Adware.Mindspark y PUP.Optional inborrables

Una vez hayas hecho lo de mi anterior mensaje, haces esto:

Necesitaré logs frescos de FARBAR.

Así que haz esto:

[color=#2271b3] EN BUSCA / ELIMINACIÓN DE MALWARE [/color]

Desactivas tu antivirus Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad que tengas activado.

[color=#ff00]LO DESCARGAS EN TU ESCRITORIO MUY IMPORTANTE[/color] (y no en otro sitio).

Descargas Farbar Recovery Scan Tool [color=#ff00]MUY IMPORTANTE[/color] >> seleccionas la versión adecuada para la arquitectura correspondiente de tu Ordenador (32 o 64bits). ¿Cómo saber si mi Windows es de 32 o 64 bits.?

Una vez descargado FRST, desconectas tu equipo de completamente de Internet (apagas el router) >> Super Importante. Acto seguido, cierras también cualquier otro programa que tengas abierto.

Farbar Recovery Scan Tool

1. Ejecutas el FRST.exe[size=2] (Si utilizas Windows Vista/7/8 o 10, presionas click derecho y seleccionas Ejecutar como Administrador).[/size]

2. Aparecerá una ventana con un mensaje de Disclaimer/Responsabilidad, presionas sobre Si o Yes.

3. En la ventana principal del programa presionas sobre Analizar/Scan y esperas a que finalice el análisis.

4. Aparecerán dos logs/reportes que serán: Frst.txt y Addition.txt, estos quedarán guardados en el escritorio.

[color=#ff00]Activas de nuevo tu antivirus y cualquier programa de seguridad que tengas activado.[/color] [color=#ff00]También conectas nuevamente tu equipo a Internet.[/color]

[color=#2271b3] PRÓXIMA RESPUESTA[/color]

Pegas los reportes de FRST.txt y Addition.txt. Debes de poner ambos reportes todos enteros con absolutamente todo su contenido. Deberás de realizar varios mensajes si recibes un mensaje de error/advertencia indicando que es muy largo dicho reporte que formará el mensaje (más de 50.000 carácteres aprox.).

NOTA IMPORTANTE

[color=#ff0000]Por Favor, mientras estemos desinfectando tu maquina o terminando de hacerlo:[/color]

• No realices pasos/acciones que NOSOTROS no te hayamos indicado.
• No descargues NADA de Internet y/o conectes dispositivos externos a tu equipo.
• No instales NADA (programas/software/complementos/extensiones del navegador…).
• No ejecutes otros programas de seguridad (Antivirus, Antimalware, ANTINADA…).
• No realices por tu cuenta otros procedimientos.
• Usa tu equipo EXCLUSIVAMENTE para desinfectarlo siguiendo nuestras indicaciones.

Muy Importante Coloca los diferentes reportes que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Salu2.

en los 3 pasos descritos encuentro las carpetas, los registros, pero no encuentro las extensiones, al parecer están ocultas o algo, ni en las carpetas encuentro las extensiones descritas, las busqué antes también tanto por dirección como por editor de registro, ahora te mando los logs de FARBAR

Aquí te dejo los logs, sin internet ni antivirus, por si te figura lightshot es por que lo reinstalé, de su página oficial, luego de hacer todos los escaneos anteriores, en este seguro ya te figura. 1ra parte del FRST.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 05-11-2023 02
Ejecutado por darli (administrador) sobre LAPTOP-0HHCN5FS (ASUSTeK COMPUTER INC. TUF Gaming FX505DT_FX505DT) (02-12-2023 09:38:03)
Ejecutado desde C:\Users\darli\OneDrive\Escritorio\FRST64.exe
Perfiles cargados: darli
Plataforma: Microsoft Windows 10 Home Versión 22H2 19045.3693 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOSD.exe
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\GPUPowerSavingPlugin\GPUPowerSavingTrayIcon.exe
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.51895FA4EA97F_2.2347.0.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <3>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe [58391840 2023-12-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe [58391840 2023-12-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49958368 2022-02-01] (Google LLC -> )
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [Hamul] => C:\Users\darli\AppData\Local\Hamul\Hamul.exe (Ningún archivo)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe [58391840 2023-12-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [Epic Privacy Browser Installer] => C:\Users\darli\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe [509096 2022-03-10] (Google Inc (TEST) -> Epic Privacy Browser) [Archivo no firmado]
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44529568 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Run: [MicrosoftEdgeAutoLaunch_CF55DE46E789CC81D8A11C20381B84FC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1691082389-834839770-2912174567-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe [58391840 2023-12-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1691082389-834839770-2912174567-500\...\Run: [MicrosoftEdgeAutoLaunch_3EFD3FAB506FA325099A3EE9A1AA66DE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe [58391840 2023-12-02] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\EPSON L395 Series 64MonitorBE: C:\Windows\system32\E_YLMBRWE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Archivo no firmado]
HKLM\...\Print\Monitors\Nitro PDF Port 13 Monitor: C:\Windows\system32\NxPrinterMonitor13.dll [360944 2021-02-11] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {06280A58-FCEF-4D04-9B4B-95073BECB04E} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusHotkey.exe [310912 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {62D85229-267E-4225-A32E-120486E34974} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusUpdateChecker.exe [797816 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {9407A34E-C7D4-439D-AAA2-BC89A948894D} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308584 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {D85F0579-4A6F-4570-A0FC-6B3CF7C814F2} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1857384 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {ABBA8984-E05A-4CAB-92E5-1C2B6B846F31} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d63a15fc9b6415 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2020-06-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {FCBAEC37-A787-4D14-97AC-BF1586266450} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2020-06-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {690019D7-CBA0-4270-BBB6-29A50CB3AA13} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2023-09-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {CAEF903E-E3FA-4B6F-A101-50DB3FF7FC60} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {B8DE2F73-5BED-4697-B0F8-FD02CF571C59} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E7F7B9CF-8946-4F16-8803-D0409BC5B4B1} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "06cdf19a-850a-47d9-9cb6-9fe4a016f41b" --version "6.18.10838" --silent
Task: {945B4E21-AEC0-4657-AA6E-064BF331591B} - System32\Tasks\CCleanerSkipUAC - darli => C:\Program Files\CCleaner\CCleaner.exe [37546912 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FD3BD248-9D63-4686-B639-38CE2C88CE61} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782216 2019-01-28] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {A1763244-939A-4204-907F-FB9F5E4E3857} - System32\Tasks\EPSON L395 Series Update {1D9EE204-A281-4E34-9A65-A0B89F802B88} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRWE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {06ADA131-C67F-4337-94BA-58F4739BCD8F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-23] (Google LLC -> Google LLC)
Task: {FB450D6C-D193-4465-9F6E-DA729830E378} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-23] (Google LLC -> Google LLC)
Task: {F7F5D2C8-F00D-4DFD-930F-CA677DD438D1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28424376 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {11ADF157-7588-4E1F-9445-63E1FB565FCF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28424376 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {30E6DE32-A5C4-4423-9770-B7E6716341B6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305608 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DF02D85-8359-4116-B43A-48DA0FE653A0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305608 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7E26C014-AAA7-4721-8F9E-D8EB9049708A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169920 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C94762A9-E630-41A5-B8D3-3C96F675B53D} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
Task: {300FF9BA-D131-43DE-BDC4-F51758FFDA57} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3BA470C6-2B74-4F01-9D07-1DDA56D38332} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F3180CD3-022E-45D1-A45B-6F74E572F6AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9CCC8B24-2B62-4EB2-A492-7647E476042A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D996E9E1-C702-4DFB-A351-7327EE04890C} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
Task: {DD530319-D703-45C7-ABC7-36F5A2D7EA98} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-12-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {4D80D8D6-3BF7-4E2E-9D71-3A3EB1AA72C2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-12-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {E872E573-3098-495F-AC5C-3A3C99F3927D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B2C65050-DB03-4F3C-848C-25CCA5915BE5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E0CD5379-9819-4D05-8D0A-1E3CC0619F40} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2324DDC0-C137-40DF-A1BF-B9F52EDC086A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32FAF263-93D7-4430-A405-66717188891F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7846D940-19A2-460E-9A8E-5BC19EA4F0A9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C502CCA7-8CC3-4EED-9558-FA0D5F6BC8F9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {74586225-5ACE-4937-8DD3-E20496A58C7C} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [862192 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON L395 Series Update {1D9EE204-A281-4E34-9A65-A0B89F802B88}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRWE.EXE:/EXE:{1D9EE204-A281-4E34-9A65-A0B89F802B88} /F:UpdateWORKGROUP\LAPTOP-0HHCN5FS$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\MyASUSTask.job => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_38716246a7897090\ASUSSystemDiagnosis\ModifyMyASUSSetting.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54
Tcpip\..\Interfaces\{271854cb-b5a8-481f-943d-5e2900896ce2}: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54
Tcpip\..\Interfaces\{697982ea-6775-4565-8081-20395503a7dc}: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54

Edge: 
=======
Edge Profile: C:\Users\darli\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-02]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\darli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-30]
Edge Extension: (Edge relevant text changes) - C:\Users\darli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-30]

FireFox:
========
FF DefaultProfile: 853t7ik9.default
FF ProfilePath: C:\Users\darli\AppData\Roaming\Mozilla\Firefox\Profiles\853t7ik9.default [2023-11-30]
FF ProfilePath: C:\Users\darli\AppData\Roaming\Mozilla\Firefox\Profiles\m9iz7lp5.default-release-1698681956940 [2023-11-30]
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-11-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-11-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1691082389-834839770-2912174567-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\darli\AppData\Local\Epic Privacy Browser\Installer\1.3.29.13\npEpicUpdate3.dll [2022-03-10] (Google Inc (TEST) -> Epic Privacy Browser) [Archivo no firmado]
FF Plugin HKU\S-1-5-21-1691082389-834839770-2912174567-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\darli\AppData\Local\Epic Privacy Browser\Installer\1.3.29.13\npEpicUpdate3.dll [2022-03-10] (Google Inc (TEST) -> Epic Privacy Browser) [Archivo no firmado]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default [2023-12-02]
CHR DownloadDir: E:\Downloads
CHR Notifications: Default -> hxxps://web.whatsapp.com; hxxps://www.facebook.com; hxxps://www.instagram.com
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Undetectable AdBlocker) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcfcpohokifjldeandkfjoboemihipmb [2023-11-06]
CHR Extension: (WebChatGPT: ChatGPT con acceso a internet) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpfemeioodjbpieminkklglpmhlngfcn [2023-12-01]
CHR Extension: (MaxAI.me: Utiliza ChatGPT AI con un solo clic en cualquier lugar) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhnlakgilnojmhinhkckjpncpbhabphi [2023-11-27]
CHR Extension: (UltraSurf Security, Privacy & Unblock VPN) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjnbclmflcpookeapghfhapeffmpodij [2023-05-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-11-30]
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-11-30]
CHR Extension: (Presentaciones) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-09]
CHR Extension: (Adobe Acrobat) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-07-09]
CHR Extension: (Hojas de cálculo) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-09]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-07-09]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-09]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-07-09]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-09]
CHR Extension: (Chrome Media Router) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-02]
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-11-30]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-03]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-19]
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-11-30]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-22]
CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\darli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-22]
CHR Profile: C:\Users\darli\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-30]
CHR HKU\S-1-5-21-1691082389-834839770-2912174567-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\darli\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2021-07-10]
CHR HKU\S-1-5-21-1691082389-834839770-2912174567-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

2da parte del FRST.txt

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5525576 2023-11-09] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe [401880 2023-11-30] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2020-06-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe [1177320 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [501608 2023-08-18] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe [1631976 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe [772840 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2020-06-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe [508032 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [681832 2023-10-17] (ASUSTeK COMPUTER INC. -> ASUS)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe [1111160 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe [641144 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [834280 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-03-23] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13776568 2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4582080 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-03-23] (EasyAntiCheat Oy -> Epic Games, Inc)
S2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-10-30] (Malwarebytes Inc. -> Malwarebytes)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1796568 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14283048 2021-04-29] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746688 2021-04-28] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 LightingService; "C:\Program Files (x86)\LightingService\LightingService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [59440 2023-08-17] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-23] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSAIO.sys [49312 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusWmiAcpi.sys [48808 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [3374096 2021-08-19] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [205552 2021-02-12] (RH Software Ltd -> Ray Hinchliffe)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
R1 TBoxDrv; C:\Program Files\AndroidTbox\TBoxDrv.sys [271600 2017-09-11] (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [812208 2020-11-26] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 UniSafe; C:\WINDOWS\system32\drivers\UniSafe.sys [581912 2020-11-26] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-10-01] (Microsoft Corporation) [Archivo no firmado]
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2020-08-26] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239616 2021-04-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249536 2021-04-28] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174728 2021-04-28] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-12-01 13:43 - 2023-12-02 07:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-30 12:23 - 2023-11-30 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2023-11-30 12:23 - 2023-11-30 12:23 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2023-11-30 11:15 - 2023-11-30 11:15 - 000000008 _____ C:\ProgramData\ntuser.pol
2023-11-30 11:09 - 2023-11-30 11:09 - 000000000 ____D C:\WINDOWS\ERUNT
2023-11-30 09:53 - 2023-11-30 09:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2023-11-30 09:53 - 2023-11-30 09:53 - 000000000 ____D C:\Program Files\VS Revo Group
2023-11-30 09:49 - 2023-11-30 09:49 - 000000000 ____D C:\Users\darli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nakama.us
2023-11-09 08:47 - 2023-11-09 08:47 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-11-03 10:41 - 2023-11-03 10:41 - 000000000 ____D C:\Users\darli\AppData\Roaming\Microsoft\Network

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-12-02 09:38 - 2023-10-22 10:55 - 000000000 ____D C:\FRST
2023-12-02 09:37 - 2020-08-23 15:33 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-02 09:37 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-02 09:27 - 2020-08-23 15:18 - 000000000 ____D C:\Users\darli\AppData\Local\CrashDumps
2023-12-02 08:55 - 2021-12-17 00:13 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-02 08:55 - 2020-08-23 15:21 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-02 07:58 - 2023-07-15 10:13 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-12-02 07:58 - 2023-07-15 10:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-02 07:58 - 2020-10-02 05:01 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-12-02 07:52 - 2023-10-30 05:42 - 000000000 ____D C:\Program Files\CCleaner
2023-12-02 07:52 - 2021-09-08 14:47 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-12-02 07:52 - 2020-08-23 15:18 - 000000000 ____D C:\Users\darli\AppData\Local\D3DSCache
2023-12-02 07:51 - 2023-10-22 10:26 - 000000000 ____D C:\Users\darli\AppData\Roaming\asus_framework
2023-12-02 07:51 - 2020-06-03 21:08 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-01 17:01 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-01 17:01 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-01 14:39 - 2020-06-03 21:12 - 000000000 ____D C:\Program Files\ASUS
2023-12-01 13:47 - 2019-10-18 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-01 09:58 - 2023-10-16 19:49 - 000000000 ____D C:\Users\darli\AppData\Local\Malwarebytes
2023-11-30 14:55 - 2020-08-23 15:21 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-30 14:50 - 2020-10-02 05:01 - 000003852 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-30 14:50 - 2020-10-02 05:01 - 000003728 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-30 13:52 - 2022-05-16 08:39 - 000000000 ____D C:\Users\darli\AppData\Roaming\Microsoft\Word
2023-11-30 13:52 - 2020-10-02 04:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-30 13:20 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2023-11-30 11:22 - 2020-10-02 13:06 - 001804498 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-30 11:22 - 2019-12-07 09:55 - 000801892 _____ C:\WINDOWS\system32\perfh00A.dat
2023-11-30 11:22 - 2019-12-07 09:55 - 000159088 _____ C:\WINDOWS\system32\perfc00A.dat
2023-11-30 11:15 - 2021-05-10 00:58 - 000000000 ____D C:\Program Files\TeamViewer
2023-11-30 11:15 - 2020-10-02 05:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-30 11:15 - 2020-10-02 04:56 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-30 11:15 - 2019-12-07 04:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-11-30 11:11 - 2020-10-02 05:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2023-11-30 11:11 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2023-11-30 11:11 - 2019-03-18 23:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-11-30 11:09 - 2023-10-22 10:31 - 000000247 _____ C:\DelFix.txt
2023-11-30 11:08 - 2023-10-30 05:42 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-11-30 10:44 - 2020-08-23 15:58 - 000000059 _____ C:\Users\darli\AppData\Local\UserProducts.xml
2023-11-30 10:36 - 2021-04-13 23:34 - 000000000 ____D C:\Users\darli\OneDrive\Documentos\Wondershare
2023-11-30 10:33 - 2020-11-26 17:10 - 000000000 ____D C:\Users\darli\.android
2023-11-30 09:49 - 2020-08-26 22:07 - 000000000 ____D C:\Users\darli\AppData\Local\Hamul
2023-11-30 09:45 - 2020-06-03 21:14 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-11-30 09:45 - 2020-06-03 21:08 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-29 19:56 - 2020-08-23 15:35 - 000000000 ____D C:\Users\darli\AppData\Local\Publishers
2023-11-29 19:56 - 2020-08-23 15:20 - 000000000 ____D C:\Users\darli\AppData\Local\PlaceholderTileLogoFolder
2023-11-29 19:56 - 2020-08-23 15:18 - 000000000 ____D C:\Users\darli\AppData\Local\Packages
2023-11-29 19:56 - 2020-08-23 15:12 - 000000000 ____D C:\ProgramData\Packages
2023-11-29 09:18 - 2020-10-01 11:14 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-23 22:37 - 2022-02-08 21:20 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-23 22:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-11-23 11:35 - 2023-10-30 05:42 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-23 11:35 - 2023-10-30 05:42 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-11-21 23:16 - 2022-05-15 21:39 - 000000000 ____D C:\Users\darli\AppData\Roaming\Microsoft\PowerPoint
2023-11-20 21:25 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-20 20:39 - 2022-05-20 22:10 - 000002415 _____ C:\Users\darli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-17 12:28 - 2020-10-02 04:56 - 000440712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-17 12:27 - 2020-11-04 01:35 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-11-17 12:26 - 2020-10-01 21:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\es-MX
2023-11-17 12:26 - 2020-10-01 21:34 - 000000000 ____D C:\WINDOWS\es-MX
2023-11-17 12:26 - 2019-12-07 09:57 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-17 12:26 - 2019-12-07 09:57 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-17 12:26 - 2019-12-07 09:55 - 000000000 ____D C:\WINDOWS\SysWOW64\es
2023-11-17 12:26 - 2019-12-07 09:55 - 000000000 ____D C:\WINDOWS\system32\es
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-17 12:26 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-17 12:26 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2023-11-17 12:18 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-17 12:16 - 2019-12-07 09:57 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-17 12:16 - 2019-12-07 04:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-17 12:16 - 2019-12-07 04:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-17 12:09 - 2020-10-02 04:59 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-17 11:52 - 2020-08-24 00:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-17 11:35 - 2020-08-24 00:28 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-17 11:32 - 2020-08-23 15:34 - 000000000 ____D C:\Users\darli\AppData\Local\Steam
2023-11-14 14:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-10 14:56 - 2020-06-03 21:12 - 000000000 ____D C:\ProgramData\ASUS
2023-11-07 09:55 - 2022-05-16 16:02 - 000000000 ____D C:\Users\darli\AppData\Roaming\obs-studio
2023-11-07 09:23 - 2019-10-18 12:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-03 12:50 - 2020-10-01 00:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Archivos en la raíz de algunos directorios ========

2023-06-20 18:48 - 2023-06-20 18:48 - 002957224 _____ (Adobe Inc.) C:\ProgramData\33254054184047813588.exe
2023-06-20 18:56 - 2023-06-20 18:56 - 002957224 _____ (Adobe Inc.) C:\ProgramData\48969276489406860942.exe
2023-06-20 18:55 - 2023-06-20 18:55 - 002957224 _____ (Adobe Inc.) C:\ProgramData\70778276883350723911.exe
2023-04-09 09:36 - 2023-04-09 09:36 - 000012288 _____ () C:\Users\darli\AppData\Roaming\emp.bin
2022-05-16 16:03 - 2022-07-13 13:10 - 000000016 _____ () C:\Users\darli\AppData\Roaming\obs-virtualcam.txt
2020-08-24 11:19 - 2020-08-24 11:19 - 000000410 _____ () C:\Users\darli\AppData\Local\oobelibMkey.log
2021-05-27 23:45 - 2023-10-26 10:49 - 000007598 _____ () C:\Users\darli\AppData\Local\Resmon.ResmonCfg
2020-08-23 15:58 - 2020-08-23 15:58 - 000000003 _____ () C:\Users\darli\AppData\Local\updater.log
2020-08-23 15:58 - 2023-11-30 10:44 - 000000059 _____ () C:\Users\darli\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 05-11-2023 02
Ejecutado por darli (02-12-2023 09:39:26)
Ejecutado desde C:\Users\darli\OneDrive\Escritorio
Microsoft Windows 10 Home Versión 22H2 19045.3693 (X64) (2020-10-02 10:01:26)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-1691082389-834839770-2912174567-500 - Administrator - Enabled) => C:\Users\Administrador
darli (S-1-5-21-1691082389-834839770-2912174567-1001 - Administrator - Enabled) => C:\Users\darli
DefaultAccount (S-1-5-21-1691082389-834839770-2912174567-503 - Limited - Disabled)
Invitado (S-1-5-21-1691082389-834839770-2912174567-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1691082389-834839770-2912174567-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 8.0.6 - AnyDesk Software GmbH)
ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.7.6 - ASUS)
Assassins Creed Valhalla MULTi14 - ElAmigos versión 1.1.2 (HKLM-x32\...\{56CA5418-430C-43BD-A02B-2993D8A641D9}_is1) (Version: 1.1.2 - Ubisoft)
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.3.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{99c84b70-e56e-4a29-9a3a-10d41c9fcc6d}) (Version: 2.3.3.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM-x32\...\{b8af8e27-5c72-412c-bab7-dc6430e70f1b}) (Version: 1.1.23 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.2.4 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{7f23d3ea-a821-4293-b7f7-34383bf06437}) (Version: 1.2.4 - ASUSTek COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.0.1.5 - ASUSTeK Computer Inc.)
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{049c2f12-c730-4efc-81db-0adcf3ff5782}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{a3a1beb0-9f5b-4b4e-8cfa-ef25842faf55}) (Version: 1.0.30 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{a96c7710-4dd8-463e-8f76-c3ad65b248a5}) (Version: 1.0.33 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.107 - ASUSTeK Computer Inc.) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.41 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.41 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.26 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{b7466853-b157-49df-811e-643beab9cdc7}) (Version: 3.07.26 - ASUSTeK Computer Inc.)
Autodesk Vehicle Tracking 2018 (64 bit) Core (HKLM\...\{9BB641F3-24B1-427E-A850-1C02157219EC}) (Version: 18.0.533.0 - Autodesk, Inc.) Hidden
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.18 - Piriform)
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1371 - Disc Soft Ltd)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.1 - ASUSTeK COMPUTER INC.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Privacy Browser (HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\Epic Privacy Browser) (Version: 91.0.4472.124 - Epic)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.3 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{71038C40-8258-44D2-BBF4-B6312338172C}) (Version: 2.8.3.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{E244A764-EDD0-46B0-8689-661F6B28D9E5}) (Version: 3.10.0069 - Seiko Epson Corporation)
EPSON L395 Series Printer Uninstall (HKLM\...\EPSON L395 Series) (Version:  - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 84.0.10.0 - Google LLC)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google)
Human Anatomy Atlas version 7.4.01 (HKLM-x32\...\{0DDE4272-3433-4C74-ADA6-72350805D612}_is1) (Version: 7.4.01 - Visible Body - m!DVT)
HxD Hex Editor 2.5 (HKLM\...\HxD_is1) (Version: 2.5 - Maël Hörz)
IBM SPSS Statistics (HKLM\...\{865E2C89-D9AE-43B9-A33D-81D0C919EF79}) (Version: 29.0.1.0 - IBM Corp)
IBM SPSS Statistics 26 (HKLM\...\{1AC22BAE-DC13-4991-9910-AE3743A4592D}) (Version: 26.0.0.0 - IBM Corp)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains)
Malwarebytes version 4.6.5.293 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.5.293 - Malwarebytes)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.17126.20000 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.93 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\OneDriveSetup.exe) (Version: 23.231.1107.0002 - Microsoft Corporation)
Microsoft OneNote - es-es (HKLM\...\OneNoteFreeRetail - es-es) (Version: 16.0.17126.20000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
MLWapp 2.6 (HKLM\...\MLWapp_is1) (Version: 2.6.0.0 - mylivewallpapers.com)
Mozilla Firefox (x64 es-ES) (HKLM\...\Mozilla Firefox 120.0.1 (x64 es-ES)) (Version: 120.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.0.2 - Mozilla)
Nitro Pro (HKLM\...\{B6642EB0-A5C8-4AFF-AF4C-FF62E9CD0D65}) (Version: 13.35.2.685 - Nitro)
NVIDIA Controlador de audio HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 536.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.67 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17031.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17126.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.17031.20000 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 6.1.22 (HKLM\...\{573CC601-ED8D-450F-BE6F-A313DD77A4A0}) (Version: 6.1.22 - Oracle Corporation)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.2.14.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.17.7 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 38.2 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.97 - Microsoft Corporation)
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\ZoomUMX) (Version: 5.16.2 (22807) - Zoom Video Communications, Inc.)

Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.20025.0_x64__0a9344xs7nr4m [2023-03-17] (Advanced Micro Devices Inc.) [Startup Task]
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.7.6.0_x64__qmba6cd70vzyy [2023-11-10] (ASUSTeK COMPUTER INC.)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_150.1.1140.0_x64__v10z8vjag6ke6 [2023-11-29] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12130.9.2003.0_x64__nzyj5cx40ttqa [2023-10-25] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-24] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21027.539.0_x64__8wekyb3d8bbwe [2023-11-02] (Microsoft Corporation)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy [2023-11-30] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-07-18] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1114.100_x64__8wekyb3d8bbwe [2023-12-01] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-04] (Microsoft Studios) [MS Ad]
WhatsApp Beta -> C:\Program Files\WindowsApps\5319275A.51895FA4EA97F_2.2347.0.0_x64__cv1g1gvanyjgm [2023-11-22] (WhatsApp Inc.) [Startup Task]

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-10-16] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.10.0\drivefsext.dll [2023-12-02] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\nvshext.dll [2023-07-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-10-16] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2023-10-22 10:26 - 2023-09-14 16:02 - 000322048 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2023-10-22 10:26 - 2023-04-14 14:18 - 000319488 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp-win32-ia32.node
2023-10-22 10:26 - 2023-09-14 16:02 - 000541696 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\usb\prebuilds\win32-ia32\node.napi.node
2022-07-15 19:00 - 2022-07-15 19:00 - 000094720 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll
2019-10-18 12:28 - 2019-10-18 12:28 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2019-10-18 12:28 - 2019-10-18 12:28 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2016-05-09 09:20 - 2016-05-09 09:20 - 000132096 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\WINDOWS\System32\enppmon.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)

HKU\S-1-5-21-1691082389-834839770-2912174567-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

==================== Internet Explorer (Lista blanca) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: [S-1-5-21-1691082389-834839770-2912174567-500] ATENCIÓN => No se encuentra URLSearchHook predeterminado
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-01] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-18 23:49 - 2023-11-30 11:12 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\Control Panel\Desktop\\Wallpaper -> c:\users\darli\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\asus.jpg
HKU\S-1-5-21-1691082389-834839770-2912174567-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Firewall de Windows está habilitado.

Network Binding:
=============
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "Hamul"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "Epic Privacy Browser Installer"
HKU\S-1-5-21-1691082389-834839770-2912174567-1001\...\StartupApproved\Run: => "GoogleDriveFS"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{E416D98C-7314-4414-BB5D-FAEF18C417D6}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{BB2B6F78-5B36-4373-8D50-A10E9FBF1960}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{677DF8E5-BAF1-44A2-BEE8-3D394B944177}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{B5675DC3-78AB-414C-86A0-C91F03171CB7}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{3CBDEB20-0448-4D5B-B145-76E5A5B86C00}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{F274F7BD-FCDB-4390-8DB0-7E32807BBC0E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [TCP Query User{01EA8F2D-8FAF-432B-9BED-8A98D2725425}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [UDP Query User{F329A442-BA05-459D-888D-B93F510DAB66}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{326F6EC6-35AA-4DEF-8A2A-AAA39672425C}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9457DC5B-DE97-4D89-AA9D-946BB891BBB5}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3F8E7303-1CE4-455A-93BF-930C33864D96}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{41044DEA-E480-43C3-969C-25DE6CEEB383}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{42AFA457-4941-47CF-8BAE-41691344AA8D}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{210DCE44-002E-46EF-83C8-A6E9F804CC1A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{BAC24CD0-5A3F-4722-ADFE-338E860EA2FD}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{8AC14868-6EB7-4AF7-9EF5-A4221477B478}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{064DA088-880B-446E-AEE7-D1A5819B2741}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F4FC36A2-F9D9-47CC-8311-00D418DF158E}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BC536CEE-D6E7-440F-9025-16E53E88E94D}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{F1618C9B-5A27-4BFB-B14B-EB366C38E6A1}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{E1961AB9-B3F6-4AD8-BC95-732E6B560A54}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{267F5149-A287-4E24-8657-4C567255D7C0}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{450CC827-D469-4D7D-B204-C2B296184381}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{28B25F29-CF7D-4D09-8881-0D9C0EC6FAFA}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9533AD4D-E39D-4942-9578-DA98174838CC}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{05A4BC79-657E-4262-B14E-3ACDDE4B13C5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D102F165-68B0-4002-920F-9DFD7EDBBCD4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC0BA613-93C4-4FAD-9AE1-BE39201253A3}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{F4002437-A1FD-41B2-874A-830B2313739E}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{7A0BC983-6FA8-48C6-8E5B-BE7490A336A0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0074E565-C45F-4705-8D71-2E89AB9F2F05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{94A50A39-AB60-4748-8393-6F29CA953A85}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Puntos de Restauración =========================

27-11-2023 14:12:05 Punto de control programado
30-11-2023 10:40:24 Removed Monosnap
30-11-2023 10:42:36 Removed 4K Video Downloader

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (12/02/2023 09:27:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x1090
Hora de inicio de la aplicación con errores: 0x01da251e675efe1b
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: ff2821a3-ce0c-4269-95e6-cf7785e57816
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (12/01/2023 12:09:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x2980
Hora de inicio de la aplicación con errores: 0x01da2466ea2a292d
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 90f9d0bf-c5ff-4103-8991-f6b824edb86c
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (12/01/2023 10:39:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x2980
Hora de inicio de la aplicación con errores: 0x01da2466ea2a292d
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 6af57847-a828-4989-acdc-994f39d90922
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/30/2023 01:20:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ArmouryCrate.UserSessionHelper.exe, versión: 5.7.0.0, marca de tiempo: 0x65360c83
Nombre del módulo con errores: AuraPlugin.dll_unloaded, versión: 5.7.6.0, marca de tiempo: 0x65378d52
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000000000013cd64
Identificador del proceso con errores: 0x3524
Hora de inicio de la aplicación con errores: 0x01da23b8448881cc
Ruta de acceso de la aplicación con errores: C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
Ruta de acceso del módulo con errores: AuraPlugin.dll
Identificador del informe: cdd5dc33-ef25-40bc-bc9e-bfbbe4ce363e
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/30/2023 01:01:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x2ba4
Hora de inicio de la aplicación con errores: 0x01da23b738a7d8da
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: c0c9d098-acba-477d-8948-2417da95203b
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/30/2023 01:01:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x2288
Hora de inicio de la aplicación con errores: 0x01da23b72fe12109
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 8a323d9d-777b-4179-bbfd-897724d12e69
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/30/2023 12:19:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DllHost.exe, versión: 10.0.19041.3636, marca de tiempo: 0x5f959e44
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.3636, marca de tiempo: 0x9b64aa6f
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000000634f6
Identificador del proceso con errores: 0x54c
Hora de inicio de la aplicación con errores: 0x01da23b16a189389
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\DllHost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 1e707164-4bb5-4bb9-ab0e-50efdb95426d
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/30/2023 11:15:38 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Error en la inicialización de la inscripción de certificados de SCEP para WORKGROUP\LAPTOP-0HHCN5FS$ a través de https://AMD-KeyId-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 30 Nov 2023 16:15:37 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 2e02a5e2-0acb-4875-a51f-7e3f09af997e

Método: GET(937ms)
Fase: GetCACaps
No encontrado (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


Errores del sistema:
=============
Error: (12/02/2023 07:56:23 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-0HHCN5FS)
Description: El servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter no se registró con DCOM dentro del tiempo de espera requerido.

Error: (12/02/2023 07:51:32 AM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-0HHCN5FS)
Description: Error de DCOM "2" al intentar iniciar el servicio LightingService con argumentos "No disponible" para ejecutar el servidor:
{95775DC4-77AA-4E94-8CF6-68267EEF1856}

Error: (12/02/2023 07:51:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio ASUS AURA SYNC lighting service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (12/01/2023 01:53:16 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-0HHCN5FS)
Description: El servidor Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter no se registró con DCOM dentro del tiempo de espera requerido.

Error: (12/01/2023 01:40:09 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-0HHCN5FS)
Description: Error de DCOM "2" al intentar iniciar el servicio LightingService con argumentos "No disponible" para ejecutar el servidor:
{95775DC4-77AA-4E94-8CF6-68267EEF1856}

Error: (12/01/2023 01:40:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio ASUS AURA SYNC lighting service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (12/01/2023 01:05:38 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-0HHCN5FS)
Description: El servidor B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy!App.AppX7kzebfqmdxej6ev77x78grbnx1efgwnw.mca no se registró con DCOM dentro del tiempo de espera requerido.

Error: (12/01/2023 09:58:08 AM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-0HHCN5FS)
Description: Error de DCOM "2" al intentar iniciar el servicio LightingService con argumentos "No disponible" para ejecutar el servidor:
{95775DC4-77AA-4E94-8CF6-68267EEF1856}


Windows Defender:
================
Date: 2023-12-01 17:00:54
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {48A7D157-0DB5-4F7A-BB21-F3F89153DF3A}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2023-11-30 12:42:51
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {ECDC2F27-B4FB-46B4-88C5-73BD5F432656}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2023-11-28 13:07:46
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {2A4D1221-3A7D-4D36-B8B0-AA4FDF805B34}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2023-11-27 14:08:02
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {3C1DF8C6-9FEA-40EA-8954-9A6E069F61A2}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2023-11-24 12:50:32
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {44A89C0D-32C1-40AB-896B-CF849DA6590A}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2023-11-03 14:50:53
Description: 
Antivirus de Microsoft Defender encontró un error al intentar actualizar la inteligencia de seguridad e intentará revertir a una versión anterior.
Inteligencia de seguridad intentada: Actual
Código de error: 0x80501102
Descripción del error: Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. 
Versión de inteligencia de seguridad: 1.401.17.0;1.401.17.0
Versión del motor: 1.1.23100.2009

Date: 2023-01-03 02:28:15
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.381.1526.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.19900.2
Código de error: 0x8024402c
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===============
Date: 2023-11-09 15:33:27
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\119.0.6045.123\chrome.dll that did not meet the Microsoft signing level requirements.

Date: 2023-10-17 11:41:15
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.

Date: 2023-10-15 18:02:35
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2023-10-09 11:53:45
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. FX505DT.316 01/28/2021
Placa base: ASUSTeK COMPUTER INC. FX505DT
Procesador: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx 
Porcentaje de memoria en uso: 44%
RAM física total: 7616.9 MB
RAM física disponible: 4212.34 MB
Virtual total: 17856.9 MB
Virtual disponible: 12113.97 MB

==================== Unidades ================================

Drive c: (OS) (Fixed) (Total:237.08 GB) (Free:42.74 GB) (Model: KINGSTON RBUSNS8154P3256GJ3) NTFS
Drive d: (Nuevo vol) (Fixed) (Total:431.5 GB) (Free:274.14 GB) (Model: ST1000LM048-2E7172) NTFS
Drive e: (Nuevo vol) (Fixed) (Total:500 GB) (Free:264.18 GB) (Model: ST1000LM048-2E7172) NTFS

\\?\Volume{a4387739-2482-458c-8205-65f09e78f9b3}\ (RECOVERY) (Fixed) (Total:1.12 GB) (Free:0.47 GB) NTFS
\\?\Volume{d63ec520-36da-4c20-b5db-f1c29fa1c4a2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: E9CD2037)

Partition: GPT.

==================== Final de Addition.txt =======================

Hola buenas @Darkar33

Primero de todo, disculpa en que haya tardado en responder. Pues han sucedido una serie de contratiempos que han hecho que no pudiese responder durante casi un mes aprox.

Pues:

• He estado enfermo varias semanas/días.
• He tenido problemas familiares/personales.
• Estas fechas festivas de navidad, uno tiene muchas cosas que hacer.
• Tengo también mucha carga laboral/trabajos.
• El foro tuvo una serie de problemas técnicos hace un par de semanas y también estuvo caído varios días, pero ya se ha arreglado casi todo.

¿Sigues necesitando ayuda acerca del problema qué comentaste inicialmente en este tema?

Si es así, dímelo y por mi parte a partir del 16 de Enero podré seguir atendiendo tu caso. Puede que antes, pero el 16 de Enero. Seguro.

Salu2.

Hola buenas @MIXU la verdad es que sí aún necesitaría la ayuda, tanto el Adware como los 2 PUP siguen en mi ordenador, espero puedas seguir brindandeome tu ayuda, con los últimos registros que te envíe, gracias de antemano.