TORRE FRST
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 01.07.2024
Ejecutado por Alejandro Lorman (administrador) sobre DESKTOP-HPRACNC (Micro-Star International Co., Ltd. MS-7C56) (01-07-2024 20:41:41)
Ejecutado desde f:\Users\Alejandro Lorman\Desktop\FRST64.exe
Perfiles cargados: Alejandro Lorman
Plataforma: Microsoft Windows 11 Pro Versión 23H2 22631.3810 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2>
(C:\Program Files (x86)\EaseUS\ENS\ensserver.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\AliyunWrapExe.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe ->) (Chaos Software Ltd.) [Archivo no firmado] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe ->) (Chaos) [Archivo no firmado] C:\Program Files\Chaos\UnifiedLogin\ula.exe
(C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrol.exe
(C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(ChaosGroup) [Archivo no firmado] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe <2>
(explorer.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrlsupervisor.exe
(explorer.exe ->) (Chaos) [Archivo no firmado] C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\14.2.0.10911\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Chaos Software Ltd. -> ) [Archivo no firmado] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
(services.exe ->) (Eaton Corporation -> ) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\Eaton\UPSCompanion\mc2.exe <2>
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Game Highlights\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Super Charger\MSI_Super_Charger_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_cc569e59ca39c5fe\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(services.exe ->) (pdfforge GmbH -> Avanquest pdfforge GmbH) C:\Program Files\PDF Architect 9\activation-service.exe
(services.exe ->) (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe
(sihost.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.3.0.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21968.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21968.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Speed Up\StorageMonitor.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\True Color\New\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControlEngine.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [201288 2022-02-02] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1774696 2021-05-12] (voidtools -> voidtools)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1068512 2022-10-01] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Eaton Systray Launcher] => C:\Program Files (x86)\Eaton\UPSCompanion\mc2.exe [2770104 2024-01-10] (Eaton Corporation -> ) [Archivo no firmado] [El archivo está en uso]
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [124599048 2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe /background /setautostart (Ningún archivo)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe /background /setautostart (Ningún archivo)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-06-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2022-04-01] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37550568 2024-06-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Alejandro Lorman\AppData\Local\Microsoft\Teams\Update.exe [2455248 2021-11-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [KeepAliveHD] => C:\Program Files (x86)\Megabit\KeepAliveHD\KeepAliveHD.exe [463360 2017-05-29] () [Archivo no firmado]
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2652776 2023-12-07] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [RiotClient] => F:\Riot Games\Riot Client\RiotClientServices.exe [70989920 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [MicrosoftEdgeAutoLaunch_FEB5FB8313367C1F04B737C05EF1A52C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883576 2024-06-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [electron.app.Notion] => C:\Users\Alejandro Lorman\AppData\Local\Programs\Notion\Notion.exe [176496080 2024-06-14] (Notion Labs, Inc. -> Notion Labs, Inc)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [com.cron.electron] => C:\Users\Alejandro Lorman\AppData\Local\Programs\cron-web\Notion Calendar.exe [176987864 2024-04-25] (CRON INC. -> Notion Labs, Inc.)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [AceStream] => C:\Users\Alejandro Lorman\AppData\Roaming\ACEStream\engine\ace_engine.exe (Ningún archivo)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46043392 2024-05-30] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31354648 2024-06-06] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Policies\Explorer: []
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\Windows\system32\hpinkstsE311LM.dll [399392 2023-10-04] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\PDF Architect 9 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.23.0.2.dll [974120 2024-03-22] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
IFEO\AcEventSync.exe: [Debugger] Blocked
IFEO\AcQMod.exe: [Debugger] Blocked
IFEO\ADPClientService.exe: [Debugger] Blocked
IFEO\AdpSDKUtil.exe: [Debugger] Blocked
IFEO\AdskAccessCore.exe: [Debugger] Blocked
IFEO\AdskAccessDialogUtility.exe: [Debugger] Blocked
IFEO\AdskAccessService.exe: [Debugger] Blocked
IFEO\AdskAccessServiceHost.exe: [Debugger] Blocked
IFEO\AdskIdentityManager.exe: [Debugger] Blocked
IFEO\AdskInstallerUpdateCheck.exe: [Debugger] Blocked
IFEO\AdskUpdateCheck.exe: [Debugger] Blocked
IFEO\AdSSO.exe: [Debugger] Blocked
IFEO\Autodesk Access UI Host.exe: [Debugger] Blocked
IFEO\DownloadManager.exe: [Debugger] Blocked
IFEO\FNPLicensingService.exe: [Debugger] Blocked
IFEO\GenuineService.exe: [Debugger] Blocked
IFEO\install_helper_tool.exe: [Debugger] Blocked
IFEO\install_manager.exe: [Debugger] Blocked
IFEO\LogAnalyzer.exe: [Debugger] Blocked
IFEO\ProcessManager.exe: [Debugger] Blocked
StartupDir: C:\Users\Alejandro Lorman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baskeriam <==== ATENCIÓN
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CCBService.lnk [2024-06-24]
ShortcutTarget: CCBService.lnk -> C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [Archivo no firmado]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ChaosUnifiedLogin.lnk [2023-03-01]
ShortcutTarget: ChaosUnifiedLogin.lnk -> C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe (Chaos) [Archivo no firmado]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Chaos License Server.lnk [2023-09-03]
ShortcutTarget: Start Chaos License Server.lnk -> C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ("Chaos Software" Ltd -> Chaos)
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) =================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {80D959C7-6D5A-42B7-83CE-91A74051EEC7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {4C8A1152-D548-4820-B009-BA45782F9D3D} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {58E1AC0A-72C7-491F-9A80-CFBDB82063F7} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {E4A6978E-09B1-4E5D-84D5-1532A2E47F59} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-22] (pdfforge GmbH -> )
Task: {4249C56D-4017-424B-AD4E-A5804B5503D9} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {4DD7E308-AF41-4EED-B2CC-0E5D81A3B320} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Alejandro Lorman\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-06-29] (ESET, spol. s r.o. -> ESET)
Task: {4EDF5288-4010-4A2B-87C7-78CF84738049} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Alejandro Lorman\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-06-29] (ESET, spol. s r.o. -> ESET)
Task: {F37BAC68-D713-4B87-84F3-DC791A795E5A} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2024-06-06] (Garmin International, Inc. -> )
Task: {EDCAD72F-C1EF-4406-B154-4EE08761B068} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{A030F8A4-0E17-4A59-BA41-676480AF3FA5} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {71C0320B-500C-4F5A-82A9-DF21129CA349} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (Ningún archivo)
Task: {CD9A0F92-A4AB-4F96-BE35-C1025E9A0EED} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [73728 2024-04-24] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {7965AFE2-7BCB-40DE-9838-ECB01B48EE95} - System32\Tasks\Microsoft\Windows\Device Information\Fstfc => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\Common Files\TipsPresentation\ComputeTemt\"C:\Program Files (x86)\Common Files\TipsPresentation\ComputeTemt\RMAcage5A4600.dll" /nologo /u <==== ATENCIÓN
Task: {ED1D91C3-BF08-42F1-ABC8-8F20D79BEEB5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmtNonCritical\85F1496A-C32D-4DAC-BE03-35369CA0C183\Queued Schedule created for queued alerts => C:\WINDOWS\system32\deviceenroller.exe [520192 2024-06-26] (Microsoft Windows -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Ningún archivo)
Task: {A8B7A20F-10F2-489B-B7D1-761B8F461997} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Ningún archivo)
Task: {ACD5D977-501D-4887-AB9F-E59FC132ED59} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Ningún archivo)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Ningún archivo)
Task: {B9188FF1-857D-4363-BCE0-FFC69979EEE2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675744 2024-06-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres).
Task: {8DE42BBD-2153-4184-97B4-BF4219BCF4FD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-06-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {BB20F15B-AE05-452D-B82B-BE523130A8F4} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [2686056 2024-05-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {19893B09-78F5-4838-BBD9-B7BEFF4713A6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6641012D-FE5A-4C2F-90EA-5D539BEF5EBE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEDD9046-91A5-449D-AFC7-EFB7D9DCDC1A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {C0F71622-0C42-482D-A7CA-6F435DD12FE4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87D08C35-4F79-48A6-B723-863DA25CB69F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A32AC54B-3BAF-421D-B6BE-2EAEF1D0B0B9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B0F568C-833E-4369-B288-1BE2C4805C05} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7CAECF4E-2224-49F5-8198-F0784880886D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {38E211E8-190B-4812-B38E-06F8B9E809D5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E9630F1-3271-4DFA-8030-8A5F1528B60B} - System32\Tasks\Opera GX scheduled Autoupdate 1707863686 => C:\Users\Alejandro Lorman\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Ningún archivo)
Task: {5BC61082-3D0C-4C3C-92A7-8CE0EDEF88C6} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-22] (pdfforge GmbH -> )
Task: {A8B16DD6-2685-4F9D-BF43-56B22F7BEDC0} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {3DC1147E-3504-4F3A-8D16-C62FF9B211C9} - System32\Tasks\PowerToys\Autorun for Alejandro Lorman => C:\Program Files\PowerToys\PowerToys.exe [1192368 2024-05-17] (Microsoft Corporation -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fba5748a-cda0-4dcf-ae1f-d1e340dab5d7}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{fba5748a-cda0-4dcf-ae1f-d1e340dab5d7}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\Alejandro Lorman\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-01]
Edge Notifications: Default -> hxxps://www.instagram.com
Edge Extension: (Documentos de Google sin conexión) - C:\Users\Alejandro Lorman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-17]
Edge Extension: (Online Security) - C:\Users\Alejandro Lorman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jcpgbnbdnakoblgfkbgggankeidkfcdl [2024-06-13]
Edge Extension: (Edge relevant text changes) - C:\Users\Alejandro Lorman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [jcpgbnbdnakoblgfkbgggankeidkfcdl]
FireFox:
========
FF DefaultProfile: u0g0352s.default
FF ProfilePath: C:\Users\Alejandro Lorman\AppData\Roaming\Mozilla\Firefox\Profiles\u0g0352s.default [2022-10-03]
FF ProfilePath: C:\Users\Alejandro Lorman\AppData\Roaming\Mozilla\Firefox\Profiles\7p6zwrj2.default-release [2024-07-01]
FF HKU\S-1-5-21-1393515194-647049618-2075644925-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Alejandro Lorman\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-10-01] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-10-01] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-1393515194-647049618-2075644925-1001: @acestream.net/acestreamplugin,version=3.2.0 -> C:\Users\Alejandro Lorman\AppData\Roaming\ACEStream\player\npace_plugin.dll [Ningún archivo]
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default [2024-06-29]
CHR HomePage: Default -> bing.com
CHR Extension: (Torrent Scanner) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-05-11]
CHR Extension: (Microsoft Bing Homepage for Chrome) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgloedfmlbhadhmokjlglkainpfpkcol [2023-05-11]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-13]
CHR Extension: (Web Safety) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2023-05-11]
CHR Extension: (Ace Script) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2023-05-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-11]
CHR Profile: C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-06-29]
CHR Profile: C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-07-01]
CHR DownloadDir: F:\Users\Alejandro Lorman\Descargas
CHR Notifications: Profile 1 -> hxxps://app.workspace.fiverr.com; hxxps://calendar.google.com; hxxps://es.duolingo.com; hxxps://play.ecoscooting.com; hxxps://pomodoro-tracker.com; hxxps://www.duolingo.com
CHR HomePage: Profile 1 -> hxxps://www.google.com/
CHR StartupUrls: Profile 1 -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://es.search.yahoo.com/?type=994519&fr=yo-yhp-ch","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/"
CHR Extension: (BetterTTV) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2024-06-19]
CHR Extension: (7TV) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2023-06-01]
CHR Extension: (ColorZilla) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2024-05-29]
CHR Extension: (Paradify - Youtube to Spotify) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bocdilfmhiggklhdifohjfghbdncgele [2024-05-23]
CHR Extension: (uBlock Origin) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-05-24]
CHR Extension: (Image Downloader) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2023-11-26]
CHR Extension: (Tampermonkey) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2024-05-04]
CHR Extension: (Dark Reader) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2024-06-29]
CHR Extension: (Fonts Ninja) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eljapbgkmlngdpckoiiibecpemleclhh [2024-07-01]
CHR Extension: (FrankerFaceZ) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-11-02]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-19]
CHR Extension: (AdBlock — block ads across the web) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-06-27]
CHR Extension: (Hola VPN - Your Website Unblocker) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2024-06-15]
CHR Extension: (Earth2 Enhance) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\heddplgeoodepomjkjhabdnoagihhdjj [2021-11-02]
CHR Extension: (Previews (For TTV & YT)) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hpmbiinljekjjcjgijnlbmgcmoonclah [2024-05-28]
CHR Extension: (Download All Images) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ifipmflagepipjokmbdecpmjbibjnakm [2022-11-18]
CHR Extension: (Player para ver Movistar+) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2021-11-02]
CHR Extension: (Notion Web Clipper) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\knheggckgoiihginacbkhaalnibhilkk [2023-01-10]
CHR Extension: (Limpiador de la corriente) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lehcglgkjkamolcflammloedahjocbbg [2024-05-17]
CHR Extension: (Ace Script) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2023-10-04]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-06-06]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2024-07-01]
CHR Extension: (MetaMask) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-06-26]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-02]
CHR Profile: C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-06-29]
CHR HomePage: Profile 2 -> bing.com
CHR Extension: (Presentaciones) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-02]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-04-27]
CHR Extension: (Documentos) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-02]
CHR Extension: (Google Drive) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-02]
CHR Extension: (Microsoft Bing Homepage Plus) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bgloedfmlbhadhmokjlglkainpfpkcol [2022-04-27]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-27]
CHR Extension: (Hojas de cálculo) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-02]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-27]
CHR Extension: (Web Safety) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-11-03]
CHR Extension: (Ace Script) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2021-11-02]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-02]
CHR Extension: (Gmail) - C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-02]
CHR Profile: C:\Users\Alejandro Lorman\AppData\Local\Google\Chrome\User Data\System Profile [2024-06-29]
CHR HKU\S-1-5-21-1393515194-647049618-2075644925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgloedfmlbhadhmokjlglkainpfpkcol]
CHR HKU\S-1-5-21-1393515194-647049618-2075644925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1393515194-647049618-2075644925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923616 2022-10-01] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [17330464 2024-04-01] (Autodesk, Inc. -> Autodesk)
S2 AdskNLM; C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe [1201488 2023-03-12] (Flexera Software LLC -> Flexera)
S3 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13687584 2024-05-24] (Autodesk, Inc. -> Autodesk, Inc.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2567304 2024-05-19] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> )
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11243624 2023-12-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [26512 2023-07-20] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-12-07] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 Eaton UPSCompanion; C:\Program Files (x86)\Eaton\UPSCompanion\mc2.exe [2770104 2024-01-10] (Eaton Corporation -> ) [Archivo no firmado] [El archivo está en uso] <==== ATENCIÓN
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-15] (Epic Games Inc. -> Epic Games, Inc.)
R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1774696 2021-05-12] (voidtools -> voidtools)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-04-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-09-30] (GOG Sp. z o.o. -> GOG.com)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-24] (HP Inc. -> HP Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10988800 2024-05-30] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [92768 2023-05-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe [9903656 2024-04-18] (Logitech Inc -> Logitech, Inc.)
R2 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [71928 2021-10-20] (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [74256 2024-04-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [149608 2024-01-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\MSI Center\Game Highlights\MSI_Companion_Service.exe [144488 2024-04-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Super_Charger_Service; C:\Program Files (x86)\MSI\MSI Center\Super Charger\MSI_Super_Charger_Service.exe [37104 2022-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [44648 2024-02-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_cc569e59ca39c5fe\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-06-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 PDF Architect 9; C:\Program Files\PDF Architect 9\activation-service.exe [3219392 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Creator; C:\Program Files\PDF Architect 9\creator-ws.exe [509888 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Update Service; C:\Program Files\PDF Architect 9\update-service.exe [415680 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [5813744 2024-05-16] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9705560 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.)
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2021-11-02] (Chaos Software Ltd. -> ) [Archivo no firmado]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2024-03-25] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-11-24] (Microsoft Corporation) [Archivo no firmado]
S3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2024-06-24] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATENCIÓN
R3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [51848 2024-01-10] (Eaton Corp -> hxxp://libusb-win32.sourceforge.net)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-05-25] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2024-05-25] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-05-25] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray.sys [98864 2024-04-18] (Logitech Inc -> Logitech, Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32576 2024-01-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_CPU; C:\Program Files (x86)\MSI\MSI Center\Super Charger\NTIOLib_X64.sys [32472 2023-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [32488 2023-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_e41dba7ae72d1e1a\rt68cx21x64.sys [458168 2021-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Realtek)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [40415320 2024-06-27] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2024-02-11] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 aswbdisk; no ImagePath
S2 IDMWFP; \SystemRoot\System32\drivers\idmwfp.sys [X]