterprise=0

Nombre: HackTool:MSIL/AutoKMS

Id.: 2147711767

Gravedad: Media

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe;process:_pid:3276,ProcessStart:132041624672233888

Origen de detección: Equipo local

Tipo de detección: Concreto

Fuente de detección: Protección en tiempo real

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: C:\Program Files\KMSpico\Service_KMS.exe

Versión de firma: AV: 1.263.48.0, AS: 1.263.48.0, NIS: 1.263.48.0

Versión de motor: AM: 1.1.14600.4, NIS: 1.1.14600.4

Date: 2019-06-04 17:59:48.801

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para obtener más información consulte lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS&threatid=2147711767&enterprise=0

Nombre: HackTool:MSIL/AutoKMS

Id.: 2147711767

Gravedad: Media

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe

Origen de detección: Equipo local

Tipo de detección: Concreto

Fuente de detección: Protección en tiempo real

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe

Versión de firma: AV: 1.263.48.0, AS: 1.263.48.0, NIS: 1.263.48.0

Versión de motor: AM: 1.1.14600.4, NIS: 1.1.14600.4

Date: 2019-10-11 21:16:15.301

Description:

Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.

Nueva versión de firma:

Versión de firma anterior: 1.303.1459.0

Origen de actualización: Servidor de Microsoft Update

Tipo de firma: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\SYSTEM

Versión de motor actual:

Versión de motor anterior: 1.1.16400.2

Código de error: 0x8024001e

Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.

Date: 2019-10-10 08:44:50.023

Description:

Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.

Nueva versión de firma:

Versión de firma anterior: 1.263.48.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de firma: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\Servicio de red

Versión de motor actual:

Versión de motor anterior: 1.1.14600.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2019-10-10 08:44:50.023

Description:

Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.

Nueva versión de firma:

Versión de firma anterior: 1.263.48.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de firma: AntiSpyware

Tipo de actualización: Completa

Usuario: NT AUTHORITY\Servicio de red

Versión de motor actual:

Versión de motor anterior: 1.1.14600.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2019-10-10 08:44:50.022

Description:

Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.

Nueva versión de firma:

Versión de firma anterior: 1.263.48.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de firma: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\Servicio de red

Versión de motor actual:

Versión de motor anterior: 1.1.14600.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2019-10-10 08:44:49.516

Description:

Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.

Nueva versión de firma:

Versión de firma anterior: 1.263.48.0

Origen de actualización: Servidor de Microsoft Update

Tipo de firma: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\SYSTEM

Versión de motor actual:

Versión de motor anterior: 1.1.14600.4

Código de error: 0x80240438

Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.

CodeIntegrity:

===================================

Date: 2019-10-05 21:43:22.441

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-05 21:43:22.354

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-05 21:43:22.148

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-05 21:43:22.022

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-09-01 00:33:45.514

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-09-01 00:33:45.475

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-09-01 00:33:45.437

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-09-01 00:33:45.386

Description:

Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: Insyde F.22 11/25/2014

Motherboard: Hewlett-Packard 22A0

Processor: Intel(R) Core(TM) i7-4712HQ CPU @ 2.30GHz

Percentage of memory in use: 31%

Total physical RAM: 12219.11 MB

Available physical RAM: 8368.46 MB

Total Virtual: 12219.11 MB

Available Virtual: 8347.9 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:194.01 GB) (Free:60.85 GB) NTFS

Drive d: () (Fixed) (Total:736.2 GB) (Free:533.51 GB) NTFS

\\?\Volume{3e3a27b5-1dd6-11e6-824f-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.34 GB) (Free:0.06 GB) NTFS

\\?\Volume{924b9ace-0000-0000-0000-609630000000}\ () (Fixed) (Total:0.96 GB) (Free:0.43 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 924B9ACE)

Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=194 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=987 MB) - (Type=27)

Partition 4: (Not Active) - (Size=736.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt

{/CODE}

Aqui el reporte de Delfix

# DelFix v1.013 - Logfile created 15/10/2019 at 12:58:11

# Updated 17/04/2016 by Xplode

# Username : USER - HP

# Operating System : Windows 10 Enterprise (64 bits)

~ Creating registry backup ... OK}

########## - EOF - ##########

{/CODE}

Hola @GOFEC

Antes de ejecutar FRST, hay que realizar una limpieza, de la siguiente manera, respetando el orden de los pasos

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
  • Cuando lo instales destilda las casillas para no permitir la instalación de CcleanerBrowser.
  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes

  • No olvides actualizarlo.
  • Lee detenidamente su Manual
  • Realiza un Análisis Personalizado marcando todas las unidades
  • Pulsa en “Eliminar Seleccionados” para enviar lo encontrado a la cuarentena.
  • Reinicias el Sistema.
  • En el apartado del manual “Historial” >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta.

4.- Nota Importante:

En tu próxima respuesta debes pegar los reportes de AdwCleaner , ZHPCleaner y Malwarebytes.

Guía: ¿Como Pegar reportes en el Foro?

Nos comentas.

Salu2

Gracias amigos por el apoyo, ya hice lo que me indicaron, les adjunto los reportes que me solicitan; en el caso del ADWCLEANER, como me piudio reiniciar varias veces lo volvi a pasar y adjunto todos los reporte obtenidos:

reportes ADW CLEANER

Log1

# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-05-2019
# Database: 2019-08-27.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-15-2019
# Duration: 00:00:04
# OS:       Windows 10 Pro
# Cleaned:  18
# Failed:   1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Deleted       FromDocToPDF para Chrome
Deleted       MSN Homepage & Bing Search Engine
Deleted       Search Extension by Ask

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.CyberLinkService   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|BDRegion
Deleted       Preinstalled.CyberLinkService   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|BDRegion
Deleted       Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\Program Files\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION
Deleted       Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\ProgramData\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION
Deleted       Preinstalled.EpsonCustomerResearchParticipation   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B26449A6-6007-4460-B4FE-C4776115BCEA}
Deleted       Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03310AC2-40F3-421B-91AA-16E2D1DFFA53} 
Deleted       Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03310AC2-40F3-421B-91AA-16E2D1DFFA53} 
Deleted       Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForUser
Deleted       Preinstalled.HPCeement   Task   C:\Windows\System32\Tasks\HPCEESCHEDULEFORUSER
Deleted       Preinstalled.HPCeement   Task   C:\Windows\Tasks\HPCEESCHEDULEFORUSER.JOB
Deleted       Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D}
Deleted       Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D}
Deleted       Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831}
Deleted       Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}
Deleted       Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8EF98706-3C4B-4C5B-B035-01187E17D0E6}
Not Deleted   Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [43603 octets] - [15/10/2019 19:40:47]
AdwCleaner[S00].txt - [5711 octets] - [15/10/2019 19:42:19]
AdwCleaner[S01].txt - [3587 octets] - [15/10/2019 22:24:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########````

Log2 (Adw cleaner)


    # -------------------------------
    # Malwarebytes AdwCleaner 7.4.1.0
    # -------------------------------
    # Build:    09-05-2019
    # Database: 2019-10-14.1 (Cloud)
    # Support:  https://www.malwarebytes.com/support
    #
    # -------------------------------
    # Mode: Clean
    # -------------------------------
    # Start:    10-15-2019
    # Duration: 00:00:04
    # OS:       Windows 10 Pro
    # Cleaned:  2
    # Failed:   0


    ***** [ Services ] *****

    No malicious services cleaned.

    ***** [ Folders ] *****

    No malicious folders cleaned.

    ***** [ Files ] *****

    No malicious files cleaned.

    ***** [ DLL ] *****

    No malicious DLLs cleaned.

    ***** [ WMI ] *****

    No malicious WMI cleaned.

    ***** [ Shortcuts ] *****

    No malicious shortcuts cleaned.

    ***** [ Tasks ] *****

    No malicious tasks cleaned.

    ***** [ Registry ] *****

    No malicious registry entries cleaned.

    ***** [ Chromium (and derivatives) ] *****

    Deleted       chnacmlpiecdhgkdgeoipkmdbekengck

    ***** [ Chromium URLs ] *****

    No malicious Chromium URLs cleaned.

    ***** [ Firefox (and derivatives) ] *****

    No malicious Firefox entries cleaned.

    ***** [ Firefox URLs ] *****

    No malicious Firefox URLs cleaned.

    ***** [ Preinstalled Software ] *****

    Deleted       Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS


    *************************

    [+] Delete Tracing Keys
    [+] Reset Winsock

    *************************

    AdwCleaner_Debug.log - [52730 octets] - [15/10/2019 19:40:47]
    AdwCleaner[S00].txt - [5711 octets] - [15/10/2019 19:42:19]
    AdwCleaner[S01].txt - [3587 octets] - [15/10/2019 22:24:36]
    AdwCleaner[C01].txt - [3925 octets] - [15/10/2019 22:25:11]
    AdwCleaner[S02].txt - [1671 octets] - [15/10/2019 22:36:55]

    ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Log3 (Adw cleaner)

    # -------------------------------
    # Malwarebytes AdwCleaner 7.4.1.0
    # -------------------------------
    # Build:    09-05-2019
    # Database: 2019-10-14.1 (Cloud)
    # Support:  https://www.malwarebytes.com/support
    #
    # -------------------------------
    # Mode: Scan
    # -------------------------------
    # Start:    10-15-2019
    # Duration: 00:00:40
    # OS:       Windows 10 Pro
    # Scanned:  35163
    # Detected: 40


    ***** [ Services ] *****

    No malicious services found.

    ***** [ Folders ] *****

    PUP.Optional.TweakBit           C:\Program Files (x86)\TweakBit
    PUP.Optional.TweakBit           C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
    PUP.Optional.TweakBit           C:\ProgramData\TweakBit
    PUP.Optional.TweakBit           C:\Windows\System32\Tasks\TweakBit

    ***** [ Files ] *****

    PUP.Optional.Legacy             C:\Users\USER\Desktop\TweakBit PCRepairKit.lnk

    ***** [ DLL ] *****

    No malicious DLLs found.

    ***** [ WMI ] *****

    No malicious WMI found.

    ***** [ Shortcuts ] *****

    No malicious shortcuts found.

    ***** [ Tasks ] *****

    No malicious tasks found.

    ***** [ Registry ] *****

    PUP.Optional.DriverPack         HKCU\Software\drpsu
    PUP.Optional.Legacy             HKLM\Software\Wow6432Node\TWEAKBIT
    PUP.Optional.TweakBit           HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF0487CB-5296-4E1A-A3B5-DB4633CE4E4B} 
    PUP.Optional.TweakBit           HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TweakBit
    PUP.Optional.TweakBit           HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1

    ***** [ Chromium (and derivatives) ] *****

    Adware.Mindspark                FromDocToPDF para Chrome
    Adware.Mindspark                Search Extension by Ask
    PUP.Optional.Legacy             MSN Homepage & Bing Search Engine

    ***** [ Chromium URLs ] *****

    No malicious Chromium URLs found.

    ***** [ Firefox (and derivatives) ] *****

    No malicious Firefox entries found.

    ***** [ Firefox URLs ] *****

    No malicious Firefox URLs found.

    ***** [ Preinstalled Software ] *****

    Preinstalled.CyberLinkService   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|BDRegion 
    Preinstalled.CyberLinkService   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|BDRegion 
    Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\Program Files\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION 
    Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\ProgramData\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION 
    Preinstalled.EpsonCustomerResearchParticipation   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B26449A6-6007-4460-B4FE-C4776115BCEA} 
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03310AC2-40F3-421B-91AA-16E2D1DFFA53}  
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03310AC2-40F3-421B-91AA-16E2D1DFFA53}  
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForUser 
    Preinstalled.HPCeement   Task   C:\Windows\System32\Tasks\HPCEESCHEDULEFORUSER 
    Preinstalled.HPCeement   Task   C:\Windows\Tasks\HPCEESCHEDULEFORUSER.JOB 
    Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK 
    Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS 
    Preinstalled.HPSupportAssistant   Folder   C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Folder   C:\Users\USER\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Folder   C:\Users\USER\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Folder   C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Folder   C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8EF98706-3C4B-4C5B-B035-01187E17D0E6} 
    Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|RemoteControl10 
    Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|RemoteControl10 
    Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 
    Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 


    AdwCleaner_Debug.log - [11741 octets] - [15/10/2019 19:40:47]

    ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Log4 (Adw cleaner)

    # -------------------------------
    # Malwarebytes AdwCleaner 7.4.1.0
    # -------------------------------
    # Build:    09-05-2019
    # Database: 2019-08-27.1 (Local)
    # Support:  https://www.malwarebytes.com/support
    #
    # -------------------------------
    # Mode: Scan
    # -------------------------------
    # Start:    10-15-2019
    # Duration: 00:00:15
    # OS:       Windows 10 Pro
    # Scanned:  35522
    # Detected: 19


    ***** [ Services ] *****

    No malicious services found.

    ***** [ Folders ] *****

    No malicious folders found.

    ***** [ Files ] *****

    No malicious files found.

    ***** [ DLL ] *****

    No malicious DLLs found.

    ***** [ WMI ] *****

    No malicious WMI found.

    ***** [ Shortcuts ] *****

    No malicious shortcuts found.

    ***** [ Tasks ] *****

    No malicious tasks found.

    ***** [ Registry ] *****

    No malicious registry entries found.

    ***** [ Chromium (and derivatives) ] *****

    Adware.Mindspark                FromDocToPDF para Chrome
    Adware.Mindspark                Search Extension by Ask
    PUP.Optional.Legacy             MSN Homepage & Bing Search Engine

    ***** [ Chromium URLs ] *****

    No malicious Chromium URLs found.

    ***** [ Firefox (and derivatives) ] *****

    No malicious Firefox entries found.

    ***** [ Firefox URLs ] *****

    No malicious Firefox URLs found.

    ***** [ Preinstalled Software ] *****

    Preinstalled.CyberLinkService   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|BDRegion 
    Preinstalled.CyberLinkService   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|BDRegion 
    Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\Program Files\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION 
    Preinstalled.EpsonCustomerResearchParticipation   Folder   C:\ProgramData\EPSON\EPSONCUSTOMERRESEARCHPARTICIPATION 
    Preinstalled.EpsonCustomerResearchParticipation   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B26449A6-6007-4460-B4FE-C4776115BCEA} 
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03310AC2-40F3-421B-91AA-16E2D1DFFA53}  
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03310AC2-40F3-421B-91AA-16E2D1DFFA53}  
    Preinstalled.HPCeement   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForUser 
    Preinstalled.HPCeement   Task   C:\Windows\System32\Tasks\HPCEESCHEDULEFORUSER 
    Preinstalled.HPCeement   Task   C:\Windows\Tasks\HPCEESCHEDULEFORUSER.JOB 
    Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC} 
    Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8EF98706-3C4B-4C5B-B035-01187E17D0E6} 


    AdwCleaner_Debug.log - [34789 octets] - [15/10/2019 19:40:47]
    AdwCleaner[S00].txt - [5711 octets] - [15/10/2019 19:42:19]

    ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Log5 (Adw cleaner)

 -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-05-2019
# Database: 2019-10-14.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    10-15-2019
# Duration: 00:01:11
# OS:       Windows 10 Pro
# Scanned:  35163
# Detected: 2


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

Adware.Mindspark                chnacmlpiecdhgkdgeoipkmdbekengck

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS 


AdwCleaner_Debug.log - [48853 octets] - [15/10/2019 19:40:47]
AdwCleaner[S00].txt - [5711 octets] - [15/10/2019 19:42:19]
AdwCleaner[S01].txt - [3587 octets] - [15/10/2019 22:24:36]
AdwCleaner[C01].txt - [3925 octets] - [15/10/2019 22:25:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Hola @GOFEC

Algo esta mal con Adwcleaner.

No es normal que lo ejecutes tantas veces.

Has pegado los reportes últimos en Modo Scan y debes seleccionar todo y presionar Limpiar para eliminar, y luego si pegar el reporte.

En sintesis de AdwCleaner necesitamos solo los reportes que mencionan:

Mode: Clean

Por el momento sigue con los demás pasos.

Salu2

Hola

En cuanto al ZPH cleaner se me borraron los reportes al desinstalar, consulto si lo puedo volver a pasar

Aqui adjunto el reporte de Malwarebytes:

    www.malwarebytes.com

    -Detalles del registro-
    Fecha del análisis: 16/10/19
    Hora del análisis: 0:02
    Archivo de registro: 37b0e9bc-efd2-11e9-a7ea-a01d48f9d5ad.json

    -Información del software-
    Versión: 3.8.3.2965
    Versión de los componentes: 1.0.629
    Versión del paquete de actualización: 1.0.12927
    Licencia: Gratis

    -Información del sistema-
    SO: Windows 10 (Build 17134.1069)
    CPU: x64
    Sistema de archivos: NTFS
    Usuario: HP\USER

    -Resumen del análisis-
    Tipo de análisis: Análisis de amenazas
    Análisis iniciado por:: Manual
    Resultado: Completado
    Objetos analizados: 351045
    Amenazas detectadas: 124
    Amenazas en cuarentena: 124
    Tiempo transcurrido: 17 min, 29 seg

    -Opciones de análisis-
    Memoria: Activado
    Inicio: Activado
    Sistema de archivos: Activado
    Archivo: Activado
    Rootkits: Desactivado
    Heurística: Activado
    PUP: Detectar
    PUM: Detectar

    -Detalles del análisis-
    Proceso: 0
    (No hay elementos maliciosos detectados)

    Módulo: 0
    (No hay elementos maliciosos detectados)

    Clave del registro: 0
    (No hay elementos maliciosos detectados)

    Valor del registro: 2
    PUP.Optional.MindSpark.Generic, HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|jbldcomffojmkkjbblhcebeicbncmjpf, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|chnacmlpiecdhgkdgeoipkmdbekengck, En cuarentena, [1787], [443121],1.0.12927

    Datos del registro: 0
    (No hay elementos maliciosos detectados)

    Secuencia de datos: 0
    (No hay elementos maliciosos detectados)

    Carpeta: 27
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\es_419, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\pt_br, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\pt_pt, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ar, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\de, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\en, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\es, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\fr, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\it, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ja, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ko, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\nl, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_metadata, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\config, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\libs, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\JBLDCOMFFOJMKKJBBLHCEBEICBNCMJPF, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\_metadata, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\config, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CHNACMLPIECDHGKDGEOIPKMDBEKENGCK, En cuarentena, [1787], [443121],1.0.12927

    Archivo: 95
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\000003.log, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\CURRENT, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\LOCK, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\LOG, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\LOG.old, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbldcomffojmkkjbblhcebeicbncmjpf\MANIFEST-000001, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\JBLDCOMFFOJMKKJBBLHCEBEICBNCMJPF\50.166.16.29424_0\MANIFEST.JSON, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\config\config.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons\icon128.png, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons\icon16.png, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons\icon19disabled.png, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons\icon19on.png, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\icons\icon48.png, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\ajax.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\background.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\chrome.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\content_script.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\dlp.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\dlpHelper.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\extensionDetect.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\index.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\internationalSearchUtils.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\logger.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\settingsOverridesUtils.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\splashPageLocalStorageSetter.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\storageUtils.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\templateParser.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\ul.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\urlUtils.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\js\util.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\libs\PartnerId.js, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ar\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\de\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\en\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\es\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\es_419\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\fr\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\it\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ja\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\ko\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\nl\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\pt_br\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_locales\pt_pt\messages.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_metadata\computed_hashes.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbldcomffojmkkjbblhcebeicbncmjpf\50.166.16.29424_0\_metadata\verified_contents.json, En cuarentena, [1787], [443122],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CHNACMLPIECDHGKDGEOIPKMDBEKENGCK\13.909.16.23436_0\MANIFEST.JSON, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\config\config.json, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons\icon128.png, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons\icon16.png, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons\icon19disabled.png, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons\icon19on.png, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\icons\icon48.png, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\dlpHelper.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\ajax.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\babAPI.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\babClickHandler.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\babContentScript.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\babContentScriptAPI.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\background.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\browserUtils.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\chrome.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\contentScriptConnectionManager.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\dateTimeUtils.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\dlp.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\extensionDetect.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\index.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\localStorageContentScript.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\logger.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\meta.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\offerService.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\pageUtils.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\PartnerId.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\polyfill.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\product.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\remoteConfigLoader.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\splashPageRedirectHandler.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\storageUtils.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\TemplateParser.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\ul.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\urlFragmentActions.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\urlUtils.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\util.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\webtooltabAPI.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\js\webTooltabAPIProxy.js, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\_metadata\verified_contents.json, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.MindSpark.Generic, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_0\ntp1.html, En cuarentena, [1787], [443121],1.0.12927
    PUP.Optional.TweakBit, C:\$RECYCLE.BIN\S-1-5-21-1647861114-2623618104-3830117335-1001\$RDW1B0J.EXE, En cuarentena, [1644], [340092],1.0.12927
    PUP.Optional.OpenCandy, C:\USERS\USER\DOWNLOADS\DTLITE4471-0337 (2).RAR, En cuarentena, [1190], [297667],1.0.12927
    PUP.Optional.OpenCandy, C:\USERS\USER\DOWNLOADS\DTLITE4471-0337 (1).RAR, En cuarentena, [1190], [297667],1.0.12927
    PUP.Optional.OpenCandy, C:\USERS\USER\DOWNLOADS\DTLITE4471-0337.RAR, En cuarentena, [1190], [297667],1.0.12927
    Generic.Malware/Suspicious, C:\USERS\USER\DESKTOP\CORELDRAWX8\CRACK\KEYGEN XFORCE.EXE, En cuarentena, [0], [392686],1.0.12927

    Sector físico: 0
    (No hay elementos maliciosos detectados)

    WMI: 0
    (No hay elementos maliciosos detectados)


    (end) ´´´´

Hola @GOFEC

No debes desinstalar o eliminar ningún programa hasta terminar con la desinfección, dónde se te darán los pasos correctos para su eliminación.

Repite la descarga y análisis con Zhpcleaner.

Esperamos el reporte.

Salu2

Así mismo volví a pasar el ZHP Cleaner, te adjunto Log.

~ ZHPCleaner v2019.10.14.149 by Nicolas Coolman (2019/10/14)
~ Run by USER (Administrator)  (16/10/2019 10:51:41)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Reparar
~ Report : C:\Users\USER\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\USER\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit  (Build 17134)

---\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados. (ADS)

---\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados. (Servicio)

---\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados. (Navegador)

---\  Hosts carpeta (1)
~ El archivo hosts es legítimo (39)

---\  Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados. (Tarea)

---\  Explorador ( Archivos, Carpetas ) (57)
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\manifest.json    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\ntp1.html    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\_metadata\verified_contents.json    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\config\config.json    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons\icon128.png    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons\icon16.png    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons\icon19disabled.png    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons\icon19on.png    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons\icon48.png    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\ajax.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\babAPI.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\babClickHandler.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\babContentScript.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\babContentScriptAPI.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\background.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\browserUtils.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\chrome.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\contentScriptConnectionManager.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\dateTimeUtils.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\dlp.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\dlpHelper.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\extensionDetect.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\index.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\localStorageContentScript.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\logger.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\meta.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\offerService.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\pageUtils.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\PartnerId.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\polyfill.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\product.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\remoteConfigLoader.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\splashPageRedirectHandler.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\storageUtils.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\TemplateParser.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\ul.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\urlFragmentActions.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\urlUtils.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\util.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\webtooltabAPI.js    =>SUP.Optional.MindSpark
MOVIDO carpeta: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js\webTooltabAPIProxy.js    =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Roaming\PDAppFlex  =>Trojan.Elpman
MOVIDO archivo: C:\Program Files\KMSpico  =>HackTool.KMSpico
MOVIDO archivo: C:\Users\USER\Desktop\KMSpico Install  =>HackTool.KMSpico
MOVIDO archivo: C:\Documents and Settings\USER\Desktop\KMSpico Install  =>HackTool.KMSpico
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\_metadata  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\config  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\_metadata  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\config  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\icons  =>SUP.Optional.MindSpark
MOVIDO archivo: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck\chnacmlpiecdhgkdgeoipkmdbekengck\13.909.16.23436_1\js  =>SUP.Optional.MindSpark

---\  Registro ( Claves, Valores, Datos) (7)
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\BCAgentCOM32.BCAgent32 [TweakBit BCAgent32]  =>.SUP.TweakBit
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\BCAgentCOM64.BCAgent64 [TweakBit BCAgent64]  =>.SUP.TweakBit
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\protector_dll.Protector [Protector Class]  =>Adware.BProtector
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1 [Protector Class]  =>Adware.BProtector
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib [ProtectorLib Class]  =>Adware.BProtector
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1 [ProtectorLib Class]  =>Adware.BProtector
BORRADOS clave*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 [KMSpico]  =>HackTool.KMSpico

---\  Resumen de elementos en su estación de trabajo (5)
https://nicolascoolman.eu/2017/01/15/superfluous-mindspark/  =>SUP.Optional.MindSpark
https://nicolascoolman.eu/2017/09/23/trojan-elpman/  =>Trojan.Elpman
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/  =>HackTool.KMSpico
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.TweakBit
https://nicolascoolman.eu/2017/04/12/adware-bprotector/  =>Adware.BProtector

---\ Limpieza adicional. (3)
~ Clave de registro Tracing borrados (3)
~ Quitar los antiguos informes de ZHPCleaner. (0)

---\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ Google Chrome OK
~ Internet Explorer OK

---\ STATISTIQUES
~ Items escaneado : 1264
~ Items encontrado : 0
~ artículos cancelados : 0
~ Items opciones : 6/13
~ Ahorro de espacio (bytes) : 0
~ End of clean in 00h01mn10s

---\  Reporte (2)
ZHPCleaner-[S]-16102019-10_45_00.txt
ZHPCleaner-[R]-16102019-10_52_51.txt

Hola @GOFEC

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Hola, Gracias por el apoyo, te adjunto Logs. del FRST:

Ran by USER (administrator) on HP (Hewlett-Packard HP ENVY 15 Notebook PC) (17-10-2019 00:12:33)
Running from C:\Users\USER\Desktop
Loaded Profiles: USER (Available Profiles: USER)
Platform: Windows 10 Pro Version 1803 17134.1069 (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\83.4.152\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\83.4.152\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\83.4.152\QtWebEngineProcess.exe
(FSPro Labs -> FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler64.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\USER\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2617608 2015-05-25] (FSPro Labs -> FSPro Labs)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [706392 2017-11-20] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650784 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863776 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Run: [BingSvc] => C:\Users\USER\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [36864 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01CFB1C6-45F8-431B-83BD-F7C2B7C75D74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {0660A08D-B3DD-4139-A00C-4013718E87F3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {0760C644-7ABA-4D14-8E66-983B2B8FFB50} - System32\Tasks\AdobeAAMUpdater-1.0-HP-USER => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {10B8F9A8-6F70-4C16-B600-05886BAAB220} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {140D89C4-05E1-4EDE-B973-D44AA0EB34B9} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {1E0F395F-E93A-4A85-BAD2-3777DF9A443C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {2092D6E8-CCF4-4CF5-AE46-06F5B398CB26} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2D8D1C07-CFB5-4388-AD54-B2EAB09729C6} - System32\Tasks\Microsoft Office 15 Sync Maintenance for HP-USER HP => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [470720 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {30E56A0C-6D90-47B5-B991-A2F1B223C078} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {33CC0A65-68DB-40B2-8C67-0F613A4D3F66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {380231C2-620C-466B-B1E2-CAAC6F12F3C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {3978D9B8-5402-4903-813C-5BBFF8B72561} - System32\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {39F344B9-647F-4B82-8E4A-7464D2CF1CC2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3ACCD476-FBFC-4A01-9076-70165E0AFB6B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {3B1ADEEE-7D5F-4376-AE69-754542E2A4AF} - System32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404
Task: {4283971C-7070-4451-B395-7AEBC85F713C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {4E0C37A6-5C42-43A3-AC33-A1C2673EB8D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [33280 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
Task: {6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {66847ABE-B2CF-427B-B0C5-E6FC6BC677F0} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {68AFFA8E-9430-4095-A50B-5B94A16D0084} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
Task: {6DD6161C-263E-4441-B5A8-8E747119D4DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6E35227E-2C5C-4316-B8EC-9970728A53E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {77712788-00D8-4365-B786-3437E639D49E} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe
Task: {79AB15A1-77B5-4F8B-9D02-8C7A28C9381E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {7E2521D4-9EDE-499C-A34C-3C536E660861} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8170303B-30DF-4EAF-9A43-F2B14507E813} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {922598FA-FB85-45B5-9B1C-40B958014396} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-19] (Google Inc -> Google Inc.)
Task: {9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9DF6B5E0-9774-4D8E-9693-3EF106B51499} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {A2A3778B-0CC1-4799-8588-7C8F88108ED7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A3FD05AB-DDF6-49D8-8D1F-BCBA88A19C90} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A9418F40-D7AC-446A-B8CD-9200A6967B37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {AD1B01DD-02DE-4FEA-AC18-42FE8195B248} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {B5D140F8-1D9F-4091-A498-5B143B0E3675} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {B85799CA-6F41-485B-B610-4B25842630AF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BE4E11A4-212D-43BD-B529-45810AF9E39C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C13A5E8A-12B1-413F-AC23-3E90F1A1900D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D1FE1173-D107-488C-924C-C740815C88CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {D21808A7-461A-40A3-9638-42CE601F03CC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {D353C236-A4C2-428B-9CE6-942D51C8B5F2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {E13A5EDC-A976-4B80-91B2-E26485A88E4E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E1AF9AF8-6DE7-4202-B4A7-3DAC9C120EAB} - System32\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {E9A90791-4935-4876-AE10-669FB30BA592} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1677600 2019-09-06] (Corel Corporation -> Corel Corporation)
Task: {E9FC7376-895F-4A1A-9F3A-94A0008F94CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Restart => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {EC85DC36-1AF9-4E66-865B-BC985C76703C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {F3757602-C8F9-49A6-A2FF-E30B7924F731} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F9D7EAAD-14AF-41AD-AE0E-10E8358DF914} - \WPD\SqmUpload_S-1-5-21-1647861114-2623618104-3830117335-1001 -> No File <==== ATTENTION
Task: {FE2A77F2-04C0-4765-BE49-14A8612B062D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE:/EXE:{627B8EAC-673B-4107-B81A-BC69FC328B48} /F:UpdateWORKGROUP\HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSMTE.EXE:/EXE:{7B7802FA-0585-4BF4-ADB4-821D2358EEF1} /F:UpdateWORKGROUP\HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{cab8c0e5-ee79-4627-980e-07db38ae1959}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-pe/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-11-28] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-11-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-11-28] (Google Inc -> Google Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File]

Chrome: 
=======
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.google.com.pe/"
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default [2019-10-17]
CHR Extension: (Presentaciones) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-15]
CHR Extension: (Documentos) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-15]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-15]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-15]
CHR Extension: (FromDocToPDF para Chrome) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck [2019-10-16]
CHR Extension: (Adobe Acrobat) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-15]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-10-15]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-16]
CHR Extension: (Hojas de cálculo) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-15]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-15]
CHR Extension: (Consultas en Línea - Sin Clave RNP | ...) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjlaflanlffgegodnempidncmajeanad [2019-10-15]
CHR Extension: (Avast Online Security) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-10-15]
CHR Extension: (Instagram) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\maonlnecdeecdljpahhnnlmhbmalehlm [2019-10-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-15]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-15]
CHR HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-11-21] (Autodesk, Inc. -> Autodesk Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-04] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [60416 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5098408 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-11-05] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 EpsonCustomerResearchParticipation; "C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe" [X]
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [171520 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-04-11] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (Bitdefender SRL -> BitDefender)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [610336 2016-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 Dot4Scan; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [14760 2013-06-04] (BoiseTest -> Microsoft Corporation)
S3 dot4usb; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [43944 2013-06-04] (BoiseTest -> Microsoft Corporation)
R0 FSProFilter2; C:\WINDOWS\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (Alfa System Programming -> FSPro Labs)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-02-03] (Intel CASE -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-10-16] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_9172c4e962e5b3ee\nvlddmkm.sys [17200384 2018-07-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-11] (Microsoft Windows -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46680 2017-11-05] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinDivert1.1; C:\Program Files\KMSpico\WinDivert.sys [35376 2016-05-19] (Nemea Mjukvaruutveckling AB -> Basil Projects)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-03-13] (CyberLink -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-17 00:09 - 2019-10-17 00:10 - 001616384 _____ (Farbar) C:\Users\USER\Downloads\FRST64 (1).exe
2019-10-17 00:09 - 2019-10-17 00:10 - 001616384 _____ (Farbar) C:\Users\USER\Desktop\FRST64.exe
2019-10-16 23:38 - 2019-10-16 23:38 - 000056430 _____ C:\Users\USER\Downloads\FV708_12728125_RENTA3RA.pdf
2019-10-16 23:27 - 2019-10-16 23:27 - 003413093 _____ (Your Company Name) C:\Users\USER\Downloads\RT18PJ.EXE
2019-10-16 21:57 - 2019-10-16 21:57 - 000166124 _____ C:\Users\USER\Downloads\fragen_017001_20549696784_0230171664076_20190225181030_361501880 (1).pdf
2019-10-16 21:56 - 2019-10-16 21:56 - 000173116 _____ C:\Users\USER\Downloads\fragen_017001_20549696784_0230171678244_20190314210143_372702484 (2).pdf
2019-10-16 21:55 - 2019-10-16 21:55 - 000172654 _____ C:\Users\USER\Downloads\fragen_017004_20549696784_0230171699143_20190412122437_382728033.pdf
2019-10-16 21:54 - 2019-10-16 21:54 - 000167372 _____ C:\Users\USER\Downloads\fragen_017001_20549696784_0230171746303_20190613094655_400976587.pdf
2019-10-16 21:54 - 2019-10-16 21:54 - 000131130 _____ C:\Users\USER\Downloads\fragen_017603_20549696784_0230171751012_20190619173209_405788597.pdf
2019-10-16 21:53 - 2019-10-16 21:53 - 000131135 _____ C:\Users\USER\Downloads\fragen_017603_20549696784_0230171751011_20190619173209_405788649.pdf
2019-10-16 21:53 - 2019-10-16 21:53 - 000131133 _____ C:\Users\USER\Downloads\fragen_017603_20549696784_0230171751010_20190619173209_405788666.pdf
2019-10-16 21:51 - 2019-10-16 21:51 - 000160380 _____ C:\Users\USER\Downloads\fragen_017601_20549696784_0230171752611_20190624155511_411027858 (4).pdf
2019-10-16 21:49 - 2019-10-16 21:49 - 000164021 _____ C:\Users\USER\Downloads\fragen_017601_20549696784_0230171777636_20190806160009_432945132 (1).pdf
2019-10-16 21:44 - 2019-10-16 21:44 - 000170986 _____ C:\Users\USER\Downloads\fragen_017001_20549696784_0230171818964_20190925192006_443569395.pdf
2019-10-16 21:38 - 2019-10-16 21:38 - 000167458 _____ C:\Users\USER\Downloads\fragen_017601_20549696784_0230171818220_20190924190437_443268193.pdf
2019-10-16 21:38 - 2019-10-16 21:38 - 000132407 _____ C:\Users\USER\Downloads\fragen_017603_20549696784_0230171825251_20191010145008_447033576.pdf
2019-10-16 20:34 - 2019-10-16 20:34 - 000068624 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (6).pdf
2019-10-16 20:33 - 2019-10-16 20:33 - 000068832 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (3).pdf
2019-10-16 20:33 - 2019-10-16 20:33 - 000068626 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (5).pdf
2019-10-16 20:33 - 2019-10-16 20:33 - 000068615 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (4).pdf
2019-10-16 20:31 - 2019-10-16 20:31 - 000068967 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (1).pdf
2019-10-16 20:31 - 2019-10-16 20:31 - 000068785 _____ C:\Users\USER\Downloads\detalle_casillas_declaraciones (2).pdf
2019-10-16 19:31 - 2019-10-16 19:31 - 000154620 _____ C:\Users\USER\Downloads\esqgen_20549696784_014253261200234_20191015161830_448122979.pdf
2019-10-16 18:24 - 2019-10-16 18:24 - 000000000 ___HD C:\OneDriveTemp
2019-10-16 18:21 - 2019-10-16 18:21 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-10-16 15:01 - 2019-10-16 18:26 - 000000000 ____D C:\Users\USER\AppData\Local\Dropbox
2019-10-16 14:59 - 2019-10-16 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-10-16 01:27 - 2019-10-16 01:27 - 000002709 _____ C:\Users\USER\Desktop\Instagram (1).lnk
2019-10-16 00:25 - 2019-10-16 00:25 - 000027268 _____ C:\Users\USER\Desktop\rep-malwarebytes.txt
2019-10-16 00:01 - 2019-10-16 00:01 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-16 00:01 - 2019-10-16 00:01 - 000000000 ____D C:\Users\USER\AppData\Local\mbam
2019-10-15 23:43 - 2019-10-15 23:43 - 000002484 _____ C:\Users\USER\Downloads\gen000158966643041633912800 (1).pdf
2019-10-15 23:42 - 2019-10-15 23:42 - 000002484 _____ C:\Users\USER\Downloads\gen000158966643041633912800.pdf
2019-10-15 22:52 - 2019-10-16 10:58 - 000000000 ____D C:\Users\USER\AppData\Roaming\ZHP
2019-10-15 22:52 - 2019-10-16 10:20 - 000000000 ____D C:\Users\USER\AppData\Local\ZHP
2019-10-15 22:52 - 2019-10-16 09:47 - 000000874 _____ C:\Users\USER\Desktop\ZHPCleaner.lnk
2019-10-15 19:40 - 2019-10-15 19:44 - 000000000 ____D C:\AdwCleaner
2019-10-15 19:39 - 2019-10-15 19:39 - 000003334 _____ C:\Users\USER\Documents\cc_20191015_193940.reg
2019-10-15 19:14 - 2019-10-15 19:15 - 003338624 _____ (Nicolas Coolman) C:\Users\USER\Desktop\ZHPCleaner.exe
2019-10-15 19:09 - 2019-10-15 19:17 - 007636680 _____ (Malwarebytes) C:\Users\USER\Desktop\adwcleaner_7.4.1.exe
2019-10-15 19:00 - 2019-10-15 19:15 - 066740512 _____ (Malwarebytes ) C:\Users\USER\Desktop\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12917.exe
2019-10-15 13:05 - 2019-10-15 13:05 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-10-15 13:05 - 2019-10-15 13:05 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-10-15 13:05 - 2019-10-15 13:05 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-10-15 13:05 - 2019-10-15 13:05 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-10-15 13:03 - 2019-10-15 13:03 - 000002762 _____ C:\Users\USER\Desktop\fixlist.txt
2019-10-15 12:58 - 2019-10-15 12:58 - 000000239 _____ C:\Users\USER\Desktop\DelFix.txt
2019-10-15 12:58 - 2019-10-15 12:58 - 000000239 _____ C:\DelFix.txt
2019-10-15 12:58 - 2019-10-15 12:58 - 000000000 ____D C:\WINDOWS\ERUNT
2019-10-15 12:56 - 2019-10-15 12:56 - 000797760 _____ C:\Users\USER\Desktop\delfix.exe
2019-10-15 12:53 - 2019-10-15 12:55 - 000061180 _____ C:\Users\USER\Desktop\Addition.txt
2019-10-15 12:50 - 2019-10-17 00:13 - 000037060 _____ C:\Users\USER\Desktop\FRST.txt
2019-10-15 12:49 - 2019-10-17 00:13 - 000000000 ____D C:\FRST
2019-10-15 10:31 - 2019-10-15 10:31 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-15 10:31 - 2019-10-15 10:31 - 000002334 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-15 00:09 - 2019-10-15 00:09 - 000202842 _____ C:\Users\USER\Documents\cc_20191015_000932.reg
2019-10-15 00:09 - 2019-10-15 00:09 - 000001730 _____ C:\Users\USER\Documents\cc_20191015_000957.reg
2019-10-15 00:04 - 2019-10-15 22:34 - 000000000 ____D C:\Program Files\CCleaner
2019-10-15 00:03 - 2019-10-15 00:04 - 025441808 _____ (Piriform Software Ltd) C:\Users\USER\Desktop\ccsetup562.exe
2019-10-14 20:43 - 2019-10-14 20:43 - 000056566 _____ C:\Users\USER\Downloads\fisca7254824733964241681.pdf
2019-10-14 11:05 - 2019-10-14 11:05 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-14 11:05 - 2019-10-14 11:05 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2019-10-14 10:34 - 2019-10-14 11:05 - 000000000 ____D C:\ProgramData\McAfee
2019-10-13 20:32 - 2019-10-13 20:32 - 000458883 _____ C:\Users\USER\Downloads\Dialnet-PequenosMamiferos-1167938.pdf
2019-10-13 14:39 - 2019-10-13 15:06 - 539864670 _____ C:\Users\USER\Downloads\wetransfer-28fc99.zip
2019-10-13 12:26 - 2019-10-13 12:26 - 000156184 _____ C:\Users\USER\Downloads\ridetrac_20549696784_0230241470560_20191011112546_447293102.pdf
2019-10-13 12:25 - 2019-10-13 12:25 - 000102898 _____ C:\Users\USER\Downloads\rcce_20549696784_0230078119194_20191010162333_447076474.pdf
2019-10-11 14:41 - 2019-10-11 14:42 - 001615948 _____ C:\Users\USER\Downloads\cotizacion.pdf
2019-10-11 10:48 - 2019-10-11 10:48 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca (2).xlsx
2019-10-11 10:46 - 2019-10-11 10:46 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca (1).xlsx
2019-10-10 09:04 - 2019-10-10 08:54 - 000741432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-10-09 23:23 - 2019-10-09 23:23 - 000325759 _____ C:\Users\USER\Downloads\Membrete_Modelo 2 (1).rar
2019-10-09 23:22 - 2019-10-09 23:22 - 000257979 _____ C:\Users\USER\Downloads\Modelo de membrete 3 (1).rar
2019-10-09 23:22 - 2019-10-09 23:22 - 000140260 _____ C:\Users\USER\Downloads\membrete Modelo 4.rar
2019-10-09 23:21 - 2019-10-09 23:21 - 000268601 _____ C:\Users\USER\Downloads\5-Modelo de membrete 5.rar
2019-10-09 23:20 - 2019-10-09 23:20 - 000140398 _____ C:\Users\USER\Downloads\membrete-x1 (2).rar
2019-10-09 23:19 - 2019-10-09 23:19 - 000257979 _____ C:\Users\USER\Downloads\Modelo de membrete 3.rar
2019-10-09 23:19 - 2019-10-09 23:19 - 000219307 _____ C:\Users\USER\Downloads\Membrete_Modelo 1.rar
2019-10-09 23:17 - 2019-10-09 23:17 - 000325759 _____ C:\Users\USER\Downloads\Membrete_Modelo 2.rar
2019-10-09 22:22 - 2019-10-15 23:52 - 000002598 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTaskCore
2019-10-09 22:22 - 2019-10-09 22:19 - 000002975 _____ C:\Users\Public\Desktop\Corel CAPTURE X8 (64-Bit).lnk
2019-10-09 22:22 - 2019-10-09 22:19 - 000002974 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X8 (64-Bit).lnk
2019-10-09 22:22 - 2019-10-09 22:19 - 000002942 _____ C:\Users\Public\Desktop\CorelDRAW X8 (64-Bit).lnk
2019-10-09 22:22 - 2019-10-09 22:19 - 000002420 _____ C:\Users\Public\Desktop\Corel CONNECT X8 (64-Bit).lnk
2019-10-09 22:22 - 2019-10-09 22:19 - 000002333 _____ C:\Users\Public\Desktop\Corel Font Manager X8 (64-Bit).lnk
2019-10-09 22:21 - 2019-10-09 22:21 - 000000000 ____D C:\Program Files\Common Files\Corel
2019-10-09 22:19 - 2019-10-09 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X8 (64-bit)
2019-10-09 21:47 - 2017-12-23 20:20 - 000000000 ____D C:\Users\USER\Desktop\CorelDRAWX8
2019-10-09 21:06 - 2019-10-09 21:46 - 2046110787 _____ C:\Users\USER\Downloads\CorelDRAWX8.rar
2019-10-09 12:33 - 2019-10-15 23:52 - 000003466 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2019-10-09 12:33 - 2019-10-15 23:52 - 000003242 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2019-10-09 10:16 - 2019-10-09 10:16 - 007411912 _____ (VS Revo Group ) C:\Users\USER\Downloads\revosetup (1).exe
2019-10-09 09:43 - 2019-10-09 09:44 - 1856966866 _____ C:\Users\USER\Downloads\CorelDRAW suit 2018 (1).rar
2019-10-08 20:36 - 2019-10-08 20:41 - 058299600 _____ (Microsoft Corporation) C:\Users\USER\Downloads\IE11-Windows6.1-x64-es-es.exe
2019-10-08 20:12 - 2019-10-02 06:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-08 20:12 - 2019-10-02 06:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-08 20:12 - 2019-10-02 05:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-08 20:12 - 2019-10-02 05:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-08 20:12 - 2019-10-02 03:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-08 20:12 - 2019-10-02 00:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-08 20:12 - 2019-10-02 00:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-08 20:12 - 2019-10-02 00:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-08 20:12 - 2019-10-02 00:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-08 20:12 - 2019-10-02 00:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-08 20:12 - 2019-10-01 23:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-08 20:12 - 2019-10-01 23:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-08 20:12 - 2019-10-01 23:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-08 20:12 - 2019-10-01 23:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-08 20:12 - 2019-10-01 23:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-08 20:12 - 2019-10-01 23:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-08 20:12 - 2019-10-01 23:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-08 20:12 - 2019-10-01 23:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-08 20:12 - 2019-10-01 23:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-08 20:12 - 2019-10-01 23:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-08 20:12 - 2019-10-01 23:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-08 20:12 - 2019-10-01 23:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-08 20:12 - 2019-10-01 23:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-08 20:12 - 2019-10-01 23:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-08 20:12 - 2019-10-01 23:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-08 20:12 - 2019-10-01 23:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

Sigue log. de FRST:

2019-10-08 20:12 - 2019-10-01 23:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-08 20:12 - 2019-10-01 23:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-08 20:12 - 2019-09-10 02:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-08 20:12 - 2019-09-10 02:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-08 20:11 - 2019-10-05 20:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-08 20:11 - 2019-10-05 20:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-08 20:11 - 2019-10-02 06:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-08 20:11 - 2019-10-02 06:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-08 20:11 - 2019-10-02 06:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-08 20:11 - 2019-10-02 06:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-08 20:11 - 2019-10-02 05:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-08 20:11 - 2019-10-02 05:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-08 20:11 - 2019-10-02 05:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-08 20:11 - 2019-10-02 05:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-08 20:11 - 2019-10-02 05:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-08 20:11 - 2019-10-02 05:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-08 20:11 - 2019-10-02 05:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-08 20:11 - 2019-10-02 05:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-08 20:11 - 2019-10-02 05:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-08 20:11 - 2019-10-02 05:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-08 20:11 - 2019-10-02 05:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-08 20:11 - 2019-10-02 05:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-08 20:11 - 2019-10-02 05:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-08 20:11 - 2019-10-02 05:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-08 20:11 - 2019-10-02 05:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-08 20:11 - 2019-10-02 05:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-08 20:11 - 2019-10-02 05:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-08 20:11 - 2019-10-02 05:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-08 20:11 - 2019-10-02 03:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-08 20:11 - 2019-10-02 03:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-08 20:11 - 2019-10-02 03:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-08 20:11 - 2019-10-02 03:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-08 20:11 - 2019-10-02 03:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-08 20:11 - 2019-10-02 03:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-08 20:11 - 2019-10-02 03:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-08 20:11 - 2019-10-02 03:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-08 20:11 - 2019-10-02 03:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-08 20:11 - 2019-10-02 00:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-08 20:11 - 2019-10-02 00:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-08 20:11 - 2019-10-02 00:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-08 20:11 - 2019-10-02 00:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-08 20:11 - 2019-10-02 00:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-08 20:11 - 2019-10-02 00:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-08 20:11 - 2019-10-02 00:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-08 20:11 - 2019-10-02 00:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-08 20:11 - 2019-10-02 00:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-08 20:11 - 2019-10-02 00:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-08 20:11 - 2019-10-02 00:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-08 20:11 - 2019-10-02 00:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-08 20:11 - 2019-10-02 00:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-08 20:11 - 2019-10-02 00:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-08 20:11 - 2019-10-02 00:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-08 20:11 - 2019-10-02 00:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-08 20:11 - 2019-10-02 00:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-08 20:11 - 2019-10-02 00:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-08 20:11 - 2019-10-02 00:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-08 20:11 - 2019-10-02 00:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-08 20:11 - 2019-10-02 00:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-08 20:11 - 2019-10-01 23:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-08 20:11 - 2019-10-01 23:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-08 20:11 - 2019-10-01 23:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-08 20:11 - 2019-10-01 23:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-08 20:11 - 2019-10-01 23:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-08 20:11 - 2019-10-01 23:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-08 20:11 - 2019-10-01 23:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-08 20:11 - 2019-10-01 23:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-08 20:11 - 2019-10-01 23:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-08 20:11 - 2019-10-01 23:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-08 20:11 - 2019-10-01 23:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-08 20:11 - 2019-10-01 23:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-08 20:11 - 2019-10-01 23:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-08 20:11 - 2019-10-01 23:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-08 20:11 - 2019-10-01 23:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-08 20:11 - 2019-10-01 23:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-08 20:11 - 2019-10-01 23:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-08 20:11 - 2019-10-01 23:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-08 20:11 - 2019-10-01 23:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-08 20:11 - 2019-10-01 23:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-08 20:11 - 2019-10-01 23:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-08 20:11 - 2019-10-01 23:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-08 20:11 - 2019-10-01 23:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-08 20:11 - 2019-10-01 23:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-08 20:11 - 2019-10-01 23:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-08 20:11 - 2019-10-01 23:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-08 20:11 - 2019-10-01 23:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-08 20:11 - 2019-10-01 23:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-08 20:11 - 2019-10-01 23:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-08 20:11 - 2019-10-01 23:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-08 20:11 - 2019-10-01 23:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-08 20:11 - 2019-10-01 23:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-08 20:11 - 2019-10-01 23:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-08 20:11 - 2019-10-01 23:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-08 20:11 - 2019-10-01 23:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-08 20:11 - 2019-10-01 23:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-08 20:11 - 2019-10-01 23:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-08 20:11 - 2019-10-01 23:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-08 20:11 - 2019-10-01 23:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-08 20:11 - 2019-10-01 23:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-08 20:11 - 2019-10-01 23:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-08 20:11 - 2019-10-01 23:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-08 20:11 - 2019-10-01 23:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-08 20:11 - 2019-10-01 23:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-08 20:11 - 2019-10-01 23:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-08 20:11 - 2019-10-01 23:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-08 20:11 - 2019-10-01 23:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 001110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-10-08 20:11 - 2019-10-01 23:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-08 20:11 - 2019-10-01 23:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-08 20:11 - 2019-10-01 23:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-08 20:11 - 2019-10-01 22:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-10-08 20:11 - 2019-09-19 02:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-10-08 20:11 - 2019-09-10 01:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-10-08 20:11 - 2019-09-09 20:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-08 20:11 - 2019-09-09 20:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-08 20:11 - 2019-08-13 09:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-08 18:10 - 2019-10-08 18:11 - 005701187 _____ C:\Users\USER\Downloads\re8366ingenieriaobrascivilesstatus3.zip
2019-10-08 17:48 - 2019-10-08 17:48 - 003211971 _____ C:\Users\USER\Downloads\V-101946-0525-0389_1_Status_2 (1).PDF
2019-10-08 17:12 - 2019-10-08 18:54 - 1856966866 _____ C:\Users\USER\Downloads\CorelDRAW suit 2018.rar
2019-10-08 15:57 - 2019-10-08 15:57 - 000211768 _____ C:\Users\USER\Downloads\COTIZACIÓN - Cajamarca.xlsx
2019-10-08 15:49 - 2019-10-02 08:26 - 000355720 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-10-08 15:45 - 2019-10-08 15:45 - 000000000 ____D C:\ProgramData\Dropbox
2019-10-08 12:05 - 2019-10-08 12:05 - 003211971 _____ C:\Users\USER\Downloads\V-101946-0525-0389_1_Status_2.PDF
2019-10-08 11:41 - 2019-10-08 11:41 - 000000080 ___SH C:\bootTel.dat
2019-10-07 23:30 - 2019-10-07 23:30 - 338701621 _____ C:\Users\USER\Downloads\CorelDraw Graphics Suite X3.rar
2019-10-07 23:03 - 2019-10-07 23:03 - 001144524 _____ C:\Users\USER\Downloads\CARTA 019-2019-GRA-CJR.pdf
2019-10-07 22:37 - 2019-10-07 22:37 - 000048263 _____ C:\Users\USER\Downloads\SELLO EDIFICAR-EDGAR FIRMA.pdf
2019-10-07 22:11 - 2019-10-07 22:11 - 000596657 _____ C:\Users\USER\Downloads\Brochure 2019.pdf
2019-10-07 19:04 - 2019-10-07 21:43 - 000016528 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2.xlsx
2019-10-07 18:31 - 2019-10-07 18:31 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION   TRASLOMA  N°0200  - CONSORCIO S.S. NOVA S (4).pdf
2019-10-07 18:31 - 2019-10-07 18:31 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2 (2).pdf
2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION   TRASLOMA  N°0200  - CONSORCIO S.S. NOVA S (3).pdf
2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION   TRASLOMA  N°0200  - CONSORCIO S.S. NOVA S (2).pdf
2019-10-07 18:07 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION   TRASLOMA  N°0200  - CONSORCIO S.S. NOVA S (1).pdf
2019-10-07 18:07 - 2019-10-07 18:07 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2 (1).pdf
2019-10-07 18:06 - 2019-10-07 18:07 - 000442500 _____ C:\Users\USER\Downloads\COTIZACION   TRASLOMA  N°0200  - CONSORCIO S.S. NOVA S.pdf
2019-10-06 22:15 - 2019-10-14 19:53 - 000000000 ____D C:\Users\USER\AppData\Local\Adobe
2019-10-06 22:15 - 2019-10-14 11:50 - 000000000 ____D C:\Users\USER\AppData\Roaming\Adobe
2019-10-06 22:15 - 2019-10-14 11:16 - 000000000 ____D C:\ProgramData\Adobe
2019-10-06 22:15 - 2019-10-06 22:15 - 000000040 ____H C:\C7165E494294
2019-10-06 22:15 - 2019-10-06 22:15 - 000000000 ____D C:\Users\USER\AppData\Local\NVIDIA
2019-10-06 22:13 - 2015-04-29 23:44 - 000000000 ____D C:\Users\USER\Desktop\Adobe photoshop cs6 DJ RICK
2019-10-06 21:57 - 2019-10-06 22:13 - 136745563 _____ C:\Users\USER\Downloads\Adobe photoshop cs6 DJ RICK.rar
2019-10-06 12:47 - 2019-10-06 14:16 - 745074508 _____ C:\Users\USER\Downloads\AdobePhotoshop2014-32bit-mul.zip
2019-10-06 12:26 - 2019-10-06 12:26 - 000455085 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR (2).pdf
2019-10-06 04:43 - 2019-10-06 04:45 - 042262776 _____ (SUPERAntiSpyware) C:\Users\USER\Downloads\SUPERAntiSpyware (4).exe
2019-10-05 22:45 - 2019-10-05 22:46 - 008162616 _____ (ESET spol. s r.o.) C:\Users\USER\Downloads\esetonlinescanner_esn (2).exe
2019-10-05 21:27 - 2019-10-16 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-05 21:27 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-10-05 21:27 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-10-05 21:22 - 2019-10-05 21:25 - 066458912 _____ (Malwarebytes ) C:\Users\USER\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12781 (1).exe
2019-10-05 21:18 - 2019-10-05 21:18 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\USER\Downloads\iExplore (6).exe
2019-10-05 21:10 - 2019-10-05 21:15 - 020889016 _____ (Piriform Software Ltd) C:\Users\USER\Downloads\ccsetup561 (1).exe
2019-10-05 21:08 - 2019-10-05 21:09 - 000841241 _____ C:\Users\USER\Downloads\rkill.zip
2019-10-05 20:48 - 2019-10-05 21:05 - 027231312 _____ (Malwarebytes ) C:\Users\USER\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12781.exe
2019-10-05 16:13 - 2019-10-05 16:13 - 000455946 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR.pdf
2019-10-05 16:13 - 2019-10-05 16:13 - 000455946 _____ C:\Users\USER\Downloads\COTIZACION-MAQUINARIA-HUAMBOS-CJR (1).pdf
2019-10-05 11:39 - 2019-10-05 11:39 - 000372568 _____ C:\Users\USER\Downloads\STRACON(sudafrica)-2.pdf
2019-10-04 17:33 - 2019-10-04 17:33 - 000018815 _____ C:\Users\USER\Downloads\fisca205529783133614487.pdf
2019-10-04 10:49 - 2019-09-13 06:04 - 001429816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-04 10:49 - 2019-09-13 06:03 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-04 10:49 - 2019-09-13 06:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-04 10:49 - 2019-09-13 06:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-04 10:49 - 2019-09-13 05:58 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-10-04 10:49 - 2019-09-13 05:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-04 10:49 - 2019-09-13 05:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-04 10:49 - 2019-09-13 05:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-04 10:49 - 2019-09-13 05:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-04 10:49 - 2019-09-13 05:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-04 10:49 - 2019-09-13 05:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-04 10:49 - 2019-09-13 05:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-04 10:49 - 2019-09-13 05:44 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-10-04 10:49 - 2019-09-13 05:42 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2019-10-04 10:49 - 2019-09-13 05:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-04 10:49 - 2019-09-13 05:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-04 10:49 - 2019-09-13 05:41 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2019-10-04 10:49 - 2019-09-13 05:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-04 10:49 - 2019-09-13 05:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-04 10:49 - 2019-09-13 05:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-04 10:49 - 2019-09-13 05:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-04 10:49 - 2019-09-13 05:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-04 10:49 - 2019-09-13 05:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-04 10:49 - 2019-09-13 05:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-04 10:49 - 2019-09-13 05:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-04 10:49 - 2019-09-13 05:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-04 10:49 - 2019-09-13 05:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-04 10:49 - 2019-09-13 04:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-04 10:49 - 2019-09-13 04:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-04 10:49 - 2019-09-13 04:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-04 10:49 - 2019-09-13 04:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-04 10:49 - 2019-09-13 04:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-04 10:49 - 2019-09-13 04:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-04 10:49 - 2019-09-13 04:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-04 10:49 - 2019-09-13 04:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-04 10:49 - 2019-09-13 04:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-04 10:49 - 2019-09-13 04:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-04 10:49 - 2019-09-13 03:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-04 10:49 - 2019-09-12 23:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-04 10:49 - 2019-09-12 23:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-04 10:49 - 2019-09-12 23:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-04 10:49 - 2019-09-12 23:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-04 10:49 - 2019-09-12 23:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-04 10:49 - 2019-09-12 23:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-04 10:49 - 2019-09-12 23:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-04 10:49 - 2019-09-12 23:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-04 10:49 - 2019-09-12 23:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-04 10:49 - 2019-09-12 23:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-04 10:49 - 2019-09-12 23:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-04 10:49 - 2019-09-12 23:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-04 10:49 - 2019-09-12 23:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-04 10:49 - 2019-09-12 23:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-04 10:49 - 2019-09-12 23:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-10-04 10:49 - 2019-09-12 23:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-04 10:49 - 2019-09-12 23:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-04 10:49 - 2019-09-12 23:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-04 10:49 - 2019-09-12 23:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-04 10:49 - 2019-09-12 23:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-04 10:49 - 2019-09-12 23:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-04 10:49 - 2019-09-12 23:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-04 10:49 - 2019-09-12 23:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-04 10:49 - 2019-09-12 23:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-04 10:49 - 2019-09-12 23:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-04 10:49 - 2019-09-12 23:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-04 10:49 - 2019-09-12 23:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-04 10:49 - 2019-09-12 23:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-04 10:49 - 2019-09-12 23:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-04 10:49 - 2019-09-12 23:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-04 10:49 - 2019-09-12 23:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-04 10:49 - 2019-09-12 23:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-04 10:49 - 2019-09-12 23:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-04 10:49 - 2019-09-12 23:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-04 10:49 - 2019-09-12 23:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-04 10:49 - 2019-09-12 23:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-04 10:49 - 2019-09-12 23:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-04 10:49 - 2019-09-12 23:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-04 10:49 - 2019-09-12 23:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-04 10:49 - 2019-09-12 23:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-04 10:49 - 2019-09-12 23:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-04 10:49 - 2019-09-12 23:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-04 10:49 - 2019-09-12 23:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-04 10:49 - 2019-09-12 23:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-04 10:49 - 2019-09-12 23:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-04 10:49 - 2019-09-12 23:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-04 10:49 - 2019-09-12 23:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-04 10:49 - 2019-09-12 23:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-04 10:49 - 2019-09-12 23:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-04 10:49 - 2019-09-12 23:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-04 10:49 - 2019-09-12 23:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-04 10:49 - 2019-09-12 23:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-04 10:49 - 2019-09-12 23:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-03 17:31 - 2019-10-03 17:31 - 000137054 _____ C:\Users\USER\Downloads\201811010012053001467120 (2).pdf
2019-10-03 17:30 - 2019-10-03 17:30 - 000130730 _____ C:\Users\USER\Downloads\201810010012053001467120 (2).pdf
2019-10-03 13:48 - 2019-10-03 13:48 - 000014455 _____ C:\Users\USER\Downloads\RELACION DE OBRAS A POSTULAR No 01-19.xlsx
2019-10-03 13:40 - 2019-10-03 13:40 - 000761473 _____ C:\Users\USER\Downloads\BROCHURE ROPRUCSA (1).pdf
2019-10-03 13:39 - 2019-10-03 20:09 - 000031680 _____ C:\Users\USER\Downloads\EXPERIENCIA DE OBRAS- ROPRUCSA (1).xlsx
2019-10-03 13:36 - 2019-10-03 13:36 - 002881062 _____ C:\Users\USER\Downloads\BROCHURE JGE INGENIERIA.pdf
2019-10-03 13:36 - 2019-10-03 13:36 - 000761473 _____ C:\Users\USER\Downloads\BROCHURE ROPRUCSA.pdf
2019-10-03 13:36 - 2019-10-03 13:36 - 000031377 _____ C:\Users\USER\Downloads\EXPERIENCIA DE OBRAS- ROPRUCSA.xlsx
2019-10-02 22:17 - 2019-10-02 22:17 - 000056551 _____ C:\Users\USER\Downloads\fisca4314646354544097484.pdf
2019-10-02 08:27 - 2019-10-02 08:26 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-10-02 08:27 - 2019-10-02 08:26 - 000171520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-09-30 20:54 - 2019-09-30 20:54 - 000634310 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0002_0 CERRADO.pdf
2019-09-30 09:08 - 2019-09-30 09:08 - 006510485 _____ C:\Users\USER\Downloads\JU-001-06-0525-4411-07-21-0001_0.dwg
2019-09-30 08:56 - 2019-09-30 08:56 - 011352081 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0001_0 (1).dwg
2019-09-29 09:06 - 2019-09-29 09:07 - 011352081 _____ C:\Users\USER\Downloads\JU-001-06-0525-4413-07-21-0001_0.dwg
2019-09-29 09:06 - 2019-09-29 09:06 - 001657817 _____ C:\Users\USER\Downloads\JU-001-06-0525-1412-07-21-0001_0.dwg
2019-09-29 09:01 - 2019-09-29 09:01 - 016034376 _____ C:\Users\USER\Downloads\rv04ultimosplanosobservados.zip
2019-09-29 09:01 - 2019-09-29 09:01 - 001876105 _____ C:\Users\USER\Downloads\V-101946-0525-0086_1_Status_3.PDF
2019-09-28 16:27 - 2019-09-28 16:27 - 003539941 _____ C:\Users\USER\Downloads\V-101946-0525-0455_1_Status_2.PDF
2019-09-28 16:27 - 2019-09-28 16:27 - 002102305 _____ C:\Users\USER\Downloads\V-101946-0525-0327_1_Status_2.PDF
2019-09-26 22:52 - 2019-09-26 22:52 - 000010845 _____ C:\Users\USER\Downloads\libro de ept flor de plastico.xlsx
2019-09-25 15:25 - 2019-09-25 15:25 - 000056540 _____ C:\Users\USER\Downloads\fisca2185803501925787816.pdf
2019-09-23 14:00 - 2019-09-23 14:01 - 018019768 _____ C:\Users\USER\Downloads\planosalevantarobservaciones (1).zip
2019-09-23 13:32 - 2019-09-23 13:32 - 000118387 _____ C:\Users\USER\Downloads\recgen_20549696784_0230065857561_20190917094611_441351154 (1).pdf
2019-09-23 11:21 - 2019-09-23 11:21 - 000017107 _____ C:\Users\USER\Downloads\OBRA.xlsx
2019-09-22 15:35 - 2019-09-22 15:35 - 000184680 _____ C:\Users\USER\Downloads\ridetrac_20549696784_0239501117969_20190920103415_442295267.pdf
2019-09-21 10:37 - 2019-09-21 10:37 - 000061065 _____ C:\Users\USER\Downloads\72751645129-1062093527-entrada.pdf
2019-09-20 13:54 - 2019-09-20 13:54 - 023413515 _____ C:\Users\USER\Downloads\JU-001-06-0525-0000-07-21-0003_C - Revisión AUS (2).pdf
2019-09-20 13:54 - 2019-09-20 13:54 - 023413515 _____ C:\Users\USER\Downloads\JU-001-06-0525-0000-07-21-0003_C - Revisión AUS (1).pdf
2019-09-18 22:58 - 2019-09-18 22:58 - 000002400 _____ C:\Users\USER\Downloads\gen0001587799983894845172329.pdf
2019-09-18 22:41 - 2019-09-18 22:41 - 000002501 _____ C:\Users\USER\Downloads\gen0001589200425648981619014.pdf
2019-09-18 00:21 - 2019-09-18 00:22 - 018019768 _____ C:\Users\USER\Downloads\planosalevantarobservaciones.zip
2019-09-18 00:18 - 2019-09-18 00:18 - 000118387 _____ C:\Users\USER\Downloads\recgen_20549696784_0230065857561_20190917094611_441351154.pdf
2019-09-18 00:18 - 2019-09-18 00:18 - 000056527 _____ C:\Users\USER\Downloads\fisca3076498111275573884.pdf
2019-09-18 00:18 - 2019-09-18 00:18 - 000056527 _____ C:\Users\USER\Downloads\fisca1427321311054298144.pdf
2019-09-18 00:17 - 2019-09-18 00:17 - 000056527 _____ C:\Users\USER\Downloads\fisca7580815422453889720.pdf

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-17 00:10 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-16 23:28 - 2016-07-05 23:04 - 000000000 ____D C:\SUNATPDT
2019-10-16 22:34 - 2016-12-12 09:31 - 000000000 ____D C:\Program Files (x86)\Corel
2019-10-16 20:23 - 2018-05-21 13:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-16 18:25 - 2018-03-25 18:49 - 000000000 ____D C:\Users\USER\AppData\Local\AVAST Software
2019-10-16 18:24 - 2016-07-25 13:14 - 000000000 ___RD C:\Users\USER\OneDrive
2019-10-16 18:23 - 2017-12-18 13:47 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-10-16 18:21 - 2017-06-27 17:39 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-16 18:21 - 2016-05-19 10:43 - 000000000 __SHD C:\Users\USER\IntelGraphicsProfiles
2019-10-16 18:20 - 2017-06-27 17:40 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-16 18:19 - 2018-05-21 13:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-16 18:19 - 2018-04-11 16:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-10-16 15:01 - 2018-09-04 17:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-10-16 13:50 - 2018-05-21 13:55 - 000005238 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for HP-USER HP
2019-10-16 01:27 - 2016-08-25 13:55 - 000000000 ____D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
2019-10-16 00:27 - 2018-12-18 18:02 - 000000925 _____ C:\WINDOWS\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}.job
2019-10-16 00:27 - 2018-07-04 13:11 - 000000925 _____ C:\WINDOWS\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}.job
2019-10-16 00:01 - 2016-12-16 16:55 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-15 23:52 - 2019-08-15 23:24 - 000002974 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2019-10-15 23:52 - 2019-08-15 23:24 - 000002594 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2019-10-15 23:52 - 2018-12-18 18:02 - 000003472 _____ C:\WINDOWS\system32\Tasks\EPSON L575 Series Update {7B7802FA-0585-4BF4-ADB4-821D2358EEF1}
2019-10-15 23:52 - 2018-09-06 18:42 - 000002520 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2019-10-15 23:52 - 2018-07-04 13:11 - 000003472 _____ C:\WINDOWS\system32\Tasks\EPSON L575 Series Update {627B8EAC-673B-4107-B81A-BC69FC328B48}
2019-10-15 23:52 - 2018-05-21 13:55 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-15 23:52 - 2018-05-21 13:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-15 23:52 - 2018-05-21 13:55 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-15 23:52 - 2018-05-21 13:55 - 000003112 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5D5696A8-321C-4B33-BF91-9F07D0EE34B3}
2019-10-15 23:52 - 2018-05-21 13:55 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1647861114-2623618104-3830117335-1001
2019-10-15 23:52 - 2018-05-21 13:55 - 000002598 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-HP-USER
2019-10-15 23:52 - 2018-05-21 13:55 - 000002264 _____ C:\WINDOWS\system32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC}
2019-10-15 23:52 - 2018-05-21 13:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-10-15 23:41 - 2017-01-13 18:18 - 000000000 ____D C:\PDTPLAME
2019-10-15 23:31 - 2016-05-19 11:13 - 000000000 ____D C:\Program Files\KMSpico
2019-10-15 22:25 - 2018-07-04 13:14 - 000000000 ____D C:\Program Files\EPSON
2019-10-15 19:45 - 2016-07-15 08:10 - 000000000 ____D C:\Users\USER\AppData\Local\Hewlett-Packard
2019-10-15 19:45 - 2016-07-15 01:39 - 000000000 ____D C:\Users\USER\AppData\Roaming\Hewlett-Packard
2019-10-15 19:45 - 2016-07-15 01:32 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-10-15 19:45 - 2016-07-15 01:12 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-10-15 13:10 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-15 12:43 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-10-15 10:31 - 2016-05-19 11:11 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-15 00:07 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF
2019-10-15 00:07 - 2017-02-20 11:31 - 000000000 ____D C:\Users\USER\AppData\Local\CrashDumps
2019-10-14 19:46 - 2018-05-21 13:55 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2019-10-14 11:04 - 2016-06-13 09:18 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-10-14 10:45 - 2016-05-19 11:14 - 000000000 ____D C:\ProgramData\Adobe-BackupByPhotoshopCS6Portable
2019-10-13 10:54 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-11 18:58 - 2018-08-16 00:57 - 000000000 ____D C:\Users\USER\Desktop\KMSpico Install
2019-10-11 10:48 - 2018-01-26 12:16 - 000000000 ____D C:\Users\USER\AppData\Local\Packages
2019-10-10 11:22 - 2018-05-21 13:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-10 11:22 - 2018-04-11 18:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-10-09 22:22 - 2016-05-19 11:38 - 000000000 ____D C:\Program Files\Corel
2019-10-09 22:21 - 2016-05-19 11:40 - 000000000 ____D C:\ProgramData\Corel
2019-10-09 22:19 - 2016-05-19 11:43 - 000000000 ____D C:\Users\USER\AppData\Roaming\Corel
2019-10-09 22:18 - 2016-05-19 10:54 - 000000000 ____D C:\ProgramData\Package Cache
2019-10-09 10:52 - 2018-05-21 13:45 - 001768608 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-09 10:52 - 2018-04-12 11:19 - 000787754 _____ C:\WINDOWS\system32\perfh00A.dat
2019-10-09 10:52 - 2018-04-12 11:19 - 000155350 _____ C:\WINDOWS\system32\perfc00A.dat
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-09 00:12 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-09 00:12 - 2018-04-11 16:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-08 20:18 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-08 17:01 - 2016-05-24 17:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-08 16:56 - 2016-05-24 17:57 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 15:52 - 2016-09-09 06:32 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2019-10-08 15:52 - 2016-05-19 22:11 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-10-08 15:49 - 2018-04-11 18:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 15:44 - 2019-08-12 10:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-08 15:39 - 2018-04-11 16:04 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2019-10-08 15:39 - 2016-10-01 09:06 - 000000000 ____D C:\Users\USER\AppData\Local\ConnectedDevicesPlatform
2019-10-08 15:08 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-10-08 14:58 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\registration
2019-10-08 13:38 - 2018-06-12 22:19 - 000000000 ____D C:\Users\USER\AppData\Local\D3DSCache
2019-10-08 13:24 - 2018-07-02 12:43 - 000000000 ____D C:\ProgramData\Packages
2019-10-08 10:22 - 2018-05-21 16:59 - 000082258 ____H C:\Users\USER\AppData\Local\IconCache.db.backup
2019-10-08 10:22 - 2016-05-31 22:29 - 000000000 ____D C:\Users\USER\AppData\Local\ElevatedDiagnostics
2019-10-06 08:28 - 2019-08-15 20:05 - 000000689 _____ C:\Users\USER\Desktop\ESET Online Scanner.lnk
2019-10-05 11:45 - 2018-05-21 13:32 - 000002398 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-04 20:27 - 2018-01-26 12:43 - 000000000 ___RD C:\Users\USER\3D Objects
2019-10-04 20:27 - 2016-04-27 01:17 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-04 20:26 - 2018-05-21 13:26 - 000592816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 17:38 - 2018-04-12 11:24 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-10-04 17:38 - 2018-04-11 18:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-02 08:28 - 2018-05-21 12:51 - 000848432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-10-02 08:28 - 2018-05-21 12:51 - 000460448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-10-02 08:26 - 2019-02-15 09:57 - 000276952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-10-02 08:26 - 2019-01-14 08:49 - 000274456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-10-02 08:26 - 2019-01-04 21:32 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-10-02 08:26 - 2019-01-04 21:32 - 000065120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-10-02 08:26 - 2019-01-04 21:32 - 000037616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-10-02 08:26 - 2018-11-04 07:25 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-10-02 08:26 - 2018-07-25 09:53 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-10-02 08:26 - 2018-05-21 12:51 - 000316528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-10-02 08:26 - 2018-05-21 12:51 - 000204824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-10-02 08:26 - 2018-05-21 12:51 - 000110320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-10-02 08:26 - 2018-05-21 12:51 - 000083792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-09-27 09:21 - 2018-08-02 16:28 - 000000431 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics

==================== Files in the root of some directories ================

2016-07-18 21:08 - 2016-07-18 21:08 - 000007596 _____ () C:\Users\USER\AppData\Local\Resmon.ResmonCfg
2016-08-22 23:45 - 2016-08-22 23:45 - 000000000 _____ () C:\Users\USER\AppData\Local\{A1091682-A19C-4D28-90BB-9400AFA686E5}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Este es el Log. ADDITION:

Ran by USER (17-10-2019 00:15:28)
Running from C:\Users\USER\Desktop
Windows 10 Pro Version 1803 17134.1069 (X64) (2018-05-21 18:56:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1647861114-2623618104-3830117335-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1647861114-2623618104-3830117335-503 - Limited - Disabled)
Invitado (S-1-5-21-1647861114-2623618104-3830117335-501 - Limited - Disabled)
USER (S-1-5-21-1647861114-2623618104-3830117335-1001 - Administrator - Enabled) => C:\Users\USER
WDAGUtilityAccount (S-1-5-21-1647861114-2623618104-3830117335-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)
ACA & MEP 2018 Object Enabler (HKLM\...\{28B89EEF-1004-0000-5102-CF3F3A09B77D}) (Version: 8.0.40.0 - Autodesk) Hidden
ACAD Private (HKLM\...\{28B89EEF-1001-0000-3102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
Actualización de NVIDIA 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.4.1.21 - NVIDIA Corporation)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20036 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
Aplicación de escritorio de Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.7.230 - Autodesk)
Aplicaciones destacadas de Autodesk (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Aplicaciones destacadas de Autodesk 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk)
App Manager de Autodesk (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
AutoCAD 2018 - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD 2018  Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-1102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD 2018 (HKLM\...\{28B89EEF-1001-0000-0102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)
Autodesk AutoCAD 2018 - Español (Spanish) (HKLM\...\AutoCAD 2018 - Español (Spanish)) (Version: 22.0.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk Content Service (HKLM-x32\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service Language Pack (HKLM-x32\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Corel Compatibility Pack (HKLM-x32\...\{77ECF7E9-5758-4965-803D-77AABC474747}) (Version: 12.4518.1018 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\_{3CAAE169-6001-48ED-B2C6-5B6F511552FD}) (Version: 18.0.0.448 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{3CAAE169-6001-48ED-B2C6-5B6F511552FD}) (Version: 18.0.448 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (HKLM\...\{C8730B1A-133D-4546-8E21-9EC186341F20}) (Version: 18.0.448 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - BR (x64) (HKLM\...\{67D57366-EFCC-46DA-BB1F-BBE89B377177}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Capture (x64) (HKLM\...\{1253ED86-69FD-4A7B-BDF2-96A522583A88}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Common (x64) (HKLM\...\{72922AB6-F920-4C98-985D-EC90CE0918D4}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Connect (x64) (HKLM\...\{9782A612-03A7-488F-A598-33558163D8F8}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - CS (x64) (HKLM\...\{300DB480-7301-436A-A312-B695B2BC6D71}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - CT (x64) (HKLM\...\{43C4A17D-93D9-41C6-8ACA-370EA390ED2A}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Custom Data (x64) (HKLM\...\{02C85FBD-87D3-4352-BF2E-AFE897CD5559}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - CZ (x64) (HKLM\...\{A67AEE14-0435-4B8C-A367-F5EDE6CAF9F6}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - DE (x64) (HKLM\...\{4AA43BE3-D21B-44D7-B9CD-86692DEF3706}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Draw (x64) (HKLM\...\{A66E09BB-9892-421D-9EB9-311D12AA5244}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - EN (x64) (HKLM\...\{A0845CAD-ED13-46A4-A050-5ACE4631FDEC}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - ES (x64) (HKLM\...\{B1452C41-DC90-4B58-8320-ABB515E87FFB}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Filters (x64) (HKLM\...\{6E6D1438-33CC-413B-BC96-3497B1271CDD}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Font Manager (x64) (HKLM\...\{5FB5FF89-0938-49D9-850B-53B78B84A7E4}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - FR (x64) (HKLM\...\{0A182180-3BAF-4B94-BFD0-CF082CC5FF0D}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - IPM (x64) (HKLM\...\{A040C72A-0ADC-4FB9-9DB4-19B18F6053F1}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - IPM Content (x64) (HKLM\...\{FB081BA0-08D2-4C8C-9E55-788A90430BE3}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - IT (x64) (HKLM\...\{8285FEBA-D373-493F-BC78-934F84A0A298}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - JP (x64) (HKLM\...\{F5A1D3E4-416E-4723-AD35-86A372B99174}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - NL (x64) (HKLM\...\{A7922CC8-0EBD-497B-B381-5B3992905327}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - PHOTO-PAINT (x64) (HKLM\...\{04D8C47E-C0FE-4CA5-8878-91ECD9552109}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - PL (x64) (HKLM\...\{6F03D92C-48DB-4182-8A51-BEF8FE64B72C}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Redist (x64) (HKLM\...\{50D1BD2D-6D8C-45A8-9DB5-CDAB7227DB36}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - RU (x64) (HKLM\...\{B83D220A-33AB-4AF5-963A-887BD971270E}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Setup Files (x64) (HKLM\...\{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - VBA (x64) (HKLM\...\{48DD8181-A983-447B-9660-A55A935CA751}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - VideoBrowser (x64) (HKLM\...\{81EBD8D4-9142-4D33-BF34-D99EFC1180F5}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Workspaces (x64) (HKLM\...\{1D4B870D-A5A8-4B88-9520-ED8EFD545AA1}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 - Writing Tools (x64) (HKLM\...\{23A2ABD8-8231-48AD-AD71-FF0566A7DD8F}) (Version: 18.0 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 (64-Bit) (HKLM\...\_{4B3FC55D-E999-4BEC-AF29-1091E574961F}) (Version: 18.0.0.448 - Corel Corporation)
CorelDRAW Graphics Suite X8 (HKLM\...\{ECFAF1D6-342D-4AE2-B6BF-82B22F9FE8DE}) (Version: 18.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X8 -TR (x64) (HKLM\...\{ACC8C1B0-E560-4B42-AA52-9CAD14883B29}) (Version: 18.0 - Corel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 83.4.152 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Epson Easy Photo Print 2 (HKLM-x32\...\{922E2D91-9314-45AA-9AEF-E585F93B59A9}) (Version: 2.6.1.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.53.00 - SEIKO EPSON CORPORATION)
EPSON L575 Series Printer Uninstall (HKLM\...\EPSON L575 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{15A0F113-BF2C-4C12-8AA8-42AE0D9AE1C9}) (Version: 3.1.2.0 - SEIKO EPSON Corporation)
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
HP Control Zone (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Importación de SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Inkscape 0.48.2 (HKLM-x32\...\Inkscape) (Version: 0.48.2 - )
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
IPM_Common_x64 (HKLM\...\{B8C05FFE-C36F-4F17-AD20-739E4BC65AC9}) (Version: 2.11.552 - Your Company Name) Hidden
KMSpico (HKLM-x32\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Manual Epson L575 versión 1.0 (HKLM-x32\...\UsersGuideManual Epson L575_is1) (Version: 1.0 - )
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Project Professional 2013 (HKLM\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - ESN (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - ESN (HKLM-x32\...\{4A28444E-0532-3264-B07D-5AFE590E30BE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
My Lockbox 3.8.1 (HKLM\...\My Lockbox_is1) (Version: 3.8.1 - )
NVIDIA Controlador de gráficos 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Panel de control de NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden
PDT Planilla Electronica - PLAME (HKLM-x32\...\{9E772C31-FA5E-9C78-30F7-DE1A693254BC}) (Version: 3.6.3 - SUPERINTENDENCIA NAC DE ADUANAS Y DE ADMINISTRACION TRIBUTARIA) Hidden
PDT Planilla Electronica - PLAME (HKLM-x32\...\PDTPLAME) (Version: 3.6.3 - SUPERINTENDENCIA NAC DE ADUANAS Y DE ADMINISTRACION TRIBUTARIA)
Programa de Declaración Telemática (HKLM-x32\...\{A6E23415-7BA4-4CA3-99DA-B7F9D33E1F5B}) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Revisión para Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}.KB947789) (Version: 1 - Microsoft Corporation)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Silabas 3.0 (HKLM-x32\...\Silabas_is1) (Version:  - Cuenta Métrica)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Type3351 TWAIN Driver Ver.4 (HKLM-x32\...\{99C7F873-FAE4-41F2-B769-5DB77ED64533}) (Version: 4.28.07 - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
WAsP 11 (HKLM-x32\...\{79D6DC41-B304-4CB7-B53B-36C79E9A8366}) (Version: 11.4.0.26 - DTU Wind Energy, Denmark)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wondershare Video Editor(Build 5.0.1) (HKLM-x32\...\Wondershare Video Editor_is1) (Version:  - Wondershare Software)
XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)
Yodot PPT Repair (HKLM-x32\...\{50B30042-0A14-4661-80E3-DE448A0BD936}_is1) (Version: 1.0.0.14 - Yodot Software)
Your Application Name (HKLM-x32\...\{AA6EB693-FE08-4515-A991-C74F53AD7D7A}) (Version:  - )

Packages:
=========
Complemento de teléfono de Microsoft -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
Microsoft Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
MSN Recetas -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
MSN Salud -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation) [MS Ad]
RICOH Class Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHClassDriverUtility_1.4.0.0_neutral__fxme7667cy4q4 [2019-10-08] (Ricoh Company, Ltd.)
RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.4.0.5_x86__fxme7667cy4q4 [2019-10-08] (Ricoh Company, Ltd.)
Teléfono Microsoft -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Corporation)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-10-08] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1647861114-2623618104-3830117335-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\USER\Dropbox0
ShellIconOverlayIdentifiers: [  MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers: [  MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers: [  MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-02] (Autodesk, Inc -> Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [  MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers-x32: [  MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers-x32: [  MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-02] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] () [File not signed]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-10-15] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\USER\Desktop\Instagram (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm
ShortcutWithArgument: C:\Users\USER\Desktop\Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Instagram (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm
ShortcutWithArgument: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm

==================== Loaded Modules (Whitelisted) ==============

2017-05-15 00:45 - 2014-05-19 17:19 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2017-05-15 00:45 - 2014-09-11 18:09 - 001498112 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2016-06-30 03:23 - 2016-06-30 03:23 - 000592384 _____ () [File not signed] C:\Users\USER\AppData\Local\MEGAsync\ShellExtX64.dll
2019-07-31 16:42 - 2019-07-31 16:42 - 000135779 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins\IA32.api
2019-07-31 16:42 - 2019-07-31 16:42 - 000495715 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins\SaveAsRTF.api
2019-07-31 16:42 - 2019-07-31 16:42 - 000168547 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins\Updater.api
2013-08-01 16:05 - 2013-08-01 16:05 - 000112128 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2015-01-29 10:04 - 2015-01-29 10:04 - 000004096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000095744 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\EbpD4Fax.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000212992 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUADRFIL.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000282624 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCFG.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000438272 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCSR.DLL
2018-07-04 13:13 - 2015-01-20 01:00 - 000385024 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXLDB.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000536576 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXTIF.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000421888 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUIMGCDC.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000274432 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FULEPP.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000077824 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSTMMSG.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000327680 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSVCCLT.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000065536 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUUSBHLP.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000253952 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\FUVERDLG.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000069632 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDEVCOM.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000135168 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDRVUTL.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000339968 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRBDEV.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000286720 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUSNMPUT.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000081920 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000090112 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000245760 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXRCV.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000110592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000022016 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FULEPPRes.dll
2018-07-04 13:13 - 2015-01-19 11:00 - 000077824 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll
2015-06-17 16:44 - 2015-06-17 16:44 - 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000786432 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENCM.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000278528 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENNW.dll
2018-07-04 13:13 - 2015-01-20 01:00 - 000299008 _____ (SEIKO EPSON) [File not signed] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENUTIL.dll
2017-05-15 00:45 - 2014-09-11 18:10 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:95913E45 [127]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Classes\.scr: AutoCADScriptFile => 

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:25 - 2019-10-15 22:34 - 000000860 _____ C:\WINDOWS\system32\drivers\etc\hosts


2018-08-02 16:28 - 2019-09-27 09:21 - 000000431 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

92.168.1.11 HP.mshome.net # 2023 12 6 9 19 51 48 505

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %C_EM64T_REDIST11%bin\Intel64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\USER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{38F0C528-9FD6-40D9-9A20-5B16132B2835}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F3239D5-086C-4E60-8113-7FA34DE96EDD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F4DB506D-10FD-43D4-ACEA-C6E5128FD688}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{125732FF-CE4C-43CD-846F-E77C20E3BFC5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{46298892-30CF-4976-BA69-98C4ADF41AC9}C:\program files (x86)\xnview\xnview.exe] => (Allow) C:\program files (x86)\xnview\xnview.exe (Pierre GOUGELET -> XnView, hxxp://www.xnview.com) [File not signed]
FirewallRules: [TCP Query User{EB8B8ED2-19B5-4241-A2CD-2426AA4BE047}C:\program files (x86)\xnview\xnview.exe] => (Allow) C:\program files (x86)\xnview\xnview.exe (Pierre GOUGELET -> XnView, hxxp://www.xnview.com) [File not signed]
FirewallRules: [{8CEE859E-6ED0-4F00-A4F8-352DC95C688B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{673BEB21-8462-43F4-8E84-203BF9FBF6C1}] => (Allow) LPort=50248
FirewallRules: [{4ECB81FD-F4CD-4762-98D4-1379AC7A0453}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{268F6118-1282-4DEB-92E5-71858A7F33A5}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00CF9154-09FE-4365-9586-D4F5FEBF7E79}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B77A789B-3C62-4764-AF59-E07EBC19FC17}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9BA43833-4B22-4E06-89D6-E67D73FB7734}] => (Allow) LPort=52664
FirewallRules: [{8C9016B4-D6A3-4B48-89FC-325E2B5A2809}] => (Allow) LPort=5000
FirewallRules: [{8AFDA6C5-B619-4C16-8027-18B596889632}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{B231DDA3-2AB7-421E-9EC9-885E19DFF824}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{562FE0DD-FE09-48BF-9038-B71F834206EF}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [{F5A5F3F5-7DBF-40CB-B590-017DA1E464A9}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [TCP Query User{DC938F21-FC1C-4049-9C97-C72D25A3CB14}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{3851B6C5-5EB5-4E9B-A225-5F68F120C0BC}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{588E6323-3809-446B-A752-9EB656B12C3A}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{0E458DBB-B95F-4CFE-A9EC-E515A4243D65}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelDrw.exe (Corel Corporation -> Corel Corporation)
FirewallRules: [{644D1D7F-029F-4874-8C9B-90F942B181BB}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X8\Programs64\CorelPP.exe (Corel Corporation -> Corel Corporation)
FirewallRules: [{FEF30E23-068E-4F6F-8E3C-AB4BBE0DB906}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1842C464-71C5-4684-8B84-EDF7C0C08659}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

09-10-2019 11:01:55 Removed Skype™ 7.40
09-10-2019 22:09:28 Removed Corel Graphics - Windows Shell Extension.
09-10-2019 22:11:02 Removed Corel Graphics - Windows Shell Extension 32 Bit Keys.
16-10-2019 10:45:54 ZHPcleaner

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/16/2019 11:38:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 10:13:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 10:13:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 10:12:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 08:37:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 08:37:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 08:36:49 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.

Error: (10/16/2019 08:35:05 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_d401a3eb7c8ebdea.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.1067_none_1baedac2910ae6f0.manifest.


System errors:
=============
Error: (10/16/2019 11:48:59 PM) (Source: DCOM) (EventID: 10016) (User: HP)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 11:39:37 PM) (Source: DCOM) (EventID: 10016) (User: HP)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 09:40:58 PM) (Source: DCOM) (EventID: 10016) (User: HP)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 08:39:21 PM) (Source: DCOM) (EventID: 10016) (User: HP)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 08:39:20 PM) (Source: DCOM) (EventID: 10016) (User: HP)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario HP\USER con SID (S-1-5-21-1647861114-2623618104-3830117335-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 06:27:14 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Administrador de mapas descargados no respondió después de iniciar.

Error: (10/16/2019 06:25:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (10/16/2019 06:25:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio HP Support Solutions Framework Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.


Windows Defender:
===================================
Date: 2019-10-11 18:57:59.039
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Users\USER\Desktop\KMSpico Install\UnInstall_Service.cmd
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: HP\USER
Nombre de proceso: C:\Windows\explorer.exe
Versión de firma: AV: 1.303.1459.0, AS: 1.303.1459.0, NIS: 1.303.1459.0
Versión de motor: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-06-04 18:01:05.379
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS&threatid=2147711767&enterprise=0
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe;process:_pid:3276,ProcessStart:132041624672233888
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\KMSpico\Service_KMS.exe
Versión de firma: AV: 1.263.48.0, AS: 1.263.48.0, NIS: 1.263.48.0
Versión de motor: AM: 1.1.14600.4, NIS: 1.1.14600.4

Date: 2019-06-04 17:59:48.801
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS&threatid=2147711767&enterprise=0
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Media
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
Versión de firma: AV: 1.263.48.0, AS: 1.263.48.0, NIS: 1.263.48.0
Versión de motor: AM: 1.1.14600.4, NIS: 1.1.14600.4

Date: 2019-10-11 21:16:15.301
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.303.1459.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16400.2
Código de error: 0x8024001e
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2019-10-10 08:44:50.023
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.263.48.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.14600.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-10 08:44:50.023
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.263.48.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.14600.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-10 08:44:50.022
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.263.48.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.14600.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-10 08:44:49.516
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.263.48.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.14600.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-10-16 00:17:58.256
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-16 00:17:58.171
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-16 00:17:58.028
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-16 00:17:57.906
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-16 00:08:15.419
Description: 
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-10-16 00:08:15.377
Description: 
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-10-16 00:08:15.269
Description: 
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-10-16 00:08:15.216
Description: 
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

==================== Memory info =========================== 

BIOS: Insyde F.22 11/25/2014
Motherboard: Hewlett-Packard 22A0
Processor: Intel(R) Core(TM) i7-4712HQ CPU @ 2.30GHz
Percentage of memory in use: 34%
Total physical RAM: 12219.11 MB
Available physical RAM: 8061.25 MB
Total Virtual: 12219.11 MB
Available Virtual: 7937.65 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:194.01 GB) (Free:56.97 GB) NTFS
Drive d: () (Fixed) (Total:736.2 GB) (Free:533.5 GB) NTFS

\\?\Volume{3e3a27b5-1dd6-11e6-824f-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.34 GB) (Free:0.06 GB) NTFS
\\?\Volume{924b9ace-0000-0000-0000-609630000000}\ () (Fixed) (Total:0.96 GB) (Free:0.43 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 924B9ACE)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=987 MB) - (Type=27)
Partition 4: (Not Active) - (Size=736.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Hola @GOFEC

Realiza lo siguiente:

Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Policies\Explorer: [] 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0660A08D-B3DD-4139-A00C-4013718E87F3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {140D89C4-05E1-4EDE-B973-D44AA0EB34B9} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2092D6E8-CCF4-4CF5-AE46-06F5B398CB26} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {30E56A0C-6D90-47B5-B991-A2F1B223C078} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {39F344B9-647F-4B82-8E4A-7464D2CF1CC2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3ACCD476-FBFC-4A01-9076-70165E0AFB6B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {3B1ADEEE-7D5F-4376-AE69-754542E2A4AF} - System32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404
Task: {6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {68AFFA8E-9430-4095-A50B-5B94A16D0084} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
Task: {6E35227E-2C5C-4316-B8EC-9970728A53E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {79AB15A1-77B5-4F8B-9D02-8C7A28C9381E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9DF6B5E0-9774-4D8E-9693-3EF106B51499} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B85799CA-6F41-485B-B610-4B25842630AF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BE4E11A4-212D-43BD-B529-45810AF9E39C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D1FE1173-D107-488C-924C-C740815C88CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E13A5EDC-A976-4B80-91B2-E26485A88E4E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F3757602-C8F9-49A6-A2FF-E30B7924F731} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F9D7EAAD-14AF-41AD-AE0E-10E8358DF914} - \WPD\SqmUpload_S-1-5-21-1647861114-2623618104-3830117335-1001 -> No File <==== ATTENTION
Task: {FE2A77F2-04C0-4765-BE49-14A8612B062D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-pe/?ocid=iehp
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File]
CHR HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] -
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
S2 EpsonCustomerResearchParticipation; "C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe" [X]
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
2019-10-14 10:34 - 2019-10-14 11:05 - 000000000 ____D C:\ProgramData\McAfee
2019-10-05 22:45 - 2019-10-05 22:46 - 008162616 _____ (ESET spol. s r.o.) C:\Users\USER\Downloads\esetonlinescanner_esn (2).exe
2019-10-05 21:18 - 2019-10-05 21:18 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\USER\Downloads\iExplore (6).exe
2019-10-05 21:10 - 2019-10-05 21:15 - 020889016 _____ (Piriform Software Ltd) C:\Users\USER\Downloads\ccsetup561 (1).exe
2019-10-05 21:08 - 2019-10-05 21:09 - 000841241 _____ C:\Users\USER\Downloads\rkill.zip
2019-10-16 18:21 - 2017-06-27 17:39 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-22 23:45 - 2016-08-22 23:45 - 000000000 _____ () C:\Users\USER\AppData\Local\{A1091682-A19C-4D28-90BB-9400AFA686E5}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
AlternateDataStreams: C:\ProgramData\Temp:95913E45 [127]
FirewallRules: [{562FE0DD-FE09-48BF-9038-B71F834206EF}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [{F5A5F3F5-7DBF-40CB-B590-017DA1E464A9}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [{588E6323-3809-446B-A752-9EB656B12C3A}] => (Allow) %systemroot%\system32\alg.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas como sigue el problema.

Salu2.

Hola SanMar, Gracias por tu ayuda, te adjunto erl Log. de FRST:

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02
Ran by USER (17-10-2019 23:18:41) Run:1
Running from C:\Users\USER\Desktop
Loaded Profiles: USER (Available Profiles: USER)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\...\Policies\Explorer: [] 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0660A08D-B3DD-4139-A00C-4013718E87F3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {140D89C4-05E1-4EDE-B973-D44AA0EB34B9} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {2092D6E8-CCF4-4CF5-AE46-06F5B398CB26} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {30E56A0C-6D90-47B5-B991-A2F1B223C078} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {39F344B9-647F-4B82-8E4A-7464D2CF1CC2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3ACCD476-FBFC-4A01-9076-70165E0AFB6B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {3B1ADEEE-7D5F-4376-AE69-754542E2A4AF} - System32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC} => "c:\windows\system32\launchwinapp.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404
Task: {6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {68AFFA8E-9430-4095-A50B-5B94A16D0084} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
Task: {6E35227E-2C5C-4316-B8EC-9970728A53E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {79AB15A1-77B5-4F8B-9D02-8C7A28C9381E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9DF6B5E0-9774-4D8E-9693-3EF106B51499} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B85799CA-6F41-485B-B610-4B25842630AF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BE4E11A4-212D-43BD-B529-45810AF9E39C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D1FE1173-D107-488C-924C-C740815C88CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E13A5EDC-A976-4B80-91B2-E26485A88E4E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F3757602-C8F9-49A6-A2FF-E30B7924F731} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\USER\Downloads\esetonlinescanner_esn.exe [7982616 2019-08-15] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F9D7EAAD-14AF-41AD-AE0E-10E8358DF914} - \WPD\SqmUpload_S-1-5-21-1647861114-2623618104-3830117335-1001 -> No File <==== ATTENTION
Task: {FE2A77F2-04C0-4765-BE49-14A8612B062D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-pe/?ocid=iehp
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [No File]
CHR HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] -
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
S2 EpsonCustomerResearchParticipation; "C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe" [X]
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
2019-10-14 10:34 - 2019-10-14 11:05 - 000000000 ____D C:\ProgramData\McAfee
2019-10-05 22:45 - 2019-10-05 22:46 - 008162616 _____ (ESET spol. s r.o.) C:\Users\USER\Downloads\esetonlinescanner_esn (2).exe
2019-10-05 21:18 - 2019-10-05 21:18 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\USER\Downloads\iExplore (6).exe
2019-10-05 21:10 - 2019-10-05 21:15 - 020889016 _____ (Piriform Software Ltd) C:\Users\USER\Downloads\ccsetup561 (1).exe
2019-10-05 21:08 - 2019-10-05 21:09 - 000841241 _____ C:\Users\USER\Downloads\rkill.zip
2019-10-16 18:21 - 2017-06-27 17:39 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-22 23:45 - 2016-08-22 23:45 - 000000000 _____ () C:\Users\USER\AppData\Local\{A1091682-A19C-4D28-90BB-9400AFA686E5}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
AlternateDataStreams: C:\ProgramData\Temp:95913E45 [127]
FirewallRules: [{562FE0DD-FE09-48BF-9038-B71F834206EF}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [{F5A5F3F5-7DBF-40CB-B590-017DA1E464A9}] => (Allow) F:\CD\Network\EpsonNetSetup\ENEasyApp.exe No File
FirewallRules: [{588E6323-3809-446B-A752-9EB656B12C3A}] => (Allow) %systemroot%\system32\alg.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END

*****************

Processes closed successfully.
Restore point was successfully created.
"HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0660A08D-B3DD-4139-A00C-4013718E87F3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0660A08D-B3DD-4139-A00C-4013718E87F3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{140D89C4-05E1-4EDE-B973-D44AA0EB34B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{140D89C4-05E1-4EDE-B973-D44AA0EB34B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2092D6E8-CCF4-4CF5-AE46-06F5B398CB26}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2092D6E8-CCF4-4CF5-AE46-06F5B398CB26}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30E56A0C-6D90-47B5-B991-A2F1B223C078}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30E56A0C-6D90-47B5-B991-A2F1B223C078}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{39F344B9-647F-4B82-8E4A-7464D2CF1CC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39F344B9-647F-4B82-8E4A-7464D2CF1CC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3ACCD476-FBFC-4A01-9076-70165E0AFB6B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3ACCD476-FBFC-4A01-9076-70165E0AFB6B}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onLogOn" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B1ADEEE-7D5F-4376-AE69-754542E2A4AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B1ADEEE-7D5F-4376-AE69-754542E2A4AF}" => removed successfully
C:\WINDOWS\System32\Tasks\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{00FD0FD6-C7CF-41CF-84C7-BDD1D71450EC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6481A30A-3C1F-4210-A1E0-F43DBFBAC3B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65E1BDC9-B46D-46D9-AEDF-584EB27BCC2E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{68AFFA8E-9430-4095-A50B-5B94A16D0084}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68AFFA8E-9430-4095-A50B-5B94A16D0084}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOONotify" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6E35227E-2C5C-4316-B8EC-9970728A53E0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E35227E-2C5C-4316-B8EC-9970728A53E0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79AB15A1-77B5-4F8B-9D02-8C7A28C9381E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79AB15A1-77B5-4F8B-9D02-8C7A28C9381E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9AAC4FD5-2FD8-4ACE-A840-EBF3B1EFAD1E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9DF6B5E0-9774-4D8E-9693-3EF106B51499}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DF6B5E0-9774-4D8E-9693-3EF106B51499}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B85799CA-6F41-485B-B610-4B25842630AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B85799CA-6F41-485B-B610-4B25842630AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE4E11A4-212D-43BD-B529-45810AF9E39C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE4E11A4-212D-43BD-B529-45810AF9E39C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1FE1173-D107-488C-924C-C740815C88CE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1FE1173-D107-488C-924C-C740815C88CE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E13A5EDC-A976-4B80-91B2-E26485A88E4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E13A5EDC-A976-4B80-91B2-E26485A88E4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3757602-C8F9-49A6-A2FF-E30B7924F731}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3757602-C8F9-49A6-A2FF-E30B7924F731}" => removed successfully
C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EOSv3 Scheduler onTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9D7EAAD-14AF-41AD-AE0E-10E8358DF914}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9D7EAAD-14AF-41AD-AE0E-10E8358DF914}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-1647861114-2623618104-3830117335-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE2A77F2-04C0-4765-BE49-14A8612B062D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE2A77F2-04C0-4765-BE49-14A8612B062D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect => removed successfully
"HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\CHR HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] -" => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully
HKLM\System\CurrentControlSet\Services\EpsonCustomerResearchParticipation => removed successfully
EpsonCustomerResearchParticipation => service removed successfully
HKLM\System\CurrentControlSet\Services\HPSupportSolutionsFrameworkService => removed successfully
HPSupportSolutionsFrameworkService => service removed successfully
C:\ProgramData\McAfee => moved successfully
C:\Users\USER\Downloads\esetonlinescanner_esn (2).exe => moved successfully
C:\Users\USER\Downloads\iExplore (6).exe => moved successfully
C:\Users\USER\Downloads\ccsetup561 (1).exe => moved successfully
C:\Users\USER\Downloads\rkill.zip => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\Users\USER\AppData\Local\{A1091682-A19C-4D28-90BB-9400AFA686E5} => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
C:\ProgramData\Temp => ":95913E45" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{562FE0DD-FE09-48BF-9038-B71F834206EF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5A5F3F5-7DBF-40CB-B590-017DA1E464A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{588E6323-3809-446B-A752-9EB656B12C3A}" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 3 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 6 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 15 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 6:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 15:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::187b:651b:81e4:a04e%19
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.43.225
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.43.1

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

{588D38E3-429B-4EE6-B29D-81CC30D52121} canceled.
{3A36F9A9-C7D8-43DD-A748-781A68900E84} canceled.
{79D9D328-BEC8-4003-9B97-7DFC47EC2330} canceled.
3 out of 3 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1647861114-2623618104-3830117335-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32927731 B
Java, Flash, Steam htmlcache => 1173 B
Windows/system/drivers => 332189 B
Edge => 95053 B
Chrome => 409760558 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4552 B
NetworkService => 4552 B
USER => 72437886 B

RecycleBin => 1158739 B
EmptyTemp: => 502.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:20:09 ===
´´´´

Hola @GOFEC

Perfecto, faltaría que pruebes el equipo, reinicies un par de veces y nos comentes si el problema de las redirecciones aún persiste.

Salu2

Hola SanMar Gracias por tu apoyo He reiniciado hasta tres veces y cuando intento bajar el video veo que el problema no ha sido resuelto.

este es el mensaje que me sale:

Esta página no funciona

La página free.facebook.com te ha redirigido demasiadas veces.

ERR_TOO_MANY_REDIRECTS

Hola @GOFEC

Dinos si tienes tu navegador Google Chrome sincronizado con otros dispositivos?

Salu2