Fix result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019
Ran by PC (12-09-2019 22:42:18) Run:1
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [ACS Certificate Management Tool] => [X]
HKLM-x32\...\Run: [ACS Certificate Management Tool] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\MountPoints2: {0c00c663-b1b5-11e8-b34a-001986000bdc} - "J:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\MountPoints2: {0c00c6ba-b1b5-11e8-b34a-001986000bdc} - "J:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\MountPoints2: {105c59d1-fe4f-11e8-b36d-001986000bdc} - "K:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\...\MountPoints2: {d67deab9-3885-11e8-b315-001986000bdc} - "I:\Autorun.exe" 
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDdd2mvd%2FnDjVRxsmdu%2B%2FVelKcNigcT4u5AxRV2rnZO9VLza4u1Ty%2B6QCBVuJ7wUW%2FdKF%2F4pA1Tecsn2r0zAQnqYyNfRt1YKWyTilnS%2Bq%2BhouD53udfI0dl2QjHcnzlDgwRjQav96paoU%2FuT2eTpF1k%2BZsIkbsUXMrkDBJKA3SosKiZXuHaVAoTOd22%2BdYGcdRSEkZ7Slk%2F92lCDL4IoMx8kqRE2O8SRCh7vOXI8DV%2BPkvUNgwSVBM4B7j8R%2Fj772zdCZ7FLQT01UyCtXPKGtPvNOr3GgpKbjNTncr0R9XYFtiCa2y%2Bfgjyrv4JYFObi6Iw%3D%3D
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://co.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDVf04hsy5xhP3t5AKHKVB%2BgSqR8KcYiJek5xx2oc5RebjsnyvnmwQSevQvXp98LEfQs5Z0No2sZetDcAulPxDJvUAHZp2wHChjzBswXEjWaQCnL4KH5zwn92BMDzte4NZvTw%2FuKx%2BMkJRfx0IgbsJz3cH1gcLTs1leja9XXv00CcG6xblf1XV0y5bvVbqJYO42MTDuHJk7BW2o3s8hY3%2FQ3mTkbUV4pD3C%2FOy2JBYU9PyCe1bGyIdyLrO23TsiZ3IZmr%2FinThYZJaZg2VaD9W8ozQYLOHLFrQCl7%2BnWb0l7YkfG4oFsq6UVfdR0kOQA9ig%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://co.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180206__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://co.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDVf04hsy5xhP3t5AKHKVB%2BgSqR8KcYiJek5xx2oc5RebjsnyvnmwQSevQvXp98LEfQs5Z0No2sZetDcAulPxDJvUAHZp2wHChjzBswXEjWaQCnL4KH5zwn92BMDzte4NZvTw%2FuKx%2BMkJRfx0IgbsJz3cH1gcLTs1leja9XXv00CcG6xblf1XV0y5bvVbqJYO42MTDuHJk7BW2o3s8hY3%2FQ3mTkbUV4pD3C%2FOy2JBYU9PyCe1bGyIdyLrO23TsiZ3IZmr%2FinThYZJaZg2VaD9W8ozQYLOHLFrQCl7%2BnWb0l7YkfG4oFsq6UVfdR0kOQA9ig%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> {EA410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = 
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> {ED89B622-07EB-4C8E-95F9-3406D0BB639B} URL = hxxp://www.gene-search.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO-x32: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} -  No File
Edge HomeButtonPage: HKU\S-1-5-21-3997577931-3068925019-3166496077-1001 -> hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDUXN%2FGBjNZ67WpACBOYJDinMBx45FTxrmHe1MDl9dDn%2BeXuwKne8ynb9trna98PEV1LdRgbMgHifRkPWY9g8JIZuul%2BHCoVRj9vUz%2FWoyBSpBrSeNR%2FnDQ%2F4tpFULCB6w%2Bh54TLpW0NcEbysVOKYWu0f0%2B4PapzHjlVZlGVRGPvaNxARnPcdkNG%2BsYuPTopGI%2B6%2B3SWkCFaANnmOzvUUHiHP7YR12jE6cEnIr2T1%2BGNgjzqEDkSDowbYjLkdJrhZ0fSN5JOCW%2BijuR1k4dqo%2FfUbYTzaRKwYHOLzd5dm5SolcDkSpm11195Ds%2B3wdhV29A%3D%3D
FF Homepage: Mozilla\Firefox\Profiles\3c9eakm4.default -> hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDRO6KdzENhcugQ8Z7ZQHEu5sKCC7iL60NYhnnK99YHSK%2F%2BXp%2B%2BwSOROuGIrQXNiaKoZ4HW7B0RJPRw10vxl%2BRnPxeCmZx44lqvnvHXE%2FuIyki2duAdpvuCXcyBuuxpKjC%2Fkl9ChJOuvVi5awxOGvA2eIW6BFPcXh%2FWncH8yKgGUBG9Ze125T27bo8VwGDs1uS1lIyZ5PKW6bU0L8yZYuTr7OPZxNLblXG9YJzJ8iMUKJlrszcfkzPtJNY3NXOVZPDYTD%2BH6O9RulrHP0htghG0xslDr68xkI1icTqlZ9sTWj0lv5orwHDq9d7CeXFanuw4gfNTMicYxcT7A%2BhtDSw2w%3D
FF NewTab: Mozilla\Firefox\Profiles\3c9eakm4.default -> hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDRO6KdzENhcugQ8Z7ZQHEu5sKCC7iL60NYhnnK99YHSK%2F%2BXp%2B%2BwSOROuGIrQXNiaKoZ4HW7B0RJPRw10vxl%2BRnPxeCmZx44lqvnvHXE%2FuIyki2duAdpvuCXcyBuuxpKjC%2Fkl9ChJOuvVi5awxOGvA2eIW6BFPcXh%2FWncH8yKgGUBG9Ze125T27bo8VwGDs1uS1lIyZ5PKW6bU0L8yZYuTr7OPZxNLblXG9YJzJ8iMUKJlrszcfkzPtJNY3NXOVZPDYTD%2BH6O9RulrHP0htghG0xslDr68xkI1icTqlZ9sTWj0lv5orwHDq9d7CeXFanuw4gfNTMicYxcT7A%2BhtDSw2w%3D
FF HomepageOverride: Mozilla\Firefox\Profiles\3c9eakm4.default -> Enabled: homepage@mail.ru
FF NewTabOverride: Mozilla\Firefox\Profiles\3c9eakm4.default -> Enabled: {a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}
FF NewTabOverride: Mozilla\Firefox\Profiles\3c9eakm4.default -> Enabled: search@mail.ru
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\3c9eakm4.default\searchplugins\Yahoo powered search.xml [2019-09-09]
FF SearchPlugin: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\3c9eakm4.default\searchplugins\yahoo! provided search.xml [2018-12-13]
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
CHR HomePage: Default -> hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDecHVfu1K3%2FNKTe8nZ0XkpC8FvX3%2F5nmcCh2qYUVpbVO2lX03S3EeWGKmjqZ8WrYhsyTnV0pVuQy47x9Lf2bFVxy29KFwpgEwxehZGvmYRduC8be9eDTX7JqPHCeB6RRX1%2BhIFu2EotAQwqSzKG10STjZtNCw16hRYbUEzNZ2535EWc%2FBVGMGe173%2B0QW17sVTMWjuPTcoO4pfgq2sMAiYEgZ7xa4SGb8pBVUBVNJF8qYflniKIEMU00uFBYrIoT%2B3N9oanpSR5oPXTfVE1a%2B7AsU%2F5Peo5LbIiNB7iIxB9vvO2l8tQEeT3dZjqjG%2FwWrD1aGdopaw5hbRE8FwaI4zI%3D
CHR StartupUrls: Default -> "hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDecHVfu1K3%2FNKTe8nZ0XkpCbS7gkfR7bP74Zv7LEAdNcD1OhpvB9VwSGxJRrtRuxfPfc8NyMv7lKz%2BiHuNNK8u41Oh7Qm3w%2BxJDp%2Bt4lPqjk%2FdeljSg2vip0u6ONZjBN6GYdXBwpRlJy89IhLq5ds6FE3HeVd1zRRTY4WRZpzguifNghDoIluSkvRiTeZvXU8IeZ8fZ8JZz99UE7PWTPFXMdRtlmwNtK4k8g%2BoTohnGyajerqnf7HTHmSSJex3ooE6%2BWjl0HSDZv7Vdo8ZGKGjG9%2FPEc6c8BpN%2BvD20P4llWCc810uJwdiQbiWkDy63DLjtcNNo%2BhGT015M4w7EbwOA%3D","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://co.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDecHVfu1K3%2FNKTe8nZ0XkpDeWr9oK2%2FB%2BNxiSmzsIAr1sKmz4sPvNllbCPiTUhH2o1uQYr1ipyG7pKHcHuly1XAaJHnvaTOKHG0sJreSuoAWvdAzoOIaA%2BVQHjDng2i8Js6hog8Gqa2a8sX27fh8bX%2FyvQmiDyE3MjMJSZr2tS6DbGFauf30znXuvV0bASPSooh85RHPG5XDlPthdQpcJ6gqvy8vk0Oo85%2FXZ2lbm6WeXhWmUBWSfk39rjheNN%2FZWsO0eT9%2BaPat4FlKieQp%2Fxvg%2BVkyKiIjpa7wXyA%2FV0oC2RgfeU8cUAv9bZYGL3McQZKwXpz082Ch6dV%2FyeWtdbs%3D&p={searchTerms}
CHR DefaultSearchKeyword: Default -> search.yahoo.com
CHR DefaultNewTabURL: Default -> hxxps://co.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=88dpyqptgki1320egikmoq9ay003519&param1=y6bdVFVIsvuYsgEClQfz8Hp%2FDKLQJBXkKHVBcimHc9cJeCL%2BU0bwl9EH6nNFJ21fB3mtVrWpT8d%2FAMzHEFzmDecHVfu1K3%2FNKTe8nZ0XkpD6Ix9UXdEA%2FEDahFJlNf3L12zCRj1xIGHNOgpfyjkmT4SvHgAJimR78pH1Xeo4STYZ7IQ7Kwmnaso5a2oAKV0BwnIfE7CDjA5vcyMy4HchBOBjwphpdwt3HutkNpQ0POPRire%2BfmWwmPI8bUwXxkrc0Rpkp%2BlgssoYsMSzhxN3FP%2BmJ%2FSkiiNvdhK1ne%2BEDWnVs8Qhz0A%2B%2Fx2hsW6sasILMOMnlEbo8oeDvlwuXZph%2F%2B3iJG0SEoAF13dZxXm%2FOnkaiV1aH2gk8ZmtrCXyQIed4yTIqIzqug3ZJHnWBBO2VrBhFzI7YsAV6v8PEEaB60c%3D
CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
2019-09-12 11:10 - 2019-09-12 11:10 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2019-09-09 23:31 - 2019-09-09 23:34 - 002242666 _____ C:\Users\PC\Downloads\Sin confirmar 254940.crdownload
2019-09-09 16:47 - 2019-09-09 16:47 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8C3F.tmp
2019-09-09 16:47 - 2019-09-09 16:47 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8C2F.tmp
2019-09-09 12:01 - 2019-09-09 12:01 - 000000000 _____ C:\Users\PC\AppData\Local\BITC61.tmp
2019-09-09 12:01 - 2019-09-09 12:01 - 000000000 _____ C:\Users\PC\AppData\Local\BITC50.tmp
2019-09-09 11:54 - 2019-09-09 11:54 - 000830964 _____ C:\Users\PC\Downloads\Sin confirmar 558181.crdownload
2019-09-09 08:59 - 2019-09-09 08:59 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8C52.tmp
2019-09-07 21:38 - 2019-09-07 21:38 - 000000000 _____ C:\Users\PC\AppData\Local\BIT9568.tmp
2019-09-07 21:38 - 2019-09-07 21:38 - 000000000 _____ C:\Users\PC\AppData\Local\BIT9557.tmp
2019-09-07 21:36 - 2019-09-07 21:36 - 000000000 _____ C:\Users\PC\AppData\Local\BIT6850.tmp
2019-09-07 14:47 - 2019-09-07 14:47 - 000000000 _____ C:\Users\PC\AppData\Local\BIT1615.tmp
2019-09-07 14:45 - 2019-09-07 14:45 - 000000000 _____ C:\Users\PC\AppData\Local\BITAEEE.tmp
2019-09-06 17:46 - 2019-09-06 17:46 - 000000000 _____ C:\Users\PC\AppData\Local\BIT451E.tmp
2019-09-06 17:46 - 2019-09-06 17:46 - 000000000 _____ C:\Users\PC\AppData\Local\BIT450E.tmp
2019-09-06 14:17 - 2019-09-06 14:17 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8423.tmp
2019-09-06 14:15 - 2019-09-06 14:15 - 000000000 _____ C:\Users\PC\AppData\Local\BITFE66.tmp
2019-09-06 14:15 - 2019-09-06 14:15 - 000000000 _____ C:\Users\PC\AppData\Local\BITFE55.tmp
2019-09-05 22:52 - 2019-09-05 22:52 - 000000000 _____ C:\Users\PC\AppData\Local\BIT23C0.tmp
2019-09-05 22:52 - 2019-09-05 22:52 - 000000000 _____ C:\Users\PC\AppData\Local\BIT23BF.tmp
2019-09-05 22:29 - 2019-09-05 22:29 - 000000000 _____ C:\Users\PC\AppData\Local\BITB12E.tmp
2019-09-05 22:27 - 2019-09-05 22:27 - 000000000 _____ C:\Users\PC\AppData\Local\BITDFC2.tmp
2019-09-05 10:41 - 2019-09-05 10:41 - 000000000 _____ C:\Users\PC\AppData\Local\BIT2F1D.tmp
2019-09-05 10:39 - 2019-09-05 10:39 - 000000000 _____ C:\Users\PC\AppData\Local\BIT76E.tmp
2019-09-05 10:39 - 2019-09-05 10:39 - 000000000 _____ C:\Users\PC\AppData\Local\BIT76D.tmp
2019-09-05 07:09 - 2019-09-05 07:09 - 000000000 _____ C:\Users\PC\AppData\Local\BIT82B4.tmp
2019-09-05 07:09 - 2019-09-05 07:09 - 000000000 _____ C:\Users\PC\AppData\Local\BIT82A3.tmp
2019-09-05 07:05 - 2019-09-05 07:05 - 000000000 _____ C:\Users\PC\AppData\Local\BITE204.tmp
2019-09-04 23:51 - 2019-09-04 23:51 - 000000000 _____ C:\Users\PC\AppData\Local\BIT514C.tmp
2019-09-04 23:49 - 2019-09-04 23:49 - 000000000 _____ C:\Users\PC\AppData\Local\BIT95F7.tmp
2019-09-04 22:59 - 2019-09-04 22:59 - 000025937 ____H C:\Users\PC\Downloads\~WRL3158.tmp
2019-09-04 19:57 - 2019-09-04 19:57 - 000000000 _____ C:\Users\PC\AppData\Local\BIT9D0.tmp
2019-09-04 19:57 - 2019-09-04 19:57 - 000000000 _____ C:\Users\PC\AppData\Local\BIT9BF.tmp
2019-09-04 19:56 - 2019-09-04 19:56 - 000000000 _____ C:\Users\PC\AppData\Local\BIT1960.tmp
2019-09-04 19:56 - 2019-09-04 19:56 - 000000000 _____ C:\Users\PC\AppData\Local\BIT194F.tmp
2019-09-03 19:10 - 2019-09-03 19:10 - 000000000 _____ C:\Users\PC\AppData\Local\BIT293F.tmp
2019-09-03 19:10 - 2019-09-03 19:10 - 000000000 _____ C:\Users\PC\AppData\Local\BIT293E.tmp
2019-09-03 14:58 - 2019-09-03 14:58 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8F3D.tmp
2019-09-03 14:56 - 2019-09-03 14:56 - 000000000 _____ C:\Users\PC\AppData\Local\BIT1549.tmp
2019-09-03 13:30 - 2019-09-03 13:30 - 000000000 _____ C:\Users\PC\AppData\Local\BITA95E.tmp
2019-09-03 13:28 - 2019-09-03 13:28 - 000000000 _____ C:\Users\PC\AppData\Local\BITC9E8.tmp
2019-09-03 13:28 - 2019-09-03 13:28 - 000000000 _____ C:\Users\PC\AppData\Local\BITC9E7.tmp
2019-09-03 09:32 - 2019-09-03 09:32 - 000000000 _____ C:\Users\PC\AppData\Local\BIT8387.tmp
2019-09-03 09:31 - 2019-09-03 09:31 - 000000000 _____ C:\Users\PC\AppData\Local\BITF5.tmp
2019-09-03 09:24 - 2019-09-03 09:24 - 000000000 _____ C:\Users\PC\AppData\Local\BIT20B2.tmp
2019-09-03 09:22 - 2019-09-03 09:22 - 000000000 _____ C:\Users\PC\AppData\Local\BITB47C.tmp
2019-09-03 09:22 - 2019-09-03 09:22 - 000000000 _____ C:\Users\PC\AppData\Local\BITB46B.tmp
2019-09-03 08:47 - 2019-09-03 08:47 - 000000000 _____ C:\Users\PC\AppData\Local\BITD9E3.tmp
2019-09-03 08:45 - 2019-09-03 08:45 - 000000000 _____ C:\Users\PC\AppData\Local\BITFBA6.tmp
2019-09-03 08:45 - 2019-09-03 08:45 - 000000000 _____ C:\Users\PC\AppData\Local\BITFB96.tmp
2019-09-09 23:44 - 2018-02-05 21:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\Lavasoft
2019-09-09 23:44 - 2018-02-05 21:06 - 000000000 ____D C:\Users\PC\AppData\Local\Lavasoft
2019-09-09 23:44 - 2018-02-05 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2019-09-09 23:44 - 2018-02-05 21:06 - 000000000 ____D C:\ProgramData\Lavasoft
2019-09-09 10:08 - 2019-03-04 15:06 - 000000000 ____D C:\Users\PC\AppData\Local\Mail.Ru
2019-02-09 01:27 - 2019-02-09 01:27 - 000177632 _____ () C:\Users\PC\AppData\Roaming\Soneresocodu
2019-09-03 14:56 - 2019-09-03 14:56 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT1549.tmp
2019-09-07 14:47 - 2019-09-07 14:47 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT1615.tmp
2019-09-04 19:56 - 2019-09-04 19:56 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT194F.tmp
2019-09-04 19:56 - 2019-09-04 19:56 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT1960.tmp
2019-09-03 09:24 - 2019-09-03 09:24 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT20B2.tmp
2019-09-05 22:52 - 2019-09-05 22:52 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT23BF.tmp
2019-09-05 22:52 - 2019-09-05 22:52 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT23C0.tmp
2019-09-03 19:10 - 2019-09-03 19:10 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT293E.tmp
2019-09-03 19:10 - 2019-09-03 19:10 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT293F.tmp
2019-09-05 10:41 - 2019-09-05 10:41 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT2F1D.tmp
2019-09-06 17:46 - 2019-09-06 17:46 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT450E.tmp
2019-09-06 17:46 - 2019-09-06 17:46 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT451E.tmp
2019-09-04 23:51 - 2019-09-04 23:51 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT514C.tmp
2019-09-07 21:36 - 2019-09-07 21:36 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT6850.tmp
2019-09-05 10:39 - 2019-09-05 10:39 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT76D.tmp
2019-09-05 10:39 - 2019-09-05 10:39 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT76E.tmp
2019-09-05 07:09 - 2019-09-05 07:09 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT82A3.tmp
2019-09-05 07:09 - 2019-09-05 07:09 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT82B4.tmp
2019-09-03 09:32 - 2019-09-03 09:32 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8387.tmp
2019-09-06 14:17 - 2019-09-06 14:17 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8423.tmp
2019-09-09 16:47 - 2019-09-09 16:47 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8C2F.tmp
2019-09-09 16:47 - 2019-09-09 16:47 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8C3F.tmp
2019-09-09 08:59 - 2019-09-09 08:59 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8C52.tmp
2019-09-03 14:58 - 2019-09-03 14:58 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT8F3D.tmp
2019-09-07 21:38 - 2019-09-07 21:38 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT9557.tmp
2019-09-07 21:38 - 2019-09-07 21:38 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT9568.tmp
2019-09-04 23:49 - 2019-09-04 23:49 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT95F7.tmp
2019-09-04 19:57 - 2019-09-04 19:57 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT9BF.tmp
2019-09-04 19:57 - 2019-09-04 19:57 - 000000000 _____ () C:\Users\PC\AppData\Local\BIT9D0.tmp
2019-09-03 13:30 - 2019-09-03 13:30 - 000000000 _____ () C:\Users\PC\AppData\Local\BITA95E.tmp
2019-09-07 14:45 - 2019-09-07 14:45 - 000000000 _____ () C:\Users\PC\AppData\Local\BITAEEE.tmp
2019-09-05 22:29 - 2019-09-05 22:29 - 000000000 _____ () C:\Users\PC\AppData\Local\BITB12E.tmp
2019-09-03 09:22 - 2019-09-03 09:22 - 000000000 _____ () C:\Users\PC\AppData\Local\BITB46B.tmp
2019-09-03 09:22 - 2019-09-03 09:22 - 000000000 _____ () C:\Users\PC\AppData\Local\BITB47C.tmp
2019-09-09 12:01 - 2019-09-09 12:01 - 000000000 _____ () C:\Users\PC\AppData\Local\BITC50.tmp
2019-09-09 12:01 - 2019-09-09 12:01 - 000000000 _____ () C:\Users\PC\AppData\Local\BITC61.tmp
2019-09-03 13:28 - 2019-09-03 13:28 - 000000000 _____ () C:\Users\PC\AppData\Local\BITC9E7.tmp
2019-09-03 13:28 - 2019-09-03 13:28 - 000000000 _____ () C:\Users\PC\AppData\Local\BITC9E8.tmp
2019-09-03 08:47 - 2019-09-03 08:47 - 000000000 _____ () C:\Users\PC\AppData\Local\BITD9E3.tmp
2019-09-05 22:27 - 2019-09-05 22:27 - 000000000 _____ () C:\Users\PC\AppData\Local\BITDFC2.tmp
2019-09-05 07:05 - 2019-09-05 07:05 - 000000000 _____ () C:\Users\PC\AppData\Local\BITE204.tmp
2019-09-03 09:31 - 2019-09-03 09:31 - 000000000 _____ () C:\Users\PC\AppData\Local\BITF5.tmp
2019-09-03 08:45 - 2019-09-03 08:45 - 000000000 _____ () C:\Users\PC\AppData\Local\BITFB96.tmp
2019-09-03 08:45 - 2019-09-03 08:45 - 000000000 _____ () C:\Users\PC\AppData\Local\BITFBA6.tmp
2019-09-06 14:15 - 2019-09-06 14:15 - 000000000 _____ () C:\Users\PC\AppData\Local\BITFE55.tmp
2019-09-06 14:15 - 2019-09-06 14:15 - 000000000 _____ () C:\Users\PC\AppData\Local\BITFE66.tmp
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
FirewallRules: [TCP Query User{51266452-2528-424C-90CD-C940A74C3B31}C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe] => (Allow) C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe
FirewallRules: [UDP Query User{413290A4-A931-425A-BC32-785A5C48DCFE}C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe] => (Allow) C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ACS Certificate Management Tool" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ACS Certificate Management Tool" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => could not remove, key could be protected
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoSecurityTab" => removed successfully
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c00c663-b1b5-11e8-b34a-001986000bdc} => removed successfully
HKLM\Software\Classes\CLSID\{0c00c663-b1b5-11e8-b34a-001986000bdc} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c00c6ba-b1b5-11e8-b34a-001986000bdc} => removed successfully
HKLM\Software\Classes\CLSID\{0c00c6ba-b1b5-11e8-b34a-001986000bdc} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{105c59d1-fe4f-11e8-b36d-001986000bdc} => removed successfully
HKLM\Software\Classes\CLSID\{105c59d1-fe4f-11e8-b36d-001986000bdc} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d67deab9-3885-11e8-b315-001986000bdc} => removed successfully
HKLM\Software\Classes\CLSID\{d67deab9-3885-11e8-b315-001986000bdc} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.FMVC" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f7bb050c-e116-44da-89c2-6f2b68c54836} => removed successfully
HKLM\Software\Classes\CLSID\{f7bb050c-e116-44da-89c2-6f2b68c54836} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{f7bb050c-e116-44da-89c2-6f2b68c54836} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{f7bb050c-e116-44da-89c2-6f2b68c54836} => not found
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => removed successfully
HKLM\Software\Classes\CLSID\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => removed successfully
HKLM\Software\Classes\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EA410C70-B6AE-41FF-AB71-32F4B279EA5F} => removed successfully
HKLM\Software\Classes\CLSID\{EA410C70-B6AE-41FF-AB71-32F4B279EA5F} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ED89B622-07EB-4C8E-95F9-3406D0BB639B} => removed successfully
HKLM\Software\Classes\CLSID\{ED89B622-07EB-4C8E-95F9-3406D0BB639B} => not found
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f7bb050c-e116-44da-89c2-6f2b68c54836} => removed successfully
HKLM\Software\Classes\CLSID\{f7bb050c-e116-44da-89c2-6f2b68c54836} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\osf => removed successfully
HKLM\Software\Classes\CLSID\{D924BDC6-C83A-4BD5-90D0-095128A113D1} => not found
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage" => removed successfully
"Firefox homepage" => removed successfully
"Firefox newtab" => removed successfully
"Firefox HomepageOverride (homepage@mail.ru) " => removed successfully
"Firefox NewTabOverride ({a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}) " => removed successfully
"Firefox NewTabOverride (search@mail.ru) " => removed successfully
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\3c9eakm4.default\searchplugins\Yahoo powered search.xml => moved successfully
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\3c9eakm4.default\searchplugins\yahoo! provided search.xml => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
C:\Program Files\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"Chrome HomePage" => removed successfully
"Chrome StartupUrls" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
"Chrome DefaultSearchKeyword" => removed successfully
"Chrome DefaultNewTabURL" => removed successfully
"Chrome DefaultSuggestURL" => removed successfully
HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully
"C:\Users\PC\Desktop\FRST-OlderVersion" => not found
C:\Users\PC\Downloads\Sin confirmar 254940.crdownload => moved successfully
C:\Users\PC\AppData\Local\BIT8C3F.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT8C2F.tmp => moved successfully
C:\Users\PC\AppData\Local\BITC61.tmp => moved successfully
C:\Users\PC\AppData\Local\BITC50.tmp => moved successfully
C:\Users\PC\Downloads\Sin confirmar 558181.crdownload => moved successfully
C:\Users\PC\AppData\Local\BIT8C52.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT9568.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT9557.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT6850.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT1615.tmp => moved successfully
C:\Users\PC\AppData\Local\BITAEEE.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT451E.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT450E.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT8423.tmp => moved successfully
C:\Users\PC\AppData\Local\BITFE66.tmp => moved successfully
C:\Users\PC\AppData\Local\BITFE55.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT23C0.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT23BF.tmp => moved successfully
C:\Users\PC\AppData\Local\BITB12E.tmp => moved successfully
C:\Users\PC\AppData\Local\BITDFC2.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT2F1D.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT76E.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT76D.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT82B4.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT82A3.tmp => moved successfully
C:\Users\PC\AppData\Local\BITE204.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT514C.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT95F7.tmp => moved successfully
C:\Users\PC\Downloads\~WRL3158.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT9D0.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT9BF.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT1960.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT194F.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT293F.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT293E.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT8F3D.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT1549.tmp => moved successfully
C:\Users\PC\AppData\Local\BITA95E.tmp => moved successfully
C:\Users\PC\AppData\Local\BITC9E8.tmp => moved successfully
C:\Users\PC\AppData\Local\BITC9E7.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT8387.tmp => moved successfully
C:\Users\PC\AppData\Local\BITF5.tmp => moved successfully
C:\Users\PC\AppData\Local\BIT20B2.tmp => moved successfully
C:\Users\PC\AppData\Local\BITB47C.tmp => moved successfully
C:\Users\PC\AppData\Local\BITB46B.tmp => moved successfully
C:\Users\PC\AppData\Local\BITD9E3.tmp => moved successfully
C:\Users\PC\AppData\Local\BITFBA6.tmp => moved successfully
C:\Users\PC\AppData\Local\BITFB96.tmp => moved successfully
C:\Users\PC\AppData\Roaming\Lavasoft => moved successfully
C:\Users\PC\AppData\Local\Lavasoft => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft => moved successfully
C:\ProgramData\Lavasoft => moved successfully
C:\Users\PC\AppData\Local\Mail.Ru => moved successfully
C:\Users\PC\AppData\Roaming\Soneresocodu => moved successfully
"C:\Users\PC\AppData\Local\BIT1549.tmp" => not found
"C:\Users\PC\AppData\Local\BIT1615.tmp" => not found
"C:\Users\PC\AppData\Local\BIT194F.tmp" => not found
"C:\Users\PC\AppData\Local\BIT1960.tmp" => not found
"C:\Users\PC\AppData\Local\BIT20B2.tmp" => not found
"C:\Users\PC\AppData\Local\BIT23BF.tmp" => not found
"C:\Users\PC\AppData\Local\BIT23C0.tmp" => not found
"C:\Users\PC\AppData\Local\BIT293E.tmp" => not found
"C:\Users\PC\AppData\Local\BIT293F.tmp" => not found
"C:\Users\PC\AppData\Local\BIT2F1D.tmp" => not found
"C:\Users\PC\AppData\Local\BIT450E.tmp" => not found
"C:\Users\PC\AppData\Local\BIT451E.tmp" => not found
"C:\Users\PC\AppData\Local\BIT514C.tmp" => not found
"C:\Users\PC\AppData\Local\BIT6850.tmp" => not found
"C:\Users\PC\AppData\Local\BIT76D.tmp" => not found
"C:\Users\PC\AppData\Local\BIT76E.tmp" => not found
"C:\Users\PC\AppData\Local\BIT82A3.tmp" => not found
"C:\Users\PC\AppData\Local\BIT82B4.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8387.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8423.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8C2F.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8C3F.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8C52.tmp" => not found
"C:\Users\PC\AppData\Local\BIT8F3D.tmp" => not found
"C:\Users\PC\AppData\Local\BIT9557.tmp" => not found
"C:\Users\PC\AppData\Local\BIT9568.tmp" => not found
"C:\Users\PC\AppData\Local\BIT95F7.tmp" => not found
"C:\Users\PC\AppData\Local\BIT9BF.tmp" => not found
"C:\Users\PC\AppData\Local\BIT9D0.tmp" => not found
"C:\Users\PC\AppData\Local\BITA95E.tmp" => not found
"C:\Users\PC\AppData\Local\BITAEEE.tmp" => not found
"C:\Users\PC\AppData\Local\BITB12E.tmp" => not found
"C:\Users\PC\AppData\Local\BITB46B.tmp" => not found
"C:\Users\PC\AppData\Local\BITB47C.tmp" => not found
"C:\Users\PC\AppData\Local\BITC50.tmp" => not found
"C:\Users\PC\AppData\Local\BITC61.tmp" => not found
"C:\Users\PC\AppData\Local\BITC9E7.tmp" => not found
"C:\Users\PC\AppData\Local\BITC9E8.tmp" => not found
"C:\Users\PC\AppData\Local\BITD9E3.tmp" => not found
"C:\Users\PC\AppData\Local\BITDFC2.tmp" => not found
"C:\Users\PC\AppData\Local\BITE204.tmp" => not found
"C:\Users\PC\AppData\Local\BITF5.tmp" => not found
"C:\Users\PC\AppData\Local\BITFB96.tmp" => not found
"C:\Users\PC\AppData\Local\BITFBA6.tmp" => not found
"C:\Users\PC\AppData\Local\BITFE55.tmp" => not found
"C:\Users\PC\AppData\Local\BITFE66.tmp" => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict) => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress) => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync) => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`27hfm" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{51266452-2528-424C-90CD-C940A74C3B31}C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{413290A4-A931-425A-BC32-785A5C48DCFE}C:\users\pc\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 11 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth 3 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 11:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 1:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : une.net.co
   V¡nculo: direcci¢n IPv6 local. . . : fe80::b459:6633:4be6:636f%13
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.71
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.254

Adaptador de Ethernet Conexi¢n de red Bluetooth 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {370893C8-869A-43BE-942A-970AF920C3FC}.
Unable to cancel {7FB7B1E3-C460-4531-A396-1743F6605D7F}.
Unable to cancel {61AB9A44-6652-444D-8A8D-366BBCE8EDD3}.
0 out of 3 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3997577931-3068925019-3166496077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 12607488 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56953745 B
Java, Flash, Steam htmlcache => 1124 B
Windows/system/drivers => -8247400 B
Edge => 11296 B
Chrome => 397213409 B
Firefox => 41185250 B
Opera => 144762 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 122623 B
LocalService => 2714 B
LocalService => 0 B
NetworkService => 14150 B
NetworkService => 0 B
PC => 264009819 B

RecycleBin => 12106170 B
EmptyTemp: => 740.2 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 12-09-2019 22:45:05)


Result of scheduled keys to remove after reboot:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully

==== End of Fixlog 22:45:05 ====