¿VIRUS? publicidad emergente repentina!

Marr0n · 27 Marzo, 2021 23:23

Ok. Para quitarlos, desinstalarlos Hazlo así:

Desinstalalos con Revo Uninstaller en su Modo Avanzado. Para ello sigues su manual la parte de desinstalación de programas.

OK. Sería lo suyo. Ya que una vez finalizado el tema de desinfección y demás cosas relacionadas con esta. Te aconsejo que lo abras en el sub-foro/categoría de Ayuda en General.

Ok. Pues haz esto:

Ejecutas USBFix como Administrador, y vacunas los dispositivos conectados, siguiendo los pasos del Manual.

Una vez hecho todo esto. Haces lo que te dije del FRST:

Salu2.

SABOCEKIK · 28 Marzo, 2021 02:02

Buenas noches @Marr0n Aquí van los logs del FRST:

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-03-2021
Ejecutado por kikec (administrador) sobre DESKTOP-98RK5DH (Gigabyte Technology Co., Ltd. B365M DS3H) (28-03-2021 03:58:09)
Ejecutado desde C:\Users\kikec\Desktop
Perfiles cargados: kikec
Platform: Windows 10 Pro Versión 20H2 19042.868 (X64) Idioma: Inglés (Estados Unidos) -> Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

() [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Setup.exe <3>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2>
(Adobe Inc. -> Adobe Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\RemoteComponents\UPI\ExManCoreLib\AdobeExtensionsService.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Focusrite Audio Engineering Ltd.) [Archivo no firmado] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Archivo no firmado] C:\Program Files\Focusriteusb\Focusrite Notifier.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <41>
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_155f43dc154e0149\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_155f43dc154e0149\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c3052f80b4096eed\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f2250737b8ab5a6\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f2250737b8ab5a6\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\kikec\AppData\Local\slack\app-4.14.0\slack.exe <5>
(SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> ) C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1171184 2020-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-12-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15642744 2016-03-30] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusriteusb\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Archivo no firmado]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-03-28] (Adobe Inc. -> )
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [286064 2021-01-25] (IDSA Production signing key 2021 -> Intel)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779440 2021-03-28] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [] => [X]
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-03-28] (Adobe Inc. -> )
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-03-23] (Valve -> Valve Corporation)
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [Discord] => C:\Users\kikec\AppData\Local\Discord\app-0.0.308\Discord.exe [91023672 2020-09-10] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [104586376 2020-11-23] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\kikec\AppData\Local\slack\slack.exe [308368 2021-03-22] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-18] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-12-11]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-12-11]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {084C25F1-F809-45C9-9784-8F58E6DD6744} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-02] (Google LLC -> Google LLC)
Task: {0CC41ADB-C2A3-4609-B407-99A6B1541FC4} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1239176 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> )
Task: {19E90B03-263F-459C-9A6B-7E2B38061B48} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1BB7D29C-F656-4C7D-9A96-C10682F9AFA4} - System32\Tasks\UsbFix Boot Scan => C:\Program Files (x86)\UsbFix\UsbFix.exe [2053256 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> )
Task: {1FE8CDAF-65B1-4AC8-BEB4-65599683A4B6} - System32\Tasks\Microsoft\Windows\RestartManager\{075BABF9-5CC2-41e4-A133-69415EE8BDAA} => C:\WINDOWS\system32\rmclient.exe [18432 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {3359A9DE-ADC3-4175-A310-FFFAB87793D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-02] (Google LLC -> Google LLC)
Task: {3E4EE164-C9F9-49E3-8A14-BCAA75284FD9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45FBB3AB-3A5F-4CFF-B849-3218CC670FB6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F84A2A5-AB5D-4203-B034-01555866AC45} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {571E4D10-5912-4C75-A370-D458FFF5C793} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DBF9EE3-4A8F-4CAF-A14F-DBB5FF0D8237} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426208 2020-04-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {5EAA9518-1CB1-4E7C-844B-0DE4644C838F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {660D4C2D-7126-47AD-9F94-49E02FBB0956} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8BFA0F25-6D49-4E90-84FC-3290B153B419} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [254176 2020-04-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {8E0D15B7-A47B-4054-88F5-457BAE093F96} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {940F3954-A9D2-4A6C-8657-831804BF0312} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {94EA91C7-1001-4C7C-B0AD-907D42A14C68} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3C16661-C6D8-426A-9E8E-6C938BA7B809} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A7D67262-0FC9-43A6-A869-5F7E1FA95BEF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA74A189-9946-443B-80B2-F6E4EB61627E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [837344 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {AD299640-E0F0-4344-8673-60F56350DFA9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B44A8003-66E7-4061-AB62-4005798E913A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD546A61-294C-4AEE-8D29-4F6525570FDD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BDB26BC9-555B-4BBB-819F-027545F1F9D1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C53F9ED2-EABE-466F-A41D-76267F901D1F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-03-23] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D8740D4D-971E-4EF3-9CB7-1D811D491A5E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF4E46DA-631C-452A-8804-A9BF7E560981} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-03-23] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FF88C574-27BC-42D4-BD0E-B20F77893530} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{0a6bbcf6-520f-4de8-a7d9-815fde1ffbb3}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{8f94eeac-c094-4e72-a0f5-1bcb4381781a}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{a6da7c69-930d-4048-b89c-d89baa63cc8f}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Edge: 
=======
Edge Profile: C:\Users\kikec\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-27]

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-03-28] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-03-28] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default [2021-03-28]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://jellysmack.monday.com
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Presentaciones) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-02]
CHR Extension: (Documentos) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-02]
CHR Extension: (Google Drive) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-06]
CHR Extension: (YouTube) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-02]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-03-10]
CHR Extension: (Hojas de cálculo) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-02]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\kikec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-12]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842424 2021-03-28] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-03-23] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-03-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\System32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Archivo no firmado]
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [143872 2014-10-24] (Microsoft Corporation) [Archivo no firmado]
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Archivo no firmado]
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S4 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128736 2020-04-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10896008 2020-11-23] (Logitech Inc -> Logitech, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-03-30] (Logitech Inc -> Logitech Inc.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [122368 2015-02-26] (Microsoft Corporation) [Archivo no firmado]
S4 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [334208 2020-11-08] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [256656 2021-03-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 e2esoft_ivcamaudio_simple; C:\WINDOWS\system32\drivers\iVCamAud.sys [255464 2020-11-04] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S4 FocusritePCIeSwRoot; C:\WINDOWS\System32\drivers\FocusritePCIeSwRoot.sys [97480 2016-11-16] (Focusrite Audio Engineering Ltd. -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2020-06-11] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-11] (Martin Malik - REALiX -> REALiX(tm))
S3 iVCam; C:\WINDOWS\system32\DRIVERS\iVCam.sys [1090536 2020-11-02] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum.sys [37408 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\71013\driver_cpu_temperature\logi_core_temp.sys [25448 2020-11-23] (Logitech Inc. -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
R3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid.sys [26912 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-11-23] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-11-23] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-11-23] (Logitech Inc -> Logitech)
R3 MpKsl5b510715; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BF31A0C2-E670-4F64-9E94-754668E6F013}\MpKslDrv.sys [90360 2021-03-28] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420072 2021-03-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-18] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-03-28 03:55 - 2021-03-28 03:55 - 000003270 _____ C:\WINDOWS\system32\Tasks\UsbFix Boot Scan
2021-03-28 03:55 - 2021-03-28 03:55 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2021.lnk
2021-03-28 03:48 - 2021-03-28 03:48 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk
2021-03-28 03:44 - 2021-03-28 03:44 - 000000000 ___RD C:\Users\kikec\Creative Cloud Files
2021-03-28 03:33 - 2021-03-28 03:33 - 000001346 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-03-28 03:33 - 2021-03-28 03:33 - 000001316 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2021-03-28 03:33 - 2021-03-28 03:33 - 000001316 _____ C:\ProgramData\Desktop\Adobe Creative Cloud.lnk
2021-03-28 01:08 - 2021-03-28 01:08 - 000000000 ____D C:\Users\kikec\AppData\LocalLow\Statespace
2021-03-27 13:48 - 2021-03-27 13:48 - 000001446 _____ C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2021-03-27 03:01 - 2021-03-27 03:02 - 101859248 _____ (AO Kaspersky Lab) C:\Users\kikec\Desktop\KVRT.exe
2021-03-26 15:17 - 2021-03-26 15:17 - 000000000 ____D C:\Users\kikec\AppData\Local\4kdownload.com
2021-03-26 14:37 - 2021-03-26 14:37 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2021-03-26 14:37 - 2021-03-26 14:37 - 000000936 _____ C:\Users\Public\Desktop\4K Video Downloader.lnk
2021-03-26 14:37 - 2021-03-26 14:37 - 000000936 _____ C:\ProgramData\Desktop\4K Video Downloader.lnk
2021-03-26 14:37 - 2021-03-26 14:37 - 000000000 ____D C:\Program Files\4KDownload
2021-03-24 10:31 - 2021-03-24 10:31 - 000000332 _____ C:\Users\kikec\Desktop\ESSEt.txt
2021-03-24 01:06 - 2021-03-24 01:06 - 015019488 _____ (ESET spol. s r.o.) C:\Users\kikec\Desktop\esetonlinescanner.exe
2021-03-23 20:29 - 2021-03-23 20:29 - 000000000 ____D C:\Users\kikec\Documents\Zoom
2021-03-23 20:28 - 2021-03-23 20:28 - 000001931 _____ C:\Users\kikec\Desktop\Zoom.lnk
2021-03-23 20:28 - 2021-03-23 20:28 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-03-23 20:27 - 2021-03-23 20:28 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Zoom
2021-03-23 18:16 - 2021-03-24 01:30 - 000000000 ___RD C:\Users\kikec\Dropbox
2021-03-23 18:16 - 2021-03-23 18:16 - 000001303 _____ C:\Users\kikec\Desktop\Dropbox.lnk
2021-03-23 18:09 - 2021-03-23 18:09 - 123400818 _____ C:\Users\kikec\Downloads\00.EDIT TEMPLATES.rar
2021-03-23 18:08 - 2021-03-23 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-23 18:07 - 2021-03-23 19:17 - 000001022 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-03-23 18:07 - 2021-03-23 19:17 - 000001018 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-03-23 18:07 - 2021-03-23 18:16 - 000000000 ____D C:\Users\kikec\AppData\Local\Dropbox
2021-03-23 18:07 - 2021-03-23 18:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-23 18:07 - 2021-03-23 18:07 - 000004082 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-03-23 18:07 - 2021-03-23 18:07 - 000003850 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-03-23 18:07 - 2021-03-23 18:07 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Dropbox
2021-03-23 18:07 - 2021-03-23 18:07 - 000000000 ____D C:\ProgramData\Dropbox
2021-03-23 14:56 - 2021-03-23 14:56 - 003325080 _____ (Nicolas Coolman) C:\Users\kikec\ZHPCleaner.exe
2021-03-23 14:55 - 2021-03-23 14:55 - 000000881 _____ C:\Users\kikec\Desktop\JRT.txt
2021-03-22 19:22 - 2021-03-22 19:22 - 020624487 _____ C:\Users\kikec\Documents\Jellysmack.mp4
2021-03-22 18:27 - 2021-03-22 18:10 - 041609131 _____ C:\Users\kikec\Documents\VID_20210322_170936.mp4
2021-03-22 12:15 - 2021-03-22 12:15 - 000092185 _____ C:\Users\kikec\Downloads\O7G2gQnd-noname.pdf
2021-03-22 11:25 - 2021-03-28 03:32 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Slack
2021-03-22 11:25 - 2021-03-22 11:25 - 000002203 _____ C:\Users\kikec\Desktop\Slack.lnk
2021-03-22 11:25 - 2021-03-22 11:25 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2021-03-22 11:25 - 2021-03-22 11:25 - 000000000 ____D C:\Users\kikec\AppData\Local\slack
2021-03-22 03:04 - 2021-03-22 03:04 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-03-22 03:01 - 2021-03-28 03:56 - 000000000 ____D C:\Users\kikec\Desktop\FRST-OlderVersion
2021-03-22 03:01 - 2021-03-22 03:04 - 000009739 _____ C:\Users\kikec\Desktop\Fixlog.txt
2021-03-22 02:58 - 2021-03-22 02:58 - 000000253 _____ C:\Users\kikec\Desktop\DELFIX REGISTRO.txt
2021-03-22 02:58 - 2021-03-22 02:58 - 000000253 _____ C:\DelFix.txt
2021-03-22 02:58 - 2021-03-22 02:58 - 000000000 ____D C:\WINDOWS\ERUNT
2021-03-22 02:57 - 2021-03-22 02:57 - 000797760 _____ C:\Users\kikec\Desktop\delfix.exe
2021-03-19 18:27 - 2021-03-19 18:28 - 000037820 _____ C:\Users\kikec\Desktop\Addition.txt
2021-03-19 18:26 - 2021-03-28 03:58 - 000028493 _____ C:\Users\kikec\Desktop\FRST.txt
2021-03-19 18:25 - 2021-03-28 03:58 - 000000000 ____D C:\FRST
2021-03-19 11:12 - 2021-03-28 03:56 - 002300928 _____ (Farbar) C:\Users\kikec\Desktop\FRST64.exe
2021-03-18 02:19 - 2021-03-28 00:47 - 000000000 ____D C:\KVRT2020_Data
2021-03-18 02:03 - 2021-03-28 03:17 - 000001039 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-03-18 02:03 - 2021-03-28 03:17 - 000001039 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk
2021-03-18 02:03 - 2021-03-28 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-03-18 02:03 - 2021-03-18 02:03 - 000000000 ____D C:\Program Files\VS Revo Group
2021-03-18 02:02 - 2021-03-18 02:02 - 007461704 _____ (VS Revo Group ) C:\Users\kikec\Downloads\revosetup.exe
2021-03-17 00:01 - 2021-03-17 00:01 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-03-16 23:42 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-16 23:42 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-03-16 23:42 - 2021-03-13 06:05 - 001452304 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-03-16 23:42 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-16 23:42 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-03-16 23:42 - 2021-03-13 06:05 - 001191696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-03-16 23:42 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-03-16 23:42 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-03-16 23:42 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-16 23:42 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 001511216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 001163536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 000687888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-03-16 23:42 - 2021-03-13 06:02 - 000678704 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 000671512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 000612144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 000556848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-03-16 23:42 - 2021-03-13 06:02 - 000546096 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-03-16 23:42 - 2021-03-13 06:01 - 002102560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-03-16 23:42 - 2021-03-13 06:01 - 001587488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-03-16 23:42 - 2021-03-13 06:01 - 000811808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-03-16 23:42 - 2021-03-13 06:01 - 000655648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-03-16 23:42 - 2021-03-13 06:00 - 008306456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-03-16 23:42 - 2021-03-13 06:00 - 007429904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-03-16 23:42 - 2021-03-13 06:00 - 004610320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-03-16 23:42 - 2021-03-13 06:00 - 002729744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-03-16 23:42 - 2021-03-13 06:00 - 000445200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-03-16 23:42 - 2021-03-13 05:59 - 000848656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-03-16 23:42 - 2021-03-13 05:57 - 006075480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-03-16 23:42 - 2021-03-11 07:15 - 000084450 _____ C:\WINDOWS\system32\nvinfo.pb
2021-03-16 19:49 - 2021-03-16 19:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-03-16 19:49 - 2021-03-16 19:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-03-16 19:49 - 2021-03-16 19:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-03-16 19:49 - 2021-03-16 19:49 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-03-15 20:29 - 2021-03-18 11:38 - 000000000 ____D C:\Program Files\Common Files\AV
2021-03-15 20:29 - 2021-03-18 02:16 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2021-03-15 20:21 - 2021-03-15 20:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2021-03-15 18:38 - 2021-03-15 18:38 - 002842600 _____ (Kaspersky) C:\Users\kikec\Desktop\ks4.021.2.16.590en_25112.exe
2021-03-15 17:54 - 2021-03-24 01:06 - 000000626 _____ C:\Users\kikec\Desktop\ESET Online Scanner.lnk
2021-03-15 17:49 - 2021-03-24 17:50 - 000000000 ____D C:\Users\kikec\AppData\Local\ESET
2021-03-15 17:49 - 2021-03-24 01:20 - 000000772 _____ C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-03-12 10:46 - 2021-03-12 10:47 - 000157474 _____ C:\Users\kikec\Desktop\cc_20210312_094648.reg
2021-03-11 18:42 - 2021-03-11 18:42 - 000270694 _____ C:\Users\kikec\Desktop\cc_20210311_174213.reg
2021-03-11 18:39 - 2021-03-28 03:55 - 000001960 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk
2021-03-11 18:39 - 2021-03-28 03:55 - 000001960 _____ C:\ProgramData\Desktop\UsbFix Anti-Malware.lnk
2021-03-11 18:39 - 2021-03-28 03:55 - 000000000 ____D C:\Program Files (x86)\UsbFix
2021-03-11 18:39 - 2021-03-11 18:39 - 000003268 _____ C:\WINDOWS\system32\Tasks\UsbFix Monitor
2021-03-11 18:38 - 2021-03-11 18:38 - 004868504 _____ (SOSVirus) C:\Users\kikec\Desktop\UsbFix_2020.exe
2021-03-11 18:36 - 2021-03-11 18:36 - 000000000 ____D C:\Users\kikec\AppData\Local\mbam
2021-03-11 18:36 - 2021-03-11 18:36 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-11 18:35 - 2021-03-11 18:35 - 002084016 _____ (Malwarebytes) C:\Users\kikec\Desktop\MBSetup.exe
2021-03-11 18:32 - 2021-03-28 03:33 - 000000000 ____D C:\Program Files\CCleaner
2021-03-11 18:32 - 2021-03-18 11:41 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-11 18:32 - 2021-03-11 18:32 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-11 18:32 - 2021-03-11 18:32 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-03-11 18:32 - 2021-03-11 18:32 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-03-11 18:32 - 2021-03-11 18:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-03-11 18:31 - 2021-03-11 18:31 - 030972600 _____ (Piriform Software Ltd) C:\Users\kikec\Desktop\ccsetup577.exe
2021-03-10 11:05 - 2021-03-10 11:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-10 11:05 - 2021-03-10 11:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-10 11:05 - 2021-03-10 11:05 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-10 11:05 - 2021-03-10 11:05 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-10 11:05 - 2021-03-10 11:05 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-09 13:09 - 2021-03-09 13:09 - 001790024 _____ (Malwarebytes) C:\Users\kikec\Desktop\JRT.exe
2021-03-08 20:13 - 2021-03-23 14:57 - 000000000 ____D C:\Users\kikec\AppData\Roaming\ZHP
2021-03-08 20:13 - 2021-03-23 14:56 - 000000738 _____ C:\Users\kikec\Desktop\ZHPCleaner.lnk
2021-03-08 20:13 - 2021-03-08 20:13 - 003325080 _____ (Nicolas Coolman) C:\Users\kikec\Desktop\ZHPCleaner.exe
2021-03-08 20:13 - 2021-03-08 20:13 - 000000000 ____D C:\Users\kikec\AppData\Local\ZHP
2021-03-08 20:00 - 2021-03-08 20:00 - 008463216 _____ (Malwarebytes) C:\Users\kikec\Desktop\adwcleaner_8.1.exe
2021-02-28 23:10 - 2021-02-28 23:10 - 000000000 ____D C:\Users\kikec\AppData\LocalLow\Ubisoft
2021-02-28 22:18 - 2021-02-28 23:21 - 000000000 ____D C:\Users\kikec\AppData\Local\Ubisoft Game Launcher
2021-02-28 22:18 - 2021-02-28 22:18 - 000001327 _____ C:\Users\kikec\Desktop\Ubisoft Connect.lnk
2021-02-28 22:18 - 2021-02-28 22:18 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2021-02-28 22:18 - 2021-02-28 22:18 - 000000000 ____D C:\ProgramData\Ubisoft
2021-02-28 22:17 - 2021-02-28 22:17 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2021-02-27 03:28 - 2021-02-27 03:28 - 000000000 ____D C:\Users\kikec\AppData\Local\Apple Computer
2021-02-26 23:51 - 2021-02-28 22:21 - 000000000 ____D C:\JUEGOS
2021-02-26 17:21 - 2021-02-24 03:50 - 000038640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-03-28 03:57 - 2020-06-03 18:32 - 000000000 ____D C:\Program Files\Adobe
2021-03-28 03:56 - 2020-06-06 03:15 - 000000000 ____D C:\ProgramData\Adobe
2021-03-28 03:55 - 2020-06-03 18:34 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-03-28 03:55 - 2020-06-03 18:34 - 000000000 ____D C:\ProgramData\Documents\Adobe
2021-03-28 03:55 - 2020-06-03 18:32 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-03-28 03:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-28 03:44 - 2020-06-11 14:50 - 000000000 ____D C:\Users\kikec
2021-03-28 03:37 - 2020-06-11 15:00 - 002068152 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-28 03:37 - 2020-06-11 14:41 - 000899558 _____ C:\WINDOWS\system32\perfh00A.dat
2021-03-28 03:37 - 2020-06-11 14:41 - 000203876 _____ C:\WINDOWS\system32\perfc00A.dat
2021-03-28 03:37 - 2020-06-03 18:32 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-03-28 03:37 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-28 03:35 - 2020-11-02 18:15 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-03-28 03:35 - 2020-11-02 18:11 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-03-28 03:35 - 2020-11-02 18:11 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2021-03-28 03:35 - 2020-06-02 01:04 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Adobe
2021-03-28 03:34 - 2020-06-03 18:30 - 000000000 ____D C:\Users\kikec\AppData\Local\Adobe
2021-03-28 03:34 - 2020-06-02 01:48 - 000000000 ____D C:\Users\kikec\AppData\Local\D3DSCache
2021-03-28 03:34 - 2020-06-02 01:04 - 000000000 ____D C:\Users\kikec\AppData\Local\Packages
2021-03-28 03:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-28 03:33 - 2020-06-02 01:11 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-28 03:33 - 2020-06-02 01:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-28 03:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-28 03:31 - 2020-08-09 21:03 - 000000000 __SHD C:\Users\kikec\IntelGraphicsProfiles
2021-03-28 03:31 - 2020-06-27 14:04 - 000088720 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2021-03-28 03:30 - 2020-08-09 21:03 - 000000000 ____D C:\Intel
2021-03-28 03:30 - 2020-06-27 14:03 - 000270864 _____ C:\WINDOWS\system32\wpbbin.exe
2021-03-28 03:30 - 2020-06-27 14:03 - 000256656 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2021-03-28 03:30 - 2020-06-11 15:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-28 03:30 - 2020-06-11 14:57 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-28 03:29 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-28 03:07 - 2020-06-02 01:44 - 000000000 ____D C:\Users\kikec\AppData\Local\Battle.net
2021-03-28 01:08 - 2020-06-09 16:14 - 000000000 ____D C:\Program Files (x86)\Steam
2021-03-27 18:05 - 2020-06-11 14:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-27 06:58 - 2020-06-29 16:59 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-27 00:13 - 2020-06-13 02:30 - 000000000 ____D C:\WINDOWS\Minidump
2021-03-27 00:13 - 2020-06-02 00:56 - 002552359 ____N C:\WINDOWS\Minidump\032621-12031-01.dmp
2021-03-26 17:07 - 2020-07-10 01:18 - 000000000 ____D C:\Users\kikec\AppData\Roaming\vlc
2021-03-26 10:52 - 2020-07-23 19:23 - 000000730 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-03-24 23:44 - 2020-07-09 17:40 - 000000876 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-03-24 23:44 - 2020-07-09 17:40 - 000000876 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-03-23 19:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-23 18:08 - 2020-11-19 23:15 - 000000000 ____D C:\Users\kikec\AppData\Local\cache
2021-03-23 17:16 - 2020-11-08 00:11 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-03-23 15:13 - 2020-06-02 01:42 - 000000000 ____D C:\Users\kikec\AppData\Local\ElevatedDiagnostics
2021-03-22 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-22 11:25 - 2020-06-11 01:10 - 000000000 ____D C:\Users\kikec\AppData\Local\SquirrelTemp
2021-03-22 03:02 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-03-18 02:41 - 2020-06-02 01:08 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-18 02:26 - 2020-06-02 00:56 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-03-18 02:16 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-18 02:16 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-03-17 00:34 - 2020-06-02 01:12 - 000000000 ____D C:\Users\kikec\AppData\Local\NVIDIA
2021-03-17 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-17 00:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-17 00:00 - 2020-11-04 02:14 - 000000000 ____D C:\Users\DefaultAppPool
2021-03-16 23:45 - 2021-01-26 17:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-03-16 23:35 - 2020-06-02 00:56 - 002388645 ____N C:\WINDOWS\Minidump\031621-10953-01.dmp
2021-03-16 00:25 - 2020-06-02 00:56 - 002325385 ____N C:\WINDOWS\Minidump\031521-13171-01.dmp
2021-03-15 18:27 - 2020-10-23 19:56 - 000000000 ____D C:\Users\kikec\AppData\Roaming\uTorrent
2021-03-15 17:52 - 2020-06-06 03:37 - 000000000 ____D C:\Users\kikec\AppData\Local\CrashDumps
2021-03-13 05:57 - 2021-01-26 17:41 - 007119848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-03-11 18:41 - 2020-12-19 00:27 - 000000000 ____D C:\Users\kikec\AppData\Roaming\TS3Client
2021-03-11 18:40 - 2020-06-11 14:25 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-11 18:32 - 2020-11-19 16:36 - 000000000 ___HD C:\temp
2021-03-10 12:17 - 2020-06-11 14:57 - 000257904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-10 12:16 - 2019-12-07 11:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-10 12:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-10 10:55 - 2020-06-02 03:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 10:53 - 2020-06-02 03:21 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-10 01:29 - 2020-06-06 11:19 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-03-10 00:41 - 2020-06-11 15:01 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1230080478-1625414333-2754223215-1001
2021-03-10 00:41 - 2020-06-11 14:50 - 000002401 _____ C:\Users\kikec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 00:41 - 2020-06-02 01:06 - 000000000 ___RD C:\Users\kikec\OneDrive
2021-03-10 00:40 - 2020-06-06 11:19 - 000000000 ____D C:\Users\kikec\AppData\Local\BraveSoftware
2021-03-05 01:13 - 2020-12-27 17:25 - 000000549 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk
2021-03-05 01:13 - 2020-12-27 17:25 - 000000549 _____ C:\ProgramData\Desktop\Call of Duty Modern Warfare.lnk
2021-03-04 11:52 - 2020-06-29 16:58 - 000003652 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-04 11:52 - 2020-06-29 16:58 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-03 11:51 - 2021-02-25 16:44 - 000000000 ____D C:\Users\kikec\AppData\Roaming\Honeygain

==================== Archivos en la raíz de algunos directorios ========

2021-03-23 14:56 - 2021-03-23 14:56 - 003325080 _____ (Nicolas Coolman) C:\Users\kikec\ZHPCleaner.exe
2020-11-08 00:02 - 2020-11-08 00:02 - 000000016 _____ () C:\Users\kikec\AppData\Roaming\obs-virtualcam.txt
2020-08-19 19:41 - 2020-08-19 19:51 - 000001456 _____ () C:\Users\kikec\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2020-11-02 18:25 - 2020-11-02 18:25 - 000000000 _____ () C:\Users\kikec\AppData\Local\oobelibMkey.log
2020-06-04 17:24 - 2020-11-16 14:22 - 000007641 _____ () C:\Users\kikec\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

SABOCEKIK · 28 Marzo, 2021 02:02

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 26-03-2021
Ejecutado por kikec (28-03-2021 03:59:33)
Ejecutado desde C:\Users\kikec\Desktop
Windows 10 Pro Versión 20H2 19042.868 (X64) (2020-06-11 13:01:41)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrator (S-1-5-21-1230080478-1625414333-2754223215-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1230080478-1625414333-2754223215-503 - Limited - Disabled)
Guest (S-1-5-21-1230080478-1625414333-2754223215-501 - Limited - Disabled)
kikec (S-1-5-21-1230080478-1625414333-2754223215-1001 - Administrator - Enabled) => C:\Users\kikec
WDAGUtilityAccount (S-1-5-21-1230080478-1625414333-2754223215-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0420.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0420.1 - GIGABYTE)
4K Video Downloader (HKLM\...\{11CAD2D3-0918-4C25-ADEA-6A2E2D8224D2}) (Version: 4.15.1.4190 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{52c19095-d66a-43cc-a45a-ee9434df7074}) (Version: 4.15.1.4190 - Open Media LLC)
Ableton Live 10 Suite (HKLM\...\{258D42CD-A6B1-4F85-9988-D56D94F5196E}) (Version: 10.0.0.0 - Ableton)
Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_0_1) (Version: 18.0.1 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.4.2.541 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version:  - Adobe)
Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_0) (Version: 15.0 - Adobe Inc.)
Amazon Games (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\{4DD10B06-78A4-4E6F-AA39-25E9C38FA568}) (Version: 1.6.167.0 - Amazon.com Services, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE)
Application Verifier x64 External Package (HKLM\...\{77F3D72C-465F-BD51-890E-CC3914B1365F}) (Version: 8.100.26936 - Microsoft) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
Discord (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Diva (HKLM\...\u-he Diva_is1) (Version: 1.4.3.7422 - Team V.R)
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
ENE RGB HAL (HKLM\...\{B380DBDE-BA95-481B-92E9-52F2E5E84F24}) (Version: 1.00.15 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{adbc3d98-57f2-4d68-b155-138f8fb0f73d}) (Version: 1.00.15 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{26b207d1-1f37-4df9-8b3f-aeebbca6bb85}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2020.6 - FabFilter & Team V.R)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
ffdshow x64 v1.3.4531 [2014-06-28] (HKLM\...\ffdshow64_is1) (Version: 1.3.4531.0 - )
Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.)
Focusrite Thunderbolt 4.25.0.335 (HKLM\...\Focusrite Thunderbolt_is1) (Version: 4.25.0.335 - Focusrite Audio Engineering Ltd.)
Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.20.0406.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.20.0406.1 - GIGABYTE)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
Intel Driver && Support Assistant (HKLM-x32\...\{F0E9774D-C5A1-4C83-89F9-191E1334D476}) (Version: 21.1.5.2 - Intel) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{f3b1c211-1159-4262-bb97-84150cda9096}) (Version: 10.1.18243.8188 - Intel(R) Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{d0e4f33b-f383-4c75-8d81-ec92db2939eb}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{e159f285-6867-4ec7-83de-ddc54070f211}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{beabe998-b0dd-460a-82c3-f48ff70bca66}) (Version: 21.1.5.2 - Intel)
iZotope Iris 2 (HKLM-x32\...\iZotope Iris 2) (Version: 2.02c.455 - iZotope, Inc.)
iZotope Iris 2 Synthesizers 1 Library (HKLM-x32\...\iZotope Iris 2 Synthesizers 1 Library) (Version: 1.00 - iZotope, Inc.)
Kingston SSD Manager version 1.1.2.6 (HKLM-x32\...\{9A5DD901-0B98-4F2B-9421-B5975014184F}_is1) (Version: 1.1.2.6 - Kingston Digital, Inc)
Kits Configuration Installer (HKLM-x32\...\{B74E65FD-CC47-41C5-4B89-791A3F61942D}) (Version: 8.100.25984 - Microsoft) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version:  - Logitech)
Logitech Gaming Software 8.82 (HKLM\...\Logitech Gaming Software) (Version: 8.82.151 - Logitech Inc.)
Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2019 Redistributable (Arm64) - 14.27.29112 (HKLM-x32\...\{01f935ae-0738-4a6c-8e0e-907654e5af38}) (Version: 14.27.29112.0 - Microsoft Corporation)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{CF3A1CA6-5E5E-B4BD-6CF1-363056816CA2}) (Version: 8.100.26898 - Microsoft Corporation) Hidden
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.6.1.532 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version:  - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.12.1.883 - Native Instruments)
Native Instruments Maschine 2 Factory Library (HKLM-x32\...\Native Instruments Maschine 2 Factory Library) (Version: 1.3.5.2 - Native Instruments)
Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine MK3 Driver (HKLM-x32\...\Native Instruments Maschine MK3 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version:  - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.5.22 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.13.1.134 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.10.1.152 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.1.0.92 - Native Instruments)
Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.4.0.47 - Native Instruments)
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
NVIDIA Controlador de audio HD 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 461.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.92 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Product Portal (HKLM-x32\...\Product Portal) (Version:  - iZotope, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9034.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.39.212.2020 - Realtek)
Revo Uninstaller 2.2.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.5 - VS Revo Group, Ltd.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.20.0430.1 - GIGABYTE)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Roller Champions (HKLM-x32\...\Uplay Install 11899) (Version:  - Ubisoft)
SDK Debuggers (HKLM-x32\...\{9274C832-3D8A-A294-FDE8-8B9272357098}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0410.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0410.1 - GIGABYTE)
Skype versión 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\slack) (Version: 4.14.0 - Slack Technologies Inc.)
Soundtrack by Twitch (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372D0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Spotify (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\Spotify) (Version: 1.1.45.621.gdddebadc - Spotify AB)
SSD Utility (HKLM-x32\...\{F94D0022-026E-45C4-87A9-3422378DF2C9}) (Version: 4.0.0012 - KIOXIA Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.26.0 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.26.0 - General Workings, Inc.)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TSC version 1.1.0 (HKLM\...\WPDKR_is1) (Version: 1.1.0 - )
Twitch (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
UsbFix Anti-Malware Premium (HKLM-x32\...\Usbfix) (Version: 11.0.3.2 - SOSVirus (SOSVirus.Net))
ValhallaFreqEcho version 1.0.5 (HKLM-x32\...\{86164718-6457-42DE-8DB6-EA05F7045F2C}_is1) (Version: 1.0.5 - Valhalla DSP, LLC)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WavePad, editor de audio (HKLM-x32\...\WavePad) (Version: 10.87 - NCH Software)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23072 - Microsoft Corporation)
Windows Software Development Kit for Windows 8.1 (HKLM-x32\...\{ed3a6e6d-9661-4357-abe4-fcc03dc57a07}) (Version: 8.100.26936 - Microsoft Corporation)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
WPT Redistributables (HKLM-x32\...\{64F3FB9A-9250-B2D6-00B4-50BE0358AEE8}) (Version: 8.100.26936 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{BFF81CB5-E8C7-4184-FBB4-74ADFBC6CCCB}) (Version: 8.100.26936 - Microsoft) Hidden
Zoom (HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\ZoomUMX) (Version: 5.6.0 (589) - Zoom Video Communications, Inc.)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-03-28] (Adobe Systems Incorporated)
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.40421.0_x64__8wekyb3d8bbwe [2021-03-03] (Microsoft Corporation)
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt [2021-02-09] (INTEL CORP) [Startup Task]
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-24] (Microsoft Corporation)
Extensión de vídeo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-09-02] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-09-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-09-02] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-09] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-03-16] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.17.231.0_x64__dt26b99r8h8gj [2020-11-19] (Realtek Semiconductor Corp)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-58E656F47E1C} -> [Creative Cloud Files] => C:\Users\kikec\Creative Cloud Files [2021-03-28 03:44]
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\kikec\Dropbox [2021-03-23 18:16]
CustomCLSID: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-03-28] (Adobe Inc. -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\nvshext.dll [2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-03-28] (Adobe Inc. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============


==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========


(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2021-03-22 03:02 - 2021-03-22 03:02 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

2020-07-23 19:23 - 2021-03-26 10:52 - 000000730 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
10
58 965
192.168.137.40 sta_5DDF7A.mshome.net # 2021 1 3 27 9 41 54 580
580

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\Control Panel\Desktop\\Wallpaper -> D:\Fondos\fondo nebulosa2.png
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: brave => 3
MSCONFIG\Services: bravem => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: DSAService => 2
MSCONFIG\Services: DSAUpdateService => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: gadjservice => 2
MSCONFIG\Services: GigabyteUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HwmRecordService => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) SUR QC SAM => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: TwitchService => 3
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: XTU3SERVICE => 2
HKLM\...\StartupApproved\StartupFolder: => "NTKDaemon.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NIHardwareAccessibilityHelper.exe.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "LGHUB"
HKU\S-1-5-21-1230080478-1625414333-2754223215-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [TCP Query User{B92565CA-EC78-4577-ABB8-42DF55B36065}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{6161B207-EDEA-4BC7-95CF-796EA2FDF4B0}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{A7E797E1-01AB-4E97-A4B3-6DA30B935975}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{24316F43-5146-4772-AAB9-F80426C25D6E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{7E167394-9B4B-4271-A524-FFF67BDA0AAF}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4695B35E-D3E5-4CA7-BE56-52154E5D9FEB}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{9C645CA0-2512-4124-AA69-E3101FBA6F94}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{62D483F1-0D6C-4082-A42F-EDF65679CA5A}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{86C86446-95DA-47D3-9C7D-AF0B8E6A3D42}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{2851F75A-5B76-480B-8F98-B4C958FF0A96}] => (Block) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{97210A56-3C2F-4D61-AC37-7B16A502FA8B}] => (Block) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{BB7FCC99-218A-49CB-902E-25CFE06E12EF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{F1BD3619-CE1F-4C99-893F-9B5813C6FA37}] => (Allow) LPort=9009
FirewallRules: [{97EEE0DD-822B-4DC2-A48A-7861C578915A}] => (Allow) C:\Users\kikec\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A6452B86-2AE0-4286-9CE8-9140517E9E17}] => (Allow) C:\Users\kikec\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo
FirewallRules: [{1C2EF1A1-59D4-4DC7-836C-15C680DB1AC2}] => (Allow) C:\Users\kikec\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo
FirewallRules: [{3C4AE7D1-E6AA-48E3-84D3-CC1F8AE78C49}] => (Allow) LPort=9009
FirewallRules: [{56C3DD13-B84C-48E7-B2CE-AD43100AA14F}] => (Allow) LPort=9009
FirewallRules: [{A2121C40-CB7E-4402-94C0-AF603BEC0B9D}] => (Allow) LPort=9009
FirewallRules: [{5B0D75DD-8B24-4453-B4EA-C98873F4E218}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8AA2154C-F249-44BB-B3EC-23A6234595D6}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8C339734-CC77-48EB-8C53-5B63FF834AE9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{301CBFD8-1422-441E-BB50-305493D7E648}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{555C5A8A-6621-4BCB-BA2B-6678BBAA92F6}] => (Allow) D:\JUEGOS\STEAM\steamapps\common\Aim Lab\AimLab_tb.exe () [Archivo no firmado]
FirewallRules: [{18926472-6C16-45FF-A432-A298CFF6CCFC}] => (Allow) D:\JUEGOS\STEAM\steamapps\common\Aim Lab\AimLab_tb.exe () [Archivo no firmado]
FirewallRules: [{50497118-3704-4CC8-BFF9-73E0A43C77EF}] => (Allow) LPort=9009

==================== Puntos de Restauración =========================

23-03-2021 14:54:26 JRT Pre-Junkware Removal
26-03-2021 14:36:50 4K Video Downloader
26-03-2021 14:37:08 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508
28-03-2021 03:17:52 Revo Uninstaller's restore point - Adobe Premiere Pro 2021
28-03-2021 03:19:29 Revo Uninstaller's restore point - Adobe After Effects 2020
28-03-2021 03:20:36 Revo Uninstaller's restore point - Adobe Premiere Pro 2020
28-03-2021 03:22:41 Revo Uninstaller's restore point - Adobe Media Encoder 2021
28-03-2021 03:25:07 Revo Uninstaller's restore point - Adobe Photoshop CC 2019
28-03-2021 03:26:36 Revo Uninstaller's restore point - Adobe Media Encoder.exe
28-03-2021 03:28:19 Revo Uninstaller's restore point - Photoshop.exe - Shortcut
28-03-2021 03:28:46 Revo Uninstaller's restore point - Adobe Premiere Pro.exe

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (03/28/2021 03:31:02 AM) (Source: NIHardwareService) (EventID: 259) (User: )
Description: MIDIDevice: Unable to unlock BMIDI DLL/driver

Error: (03/28/2021 03:31:02 AM) (Source: NIHostIntegrationAgent) (EventID: 259) (User: )
Description: MIDIDevice: Unable to unlock BMIDI DLL/driver

Error: (03/28/2021 03:31:02 AM) (Source: NIHostIntegrationAgent) (EventID: 259) (User: )
Description: MIDIDevice: Unable to unlock BMIDI DLL/driver

Error: (03/28/2021 03:31:01 AM) (Source: NIHostIntegrationAgent) (EventID: 259) (User: )
Description: MIDIDevice: Unable to unlock BMIDI DLL/driver

Error: (03/28/2021 03:31:01 AM) (Source: NIHostIntegrationAgent) (EventID: 259) (User: )
Description: MIDIDevice: Unable to unlock BMIDI DLL/driver

Error: (03/28/2021 03:29:17 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, A system shutdown is in progress.
.

Error: (03/28/2021 03:29:17 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, A system shutdown is in progress.
]

Error: (03/28/2021 03:29:17 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, A system shutdown is in progress.
.


Errores del sistema:
=============
Error: (03/27/2021 12:13:20 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: El equipo se reinició después de una comprobación de errores. La comprobación de errores fue: 0x00000139 (0x000000000000000e, 0xffffef8a33e4f070, 0xffffef8a33e4efc8, 0x0000000000000000). Se guardó un volcado en: C:\WINDOWS\Minidump\032621-12031-01.dmp. Id. de informe: e324efad-539f-4ea2-908b-ff984399f688.

Error: (03/27/2021 12:13:18 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 11:11:44 PM del ‎3/‎26/‎2021 resultó inesperado.

Error: (03/25/2021 10:49:51 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: No se puede enlazar con el transporte subyacente para 192.168.137.1:9009. Es posible que la lista IP de solo escucha contenga una referencia a una interfaz que no existe en este equipo. El campo de datos contiene el número de error.

Error: (03/24/2021 11:49:14 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: No se puede enlazar con el transporte subyacente para 169.254.69.63:9009. Es posible que la lista IP de solo escucha contenga una referencia a una interfaz que no existe en este equipo. El campo de datos contiene el número de error.

Error: (03/24/2021 09:04:05 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: No se puede enlazar con el transporte subyacente para 169.254.69.63:9009. Es posible que la lista IP de solo escucha contenga una referencia a una interfaz que no existe en este equipo. El campo de datos contiene el número de error.

Error: (03/24/2021 05:48:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-98RK5DH)
Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/24/2021 05:48:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-98RK5DH)
Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/24/2021 05:48:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-98RK5DH)
Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido.


Windows Defender:
================
Date: 2021-03-28 03:54:24
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {11EDB08A-7D53-4D68-AAED-D1435A97D064}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-03-26 10:18:20
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {78E9653C-66C4-4C8A-B4F0-40CA40425155}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-03-25 10:00:44
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {E14F6FC0-2F57-4082-984A-3E8662B3C371}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-03-23 10:12:21
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {C7C86CD2-2CE5-4637-BD5F-3E478AF0AA2C}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-03-22 00:07:11
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {0A7805F0-6BEA-4B48-AE66-94A0AA1ECB95}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2021-03-18 02:26:21
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80004005
Descripción del error: Error no especificado 
Motivo: El controlador de filtro no examinó los elementos y está en el modo indirecto. Esto puede deberse a recursos insuficientes.

CodeIntegrity:
===============
Date: 2021-03-18 01:15:36
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-03-17 17:11:23
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.


==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. F6c 11/28/2019
Placa base: Gigabyte Technology Co., Ltd. B365M DS3H
Procesador: Intel(R) Core(TM) i5-9600K CPU @ 3.70GHz
Porcentaje de memoria en uso: 42%
RAM física total: 16253.78 MB
RAM física disponible: 9319.8 MB
Virtual total: 23677.78 MB
Virtual disponible: 16404.2 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:346.56 GB) (Free:169.53 GB) NTFS
Drive d: (DISCO DURO 1TB) (Fixed) (Total:929.87 GB) (Free:636.27 GB) NTFS
Drive e: () (Fixed) (Total:0.56 GB) (Free:0.1 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive f: (SSD KCM) (Fixed) (Total:447.13 GB) (Free:147.5 GB) NTFS
Drive g: (EXTRA 500gb) (Fixed) (Total:465.76 GB) (Free:218.47 GB) NTFS


==================== MBR & Tabla de particiones ====================
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 4.

==================== Final de Addition.txt =======================

SABOCEKIK · 28 Marzo, 2021 02:03

Gracias otra vez y buenas noches, descansa!

SABOCEKIK · 28 Marzo, 2021 02:03

Por cierto ya he eliminado todo cn revo, y he adquirido la licencia, previamente a pasar el FRST y el USBFix, se acabó jjeeje, para hacerlo todo más seguro

SABOCEKIK · 29 Marzo, 2021 23:01

Hola @Marr0n

Perdona que te pregunte por aquí, pero me compré 2 memorias ram nuevas para el trabajo, y las quiero analizar puesto que me han salido más pantallones azules jugando desde su instalación, he pasado una vez el memtest incluído en WIndows pero es muy corto y simple, no ha detectado nada. La primera vez que me compré 2 hará un año una estaba mal y este no me las detectaba, creo que fue el memtest84 quien lo hizo, detectó que una estaba corrupta y la tuve que devolver.

Ya sé que no es el tema pero como me dijiste de no descargar nada es para que me digas si es seguro o no, o qué puedo hacer para analizarlas sin salir de los esquemas!

Si no me equivoco es este:

Gracias.

K.

Marr0n · 30 Marzo, 2021 02:53

Hola, buenas @SABOCEKIK

De nada.

OK. Perfecto.

Sí, lo suyo seria pasar memtest para verificarlas, pero de una forma muy concreta que te diré. Cuando acabemos (no falta mucho de este tema). Abres un nuevo tema en HardWare me citas con el @Marr0n y yo te indico.

Ahora debes de hacer una COPIA DE SEGURIDAD DEL REGISTRO, para ello:

Reinicias el ordenador en Modo Normal.
Descargas DelFix en tu escritorio.
Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)
Marcas solamente la casilla de Create registry backup, el resto te aseguras de que no estén seleccionadas.
Presionas en Run.

Se abrirá el informe (DelFix.txt), puedes cerrarlo. Pero lo guardas por si en el futuro te lo pido/hace falta.

Seguidamente, CIERRAS TODOS LOS PROGRAMAS, vas a Inicio >> Ejecutar y escribes Notepad.exe

Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM-x32\...\RunOnce: [] => [X]
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
2021-03-28 03:30 - 2020-06-11 14:57 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-15 18:27 - 2020-10-23 19:56 - 000000000 ____D C:\Users\kikec\AppData\Roaming\uTorrent
FirewallRules: [{A6452B86-2AE0-4286-9CE8-9140517E9E17}] => (Allow) C:\Users\kikec\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo
FirewallRules: [{1C2EF1A1-59D4-4DC7-836C-15C680DB1AC2}] => (Allow) C:\Users\kikec\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo
Folder: C:\JUEGOS
VirusTotal: C:\Users\kikec\Downloads\00.EDIT TEMPLATES.rar

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas con el nombre de FIXLIST.TXT en tu escritorio (MUY IMPORTANTE). Pues en caso contrario no funcionará el SCRIPT, ambos ficheros (FRST.exe y FIXLIST.TXT ) y deben de estar en la ubicación del ESCRITORIO.

El anterior Script de reparación es personalizado para la máquina en concreto para la cual se fabricó y está hecho específicamente por un miembro del Staff. Si se tiene un problema parecido, por favor abra su propio tema para recibir ayuda personalizada y específica. Utilizar Scripts de otros Sistemas puede causar daños graves en su ordenador.

Finalmente (OJO, en MODO NORMAL):

Ejecutas nuevamente FRST.exe (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador).
Presionas sobre Fix/Corregir y esperas a que finalice el proceso. No hagas nada con el PC mientras este realizando dichas reparaciones, incluso si parece ser que se ha quedado colgado. No lo toques y esperas.
Cunado finalice, en el ESCRITORIO se creará el fichero FIXLOG.TXT lo traes en tu próxima respuesta.
Reinicias el ordenador en Modo Normal compruebas durante un rato el funcionamiento de este y comentas como sigue el problema inicialmente planteado.

Muy Importante Coloca el reporte que te he pedido como se muestra en la siguiente imagen:

Salu2.

SABOCEKIK · 30 Marzo, 2021 11:16

Fixlog.txt (942,3 KB)

Hola @Marr0n ,

Te adjunto el reporte en 2 partes: Era gigante, me Lo había divido en 3 y aún así me decía qu epasaba de muchísimo el máximo permitido! Lo he saparado en 2 con los nombres “FIXLOG” y “FIXLOG2”.

Me han salido más pantallas azules (diferentes encima) y ahora me va realmente lento el pc. Escribiendote esto solo tengo Chrome abierto y escribo con retardo de medio segundo aprox.

Gracias.

SABOCEKIK · 30 Marzo, 2021 11:18

Aquí el otro:

FIXLOG2.txt (888,7 KB)

Abrazo.

Marr0n · 30 Marzo, 2021 20:32

Hola @SABOCEKIK

OK. Sí. Me lo imaginaba que sería tan largo.

Sube este archivo: 00.EDIT TEMPLATES.rar a VirusTotal como ya sabes y me traes el enlace.

Realizas un análisis con Dr Web CureIt siguiendo las instrucciones de su manual perfectamente explicadas. Eso sí, descarga Dr web Cure It de: Download Dr.Web CureIt! Free tool to cure your PC from malware

Ok. No tendría que ser así con lo que hemos hecho. De todas formas dime que decían/ponía en esas pantallas azules. Para ello, haces lo que se indica en este manual:

Me pones/traes los reportes en texto de dichas pantallas azules.

Salu2.

SABOCEKIK · 30 Marzo, 2021 21:08

Buenas @Marr0n

No cabe en VirusTotal (tamaño máximo 650MB). El archivo es una carpeta para el trabajo, de organización de material. Lo he descargado hará menos de una semana y me lo ha pasado un compañero de trabajo que lleva 1 mes trabajando. Contiene carpetas vacías, alguna fuente, un proyecto de Adobe Premiere Pro, algunos PDF informativos para sobre X temas del trabajo a realizar… poco más…

Luego te lo hago, no sé si tardará mucho pero voy a hacerlo algo más tarde por si a caso.

Al igual que lo de las pantallas azules. Hice fotos (luego te paso implícitamente lo que me pdies). Nombro por fotos:

IRQL_NOT_LESS_OR_EQUAL SYSTEM SERVICE EXCEPTION (failed: win32kbase.sys) SYSTEM SERVICE EXCEPTION SYSTEM SERVICE EXCEPTION (failed: dxgkrnl.sys)

Este último que creo que es algo del kernel me es familiar de hace tiempo cuándo tenía más Bluescreens…

Por cierto qué debería hacer si descargo algún archivo para comprobarlo? Pasarlo siempre por VirusTotal? Si como en este caso no cabe… ¿?

Abrazo.

K

Marr0n · 30 Marzo, 2021 21:34

Hola @SABOCEKIK

OK entonces no hace falta subirlo por todo lo que cuentas.

OK. Depende de toda la info que tengas… y cosas varias, pero seguro que 1 H 30 min tarda…

OK. De todas formas tendrás que abrir un tema aparte para que alguien te ayude con esas pantallas azules (puesto que este tema era de infecciones). De todas formas… cuanto me traigas este log de Dr Web haremos algunas cosas a nivel de sistema operativo que podrían solucionar alguna de esas pantallas azules NO HACE falta que pongas el resto de cosas que te he pedido de las pantallas azules… pues ya abrirás el tema concreto.

Pues depende del archivo… pero si puede ser pasarlo por VirusTotal o servicios similares, que la fuente de donde viene el archivo sea de confianza, descargar solo de sitios oficiales, tener un buen antivirus y activada la protección en tiempo real, si es el caso (sitio/lugar que descargas el FILE) comprobar que el hash del archivo descargado y el que te da el sitio que lo has descargado son iguales y un largo etc…

Lee esto de lo del hash que digo >> Verificar MD5, SHA-1 y SHA-256 Checksum en Windows 10 - Solvetic

Salu2.

SABOCEKIK · 31 Marzo, 2021 16:58

Buenas @Marr0n

No me caben los reportes, son demasiado grande y se satura hasta la pagina… Alguna idea??

Marr0n · 2 Abril, 2021 13:37

Hola, buenas @SABOCEKIK primero de todo disculpa que haya tardado en responder. Llevo días muy ajetreados y complicados…

Entiendo que te refieres al log de Dr web Cure It bine, eso es porque estás intentando poner todo el log entero de este.

¿Seguiste el manual de este e hiciste esto exactamente? Lo de la imagen:

Pues debe de estar en Mínimo, ya que en caso contrario tendrás problemas para publicarlo en tu siguiente respuesta debido a su longitud. De todas formas también nos aportaría información inútil, con el mínimo sería más que suficiente.

Aparte, solo debes de poner la parte del informe (todo y siendo Mínimo) que dice Start Curing y desde allí hasta abajo. Como puedes ver en la imagen:

Respondes a las preguntas que te haya hecho y traes lo solicitado.

Salu2.

SABOCEKIK · 2 Abril, 2021 14:03

Si lo puse en mínimo, aún así era inmenso…

por supuesto.

Me costó bastante encontrar el log y cuando lo encontré ya no volvi al manual para ver qué hacer con el…fallo mio, perdona

Aquí va:

-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------

C:\Program Files (x86)\UsbFix\UsbFix.exe - quarantined, reboot required
C:\Program Files (x86)\UsbFix\Un-UsbFix.exe - quarantined
C:\Users\kikec\Desktop\UsbFix_2020.exe - quarantined

Total 1060005654781 bytes in 753227 files scanned (838218 objects)
Total 753240 files (825936 objects) are clean
Total 3 files (4 objects) are infected
Total 3 files are neutralized
Total 182 files (12272 objects) are raised error condition
Scan time is 07:56:08.214

Un abrazo. Y muchas gracias de nuevo por tu paciencia, la verdad desbordo. Justo empecé ahora a trabajar y se me junto todo jajajaj he llegado a pensar de comprarme otro pc y mira que este es nuevo, no ha hecho más que darme dolores de cabeza desde que lo compré…

Marr0n · 2 Abril, 2021 14:28

Hola @SABOCEKIK

Sí, ok es normal aún siendo en mínimo es superextenso por eso lo decía.

Ok. No pasa nada.

Respecto a Dr Web >> son falsos positivos, ya que es el Usbfix que utilizamos en su momento. Todo y que por lo que veo dice:

Total 182 files (12272 objects) are raised error condition

Así que en todo el reporte que es super extenso, busca en alguna parte que diga: Total 182 files (12272 objects) are raised error condition o bien Total 182 files are raised error condition o algo aprecido y tendrían que acabar con la palabra read error.

Pues traes toda esa parte donde aparezcan los 182 archivos (será así o algo parecido en cuanto a los mensajes que indico).

no pasa nada.

Bueno cosas que pasan… pero por suerte casi todas estas cosas se pueden arreglar de una u otra forma.

Salu2.

SABOCEKIK · 2 Abril, 2021 18:19

Buenas!

No he podido encontrar ninguna sección con todos los disc errors, al menos de momento jajajaja sigo scrolleando porque hay una cantidad de texto increíble.

Vale 2 he visto de las carpetas de “temp files” de Media Encoder y Premiere Pro, programas de edición.

Aunque acabo de encontrar estos!!!

C:\DumpStack.log.tmp - read error
C:\hiberfil.sys - read error
C:\pagefile.sys - read error
C:\swapfile.sys - read error

Me da que estos ya son otra cosa jejeje, sigo buscando y te voy a ir poniendo por bloques, pero creo que estos son bastante relevantes.

Abrazo.

Marr0n · 2 Abril, 2021 18:30

Ok.

Estos que has puesto son de cosas varias del sistema no están infectados.

OK.

Por todo lo que dices y lo que me has enseñado no creo que haya nada sospechoso. Así que si puedes encontrar el resto, bien, de todas formas ponlo. Si llevas un rato buscando y no encuentras/aparecen más. Con lo que hemos hecho ya es más que suficiente para determinar que la máquina ya no está infectada y podríamos proseguir al paso de estabilización/reparación del sistema.

Ya me cuentas y si no saltamos a lo otro.

Salu2.

SABOCEKIK · 2 Abril, 2021 18:45

Buenas, te adjunto alguno más que he encontrado, están algo liados con buenos, pero si te contase como he tenido que buscarlos… (no tengo word y se me ha ocurrido meterlos en un doc de drive, la cosa es que mucho texto peta la pagina entonces he tenido que ponerlo al 1 e ir pegando trozos de reportes, para usar el buscador ahi y ver donde estaban los erorres).

Ahí van máquina:

C:\Users\kikec\AppData\Local\Temp\com.adobe.dynamiclinkmanager15.0 - read error
C:\WINDOWS\system32\config\systemprofile\AppData\LoC:\WINDOWS\system32\config\BBI - read error
C:\WINDOWS\system32\bg-BG\quickassist.exe.mui - Ok
C:\WINDOWS\system32\config\BBI.LOG1 - read error
C:\WINDOWS\system32\config\BBI.LOG2 - read error
cal\Microsoft\Windows\Notifications\WPNPRMRY.tmp - read error
C:\WINDOWS\system32\config\DEFAULT - read error
C:\WINDOWS\system32\config\DEFAULT.LOG1 - read error
C:\WINDOWS\system32\config\COMPONENTS{53b39e63-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms - Ok
C:\WINDOWS\system32\config\BBI{53b39ea0-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms - Ok
C:\WINDOWS\system32\config\components{99f64201-ed3e-11ea-9eeb-b42e99cf4f17}.TM.blf - Ok
C:\WINDOWS\system32\config\components{99f64201-ed3e-11ea-9eeb-b42e99cf4f17}.TMContainer00000000000000000002.regtrans-ms - Ok
C:\WINDOWS\system32\config\DEFAULT.LOG2 - read error
C:\WINDOWS\system32\config\SAM - read error
C:\WINDOWS\system32\config\SAM.LOG1 - read error
C:\WINDOWS\system32\config\SAM.LOG2 - read error
C:\WINDOWS\system32\config\ELAM{53b39eac-18c4-11ea-a811-000d3aa4692b}.TM.blf - Ok
C:\WINDOWS\system32\config\drivers{99f641fa-ed3e-11ea-9eeb-b42e99cf4f17}.TMContainer00000000000000000001.regtrans-ms - Ok
C:\WINDOWS\system32\config\ELAM{53b39eac-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms - Ok
C:\WINDOWS\system32\config\ELAM{53b39eac-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms - Ok
C:\WINDOWS\system32\config\SECURITY - read error
C:\WINDOWS\system32\config\SECURITY.LOG2 - read error
C:\WINDOWS\system32\config\SECURITY.LOG1 - read error
C:\WINDOWS\system32\config\SAM{53b39e57-18c4-11ea-a811-000d3aa4692b}.TM.blf - Ok
C:\WINDOWS\system32\config\SAM{53b39e57-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms - Ok
C:\WINDOWS\system32\config\SAM{53b39e57-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms - Ok
C:\WINDOWS\system32\config\SOFTWARE - read error
C:\WINDOWS\system32\config\SOFTWARE.LOG1 - read error
C:\WINDOWS\system32\config\SOFTWARE.LOG2 - read error
C:\WINDOWS\system32\config\SECURITY{53b39e4b-18c4-11ea-a811-000d3aa4692b}.TM.blf - Ok
C:\WINDOWS\system32\config\SECURITY{53b39e4b-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms - Ok
C:\WINDOWS\system32\config\SECURITY{53b39e4b-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms - Ok
C:\WINDOWS\system32\config\SYSTEM - read error
C:\WINDOWS\system32\config\SYSTEM.LOG1 - read error
C:\WINDOWS\system32\config\SYSTEM.LOG2 - read error
C:\WINDOWS\system32\config\systemprofile\AppData\Local\D3DSCache\b3474141becdd6ac\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val - Ok
C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.log - read error
C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSS.chk - Ok
C:\WINDOWS\system32\config\systemprofile\AppData\Local\D3DSCache\b3474141becdd6ac\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx - Ok
C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.jfm - read error
C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat - read error
C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing\Storage\DSSres00001.jrs - Ok

C:\DumpStack.log.tmp - read error
C:\hiberfil.sys - read error
C:\Install.log - Ok
C:\pagefile.sys - read error
C:\swapfile.sys - read error

F:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6ca38-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6ca58-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6ca6c-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6ca87-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6caa1-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6cab6-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6cacb-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{70d6cadf-8e80-11eb-9fb3-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{d1ac02f3-90d7-11eb-9fb8-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
F:\System Volume Information\{f1790d48-9143-11eb-9fbc-b42e99cf4f17}{3808876b-c176-4e48-b7ae-04046e6cc752} - read error
E:\Boot\BCD.LOG - read error
E:\Boot\BCD - read error

creo que hay 5 cortos que son los de antes jeje.

SABOCEKIK · 2 Abril, 2021 18:50

Si no hace falta que busque más podemos seguir si quieres. si me dices busco más