Fix result of Farbar Recovery Scan Tool (x64) Version: 04-09-2019

Ran by Alexis Lopez (05-09-2019 23:23:22) Run:2

Running from C:\Users\Alexis Lopez\Desktop
Loaded Profiles: Alexis Lopez (Available Profiles: Alexis Lopez)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:

HKU\S-1-5-21-2304027684-364430931-1617813840-1001\...\Policies\Explorer:
[NoLowDiskSpaceChecks] 1
Task: {785B1646-6978-4648-B6BB-8C2C91F4F2E2} -
\Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8401bd1e
HKU\S-1-5-21-2304027684-364430931-1617813840-1001\Software\Microsoft\Internet
Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8401bd1e&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8401bd1e&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8401bd1e&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8401bd1e&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2304027684-364430931-1617813840-1001 -> DefaultScope
{FA46F3FA-876C-4696-94EC-B102B4105225} URL =
SearchScopes: HKU\S-1-5-21-2304027684-364430931-1617813840-1001 -> {0633EE93-D776-
472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D060618-
A5AF4E3D53C&form=CONBDF&conlogo=CT3335878&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2304027684-364430931-1617813840-1001 -> {26080cad-4adc-
49ac-8c63-eda16e595cbd} URL =
SearchScopes: HKU\S-1-5-21-2304027684-364430931-1617813840-1001 -> {FA46F3FA-876C-
4696-94EC-B102B4105225} URL =
BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} ->
C:\PROGRA~2\IObit\ADVANC~1\Surfing
Protection\BrowerProtect\ASCPlugin_Protection.dll => No File
CHR StartupUrls: Default -> "hxxps://www.google.es/?
gfe_rd=cr&ei=J5UPWcnkJfOJ8QfZnK_gDQ"
CHR DefaultSearchURL: Default -> hxxps://www.google.es/search?source=hp&ei=vo6yW8-
LNNGykwXcnJOIBg&btnG=Buscar&q={searchTerms}&oq=a%C3%B1adir+motor+de+&gs_l=psy-
ab.1.0.0i20i263k1j0j0i22i30k1l8.192912.199584.0.202058.27.19.7.0.0.0.224.2527.0j16j
2.19.0..2..0...1.1.64.psy-
ab..1.26.2672.6..35i39k1j0i131k1j0i131i67k1j0i67k1j0i10k1.86.D5HExTL-XoI
2019-08-22 14:54 - 2019-01-13 17:19 - 000000000 ____D
C:\Users\alsad\AppData\Roaming\46cd110ddd78d00dd3a0acf4672b535f
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-
D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll
-> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>
-> No File
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-
D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll
-> No File
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-
D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll
-> No File
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>
-> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No
File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} =>
-> No File
HKU\S-1-5-21-2304027684-364430931-1617813840-1001\...\StartupApproved\Run: =>
"d4926e35"
VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\TWCU.exe
VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\DC_WFF.dll
VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\nicLan.dll
VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\WJRa.dll

CMD: ipconfig /flushdns

CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
RemoveProxy:
EmptyTemp:
end
*****************

Restore point was successfully created.

Processes closed successfully.
"HKU\S-1-5-21-2304027684-364430931-1617813840-
1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChe
cks" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\
{785B1646-6978-4648-B6BB-8C2C91F4F2E2}" => not found
"HKLM\Software\Microsoft\Windows
NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager"
=> not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored
successfully
HKU\S-1-5-21-2304027684-364430931-1617813840-1001\Software\Microsoft\Internet
Explorer\Main\\Default_Page_URL => Error setting value.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value
restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-
E1416B8B2E3A} => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope =>
value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-
472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} =>
not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-1001\SOFTWARE\Microsoft\Internet
Explorer\SearchScopes\\DefaultScope" => not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-1001\SOFTWARE\Microsoft\Internet
Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => not found
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-1001\SOFTWARE\Microsoft\Internet
Explorer\SearchScopes\{26080cad-4adc-49ac-8c63-eda16e595cbd}" => not found
HKLM\Software\Classes\CLSID\{26080cad-4adc-49ac-8c63-eda16e595cbd} => not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-1001\SOFTWARE\Microsoft\Internet
Explorer\SearchScopes\{FA46F3FA-876C-4696-94EC-B102B4105225}" => not found
HKLM\Software\Classes\CLSID\{FA46F3FA-876C-4696-94EC-B102B4105225} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{10921475-03CE-4E04-90CE-E2E7EF20C814} => not found
HKLM\Software\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} =>
not found
"Chrome StartupUrls" => not found
"Chrome DefaultSearchURL" => not found
"C:\Users\alsad\AppData\Roaming\46cd110ddd78d00dd3a0acf4672b535f" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Advanced SystemCare => not
found
HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler => not found
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Advanced SystemCare => not
found
HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Advanced SystemCare =>
not found
HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => not
found
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>
removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler => not found
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-
1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\d4926e
35" => not found
"HKU\S-1-5-21-2304027684-364430931-1617813840-
1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\d4926e35" => not found
"VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\TWCU.exe" => not found
"VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\DC_WFF.dll" => not found
"VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\nicLan.dll" => not found
"VirusTotal: C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration
Utility\WJRa.dll" => not found

========= ipconfig /flushdns =========

Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========

========= ipconfig /renew =========

Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 3 mientras los

medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 1 mientras los
medios
est‚n desconectados.

Adaptador de LAN inal mbrica Conexi¢n de rea local* 3:

Estado de los medios. . . . . . . . . . . : medios desconectados

Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Conexi¢n de rea local* 1:

Estado de los medios. . . . . . . . . . . : medios desconectados

Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Wi-Fi:

Sufijo DNS espec¡fico para la conexi¢n. . :

V¡nculo: direcci¢n IPv6 local. . . : fe80::f9e0:71f2:2202:afbd%6
Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.87
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : fe80::9691:7fff:fed9:eb71%6
192.168.1.1

========= End of CMD: =========

========= bitsadmin /reset /allusers =========

BITSADMIN version 3.0

BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {F54216EC-F3D8-4F21-93BB-EE9C39B67577}.

Unable to cancel {057776AF-8EED-46F8-8F9A-20C851C370CF}.
Unable to cancel {9E212305-99A1-422C-BA8C-2F624CE93798}.
0 out of 3 jobs canceled.

========= End of CMD: =========

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet
Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2659796685-2476847942-1797902275-
1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet
Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2659796685-2476847942-1797902275-
1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet
Settings\Connections\\SavedLegacySettings" => removed successfully
========= End of RemoveProxy: =========

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B

DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15851499 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 189433 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 83125295 B

Temp, IE cache, history, cookies, recent:

Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4500 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Alexis Lopez => 443332 B

RecycleBin => 166920 B

EmptyTemp: => 104.9 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 23:25:28 ====