Lentitud PC

Judith_AB · 28 Junio, 2020 10:46

Hola

Desde hace mucho tiempo, mi ordenador iba muy lento. Leyendo el foro y las recomendaciones que le hicisteis a mi marido, ejecute malware bytes, adware cleaner y CCcleaner. Ahora va mucho mejor, pero veo que en los programas instalados, sigue apareciendo “Amazon 1Button App” que parece ser que fue el inicio de todo, sin la posiblidad de desinstalarlo ahí, aunque creo que ya esta eliminado… Os adjunto los reportes. He de ejecutar algun otro programa¿? Gracias por vuestra ayuda.

Detalles del registro-
Fecha del análisis: 26/6/20
Hora del análisis: 22:44
Archivo de registro: de9e3156-b7ed-11ea-a0eb-68f728a3d0cc.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.955
Versión del paquete de actualización: 1.0.26057
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.900)
CPU: x64
Sistema de archivos: NTFS
Usuario: ChuPc\Judith Ac\u00c3\u00b3n Bonache

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 607651
Amenazas detectadas: 36
Amenazas en cuarentena: 36
Tiempo transcurrido: 22 hr, 20 min, 48 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 30
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp, En cuarentena, 3195, 441168, 1.0.26057, , ame, 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\AmazonAppIE.AppGateway, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\INTERFACE\{BC87ADED-E2FC-4B7E-B21B-F2578F51D78E}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BC87ADED-E2FC-4B7E-B21B-F2578F51D78E}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BC87ADED-E2FC-4B7E-B21B-F2578F51D78E}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKU\S-1-5-21-3038993378-3514742665-455157994-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\AmazonAppIE.GadgetGateway, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}\InprocServer32, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}, En cuarentena, 3195, 456680, 1.0.26057, , ame, 

Valor del registro: 3
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|AMAZON1BUTTONTASKBARAPP.EXE, En cuarentena, 3195, 493348, 1.0.26057, , ame, 
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En cuarentena, 11160, -1, 0.0.0, , action, 
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En cuarentena, 11160, -1, 0.0.0, , action, 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 1
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files (x86)\Amazon\Amazon1ButtonApp, En cuarentena, 11160, 809559, 1.0.26057, , ame, 

Archivo: 2
PUP.Optional.Amazon1Button, C:\PROGRAM FILES (X86)\AMAZON\AMAZON1BUTTONAPP\AMAZONAPPIE64.DLL, En cuarentena, 3195, 456680, , , , 
PUP.Optional.Amazon1Button, C:\PROGRAM FILES (X86)\AMAZON\AMAZON1BUTTONAPP\AMAZONAPPIE.DLL, En cuarentena, 3195, 456680, , , , 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Judith_AB · 28 Junio, 2020 10:52

Y ahora Adware cleaner. Lo tuve que pasar varias veces hasta que quedó limpio del todo. Os adjunto el primer report y el último en el que decia que estaba limpio del todo.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build:    05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-28-2020
# Duration: 00:00:52
# OS:       Windows 10 Home
# Scanned:  31836
# Detected: 80


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

Adware.pokki                    C:\ProgramData\Pokki
Adware.pokki                    C:\Users\Public\Pokki
Adware.pokki                    C:\Windows\ServiceProfiles\LocalService\AppData\Local\Pokki
Adware.pokki                    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Pokki
PUP.Optional.Legacy             C:\Users\Judith\AppData\Local\SweetLabs App Platform

***** [ Files ] *****

PUP.Optional.Legacy             C:\Windows\System32\Tasks_Migrated\SweetLabs App Platform
PUP.Optional.PCAppStore         C:\Users\Judith\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk
PUP.Optional.PCAppStore         C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy             C:\Windows\System32\Tasks\SWEETLABS APP PLATFORM

***** [ Registry ] *****

Adware.pokki                    HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Adware.pokki                    HKCU\Software\Classes\Directory\shell\pokki
Adware.pokki                    HKCU\Software\Classes\Drive\shell\pokki
Adware.pokki                    HKCU\Software\Classes\lnkfile\shell\pokki
Adware.pokki                    HKCU\Software\Classes\pokki
Adware.pokki                    HKCU\Software\SweetLabs App Platform
PUP.Adware.Heuristic            HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1
PUP.Optional.AmazonAssistant    HKLM\SOFTWARE\Classes\AppID\AmazonAppIE.dll
PUP.Optional.AmazonAssistant    HKLM\Software\Wow6432Node\\Classes\AppID\AmazonAppIE.dll
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6704C193-5D3E-40A8-9155-8F72D357BA55} 
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.CyberLinkShellExtension   Registry   HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS 
Preinstalled.HPSupportAssistant   Folder   C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Users\Judith\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Users\Judith\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{79C54A05-F146-4EA0-8A70-D4EFE6181E52} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E2CB09C1-3C76-4395-BB47-50C066535CF8} 
Preinstalled.LenovoCCSDK   Folder   C:\Program Files (x86)\LENOVO\CCSDK 
Preinstalled.LenovoCCSDK   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1 
Preinstalled.LenovoIMController   Folder   C:\ProgramData\LENOVO\IMCONTROLLER 
Preinstalled.LenovoIMController   Folder   C:\Users\Judith Acón Bonache\AppData\Local\LENOVO\IMCONTROLLER 
Preinstalled.LenovoIMController   Folder   C:\Users\Judith\AppData\Local\LENOVO\IMCONTROLLER 
Preinstalled.LenovoIMController   Folder   C:\Windows\LENOVO\IMCONTROLLER 
Preinstalled.LenovoIMController   Folder   C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER 
Preinstalled.LenovoIMController   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1 
Preinstalled.LenovoIMController   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3117B53D-A409-4D99-A0DE-11A1A40696FA} 
Preinstalled.LenovoPhoneCompanion   Folder   C:\Program Files (x86)\LENOVO PHONECOMPANION 
Preinstalled.LenovoPhoneCompanion   Folder   C:\Program Files\LENOVO PHONECOMPANION 
Preinstalled.LenovoPhoneCompanion   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|PhoneCompanion 
Preinstalled.LenovoPhoneCompanion   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|PhoneCompanion 
Preinstalled.LenovoPhoneCompanion   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B} 
Preinstalled.LenovoPhoneCompanion   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B} 
Preinstalled.LenovoPhotoMaster   Folder   C:\Program Files (x86)\LENOVO\LENOVO PHOTO MASTER 
Preinstalled.LenovoPhotoMaster   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{BC94C56A-3649-420C-8756-2ADEBE399D33} 
Preinstalled.LenovoPower2Go   Folder   C:\Program Files (x86)\LENOVO\POWER2GO 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLMLServer_For_P2G8 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLVirtualDrive 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLMLServer_For_P2G8 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLVirtualDrive 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} 
Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} 
Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 
Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} 
Preinstalled.LenovoSHAREit   Folder   C:\Program Files (x86)\LENOVO\SHAREIT 
Preinstalled.LenovoSHAREit   Registry   HKLM\Software\Classes\CLSID\{430BD134-576D-4E75-87CD-0F5C6221A82B} 
Preinstalled.LenovoSHAREit   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo SHAREit_is1 
Preinstalled.LenovoSettings   Folder   C:\Program Files (x86)\LENOVO\LENOVO SETTINGS 
Preinstalled.LenovoSettings   Folder   C:\ProgramData\LENOVO\LENOVO SETTINGS 
Preinstalled.LenovoSettings   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86045A6C-C156-4349-A3E2-47A88A42F5C2}_is1 
Preinstalled.LenovoSolutionCenter   Folder   C:\Program Files\LENOVO\LENOVO SOLUTION CENTER 
Preinstalled.LenovoSolutionCenter   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AB46AC6D-3E9A-4484-8061-64FF10301B41} 
Preinstalled.LenovoThinkVantageCommunicationsUtility   Folder   C:\Program Files\LENOVO\COMMUNICATIONS UTILITY 
Preinstalled.LenovoThinkVantageCommunicationsUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LENOVO.TPKNRRES 
Preinstalled.LenovoThinkVantageCommunicationsUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LENOVO.TPKNRRES 
Preinstalled.LenovoThinkVantageCommunicationsUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1 
Preinstalled.LenovoUtility   Folder   C:\Program Files\LENOVO\LENOVOUTILITY 
Preinstalled.LenovoUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility 
Preinstalled.LenovoUtility   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility 
Preinstalled.LenovoUtility   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} 
Preinstalled.LenovoUtility   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} 
Preinstalled.Pokki   File   C:\Users\Judith\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Menu.lnk 
Preinstalled.Pokki   File   C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk 



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Y el ultimo report de limpieza

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build:    05-25-2020
# Database: 2020-05-19.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-28-2020
# Duration: 00:00:51
# OS:       Windows 10 Home
# Cleaned:  4
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Users\Judith\AppData\Local\SweetLabs App Platform

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\SweetLabs App Platform

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
Deleted       Preinstalled.LenovoSettings   Folder   C:\ProgramData\LENOVO\LENOVO SETTINGS


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [10448 octets] - [28/06/2020 10:32:25]
AdwCleaner[C00].txt - [10987 octets] - [28/06/2020 10:37:17]
AdwCleaner[S01].txt - [1691 octets] - [28/06/2020 10:43:50]
AdwCleaner[S02].txt - [1831 octets] - [28/06/2020 10:45:03]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Y el último escaneo:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build:    05-25-2020
# Database: 2020-05-19.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-28-2020
# Duration: 00:00:53
# OS:       Windows 10 Home
# Scanned:  31863
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [10448 octets] - [28/06/2020 10:32:25]
AdwCleaner[C00].txt - [10987 octets] - [28/06/2020 10:37:17]
AdwCleaner[S01].txt - [1691 octets] - [28/06/2020 10:43:50]
AdwCleaner[S02].txt - [1831 octets] - [28/06/2020 10:45:03]
AdwCleaner[C02].txt - [2005 octets] - [28/06/2020 10:47:42]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########

Daniela · 28 Junio, 2020 11:01

Hola @Judith_AB,Bienvenida al Foro!!!

Tenías bastante infectado ese equipo.

Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus

Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer, pulsamos Yes
En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo

Judith_AB · 28 Junio, 2020 12:02

Gracias Daniela! Adjunto Report Addition

esultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 27-06-2020
Ejecutado por Judith Acón Bonache (28-06-2020 13:55:03)
Ejecutado desde C:\Users\Judith\Desktop
Windows 10 Home Versión 1903 18362.900 (X64) (2019-09-03 18:22:40)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-3038993378-3514742665-455157994-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3038993378-3514742665-455157994-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3038993378-3514742665-455157994-1003 - Limited - Enabled)
Invitado (S-1-5-21-3038993378-3514742665-455157994-501 - Limited - Disabled)
Judith Acón Bonache (S-1-5-21-3038993378-3514742665-455157994-1001 - Administrator - Enabled) => C:\Users\Judith
WDAGUtilityAccount (S-1-5-21-3038993378-3514742665-455157994-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

4K Video Downloader 4.12 (HKLM-x32\...\{36DCC913-017B-43A0-85C2-9805270E38BB}) (Version: 4.12.1.3580 - Open Media LLC)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATENCIÓN
Apple Application Support (32 bits) (HKLM-x32\...\{C3A282C9-4C8B-4A63-B449-3A064FB378D7}) (Version: 8.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{CC046FB9-E84E-4092-B924-DBE33DA2BE75}) (Version: 8.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{45DDDFED-AABC-450C-B49C-5B4A5E547F5B}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.55.62 - Conexant)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Estudio para la mejora del producto HP ENVY Photo 7800 series (HKLM\...\{E6B38297-69EC-4FB7-980A-D92CFBE79926}) (Version: 44.2.2605.184 - HP Inc.)
Estudio para la mejora del producto HP Officejet Pro 6830 (HKLM\...\{463DA75E-C440-48DA-8B2B-930795875B3C}) (Version: 33.1.73.49987 - Hewlett-Packard Co.)
Google Chrome (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.11.1.18068 (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\GoToMeeting) (Version: 10.11.1.18068 - LogMeIn, Inc.)
Hofmann 10.0.3 (HKLM-x32\...\{D97F86DC-69A7-4B3C-AB78-D6E424BC3D4E}) (Version: 10.0.3 - Hofmann)
HP Dropbox Plugin (HKLM-x32\...\{EF65265C-816D-4992-A8CC-C91CDEC9ED33}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{858E7C53-B406-4798-B4CA-761420FF2B5F}) (Version: 43.0.0.0 - HP)
HP ENVY Photo 7800 series Ayuda (HKLM-x32\...\{76D40DE4-EEBF-4876-91A9-5DD19DB6C215}) (Version: 44.0.0 - HP)
HP ENVY Photo 7800 series Software básico del dispositivo (HKLM\...\{8273D025-8665-4FAC-A2E2-ED89009928CC}) (Version: 44.2.2605.184 - HP Inc.)
HP FTP Plugin (HKLM-x32\...\{07DA4F28-63FA-43F7-A554-B159E9A7E649}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{CF634681-E024-430C-AFF2-B9EE43A7E452}) (Version: 36.0.102.68541 - HP)
HP Officejet Pro 6830 Ayuda (HKLM-x32\...\{5F0FA5C8-3708-4F56-B0A2-06C41E843F3F}) (Version: 34.0.0 - Hewlett Packard)
HP Officejet Pro 6830 Software básico del dispositivo (HKLM\...\{A3750D0E-9630-4FB8-982A-95708AE9AAE5}) (Version: 33.1.73.49987 - Hewlett-Packard Co.)
HP OneDrive Plugin (HKLM-x32\...\{1E191DFB-7B91-4B11-AB95-884D59ECE599}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{1ED7BE66-39E7-4A65-8EEF-68CE80F3416C}) (Version: 43.0.0.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S OCR (HKLM-x32\...\{0E0D0459-0565-4490-8D96-A5355D56C243}) (Version: 15.2.10.1114 - HP Inc.)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{667DD389-1751-45C8-B864-1E5F83D6C588}) (Version: 17.1.1433.02 - Intel Corporation)
iTunes (HKLM\...\{2DFD464D-F5A4-4874-AD9B-A3BE54714972}) (Version: 12.10.3.1 - Apple Inc.)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10292 - Realtek Semiconductor Corp.)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.)
Lenovo Patch Utility (HKLM-x32\...\{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{49A09C2C-FFF4-478E-B397-5E0979F67F5D}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Settings (HKLM\...\{D14CCBF5-1A3A-4C08-955B-BE6D519835C4}_is1) (Version: 2.0.0.4 - Lenovo)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.3.3.33 - Lenovo Group Limited)
Lenovo Settings Service (HKLM\...\{8C6F1EBA-17F1-4481-B688-9777E63E985F}_is1) (Version: 2.3.0.20 - Lenovo Group Limited)
Lenovo Settings UMDF driver (HKLM\...\{2BDC7413-65EA-4B99-8C4B-02F11075BE6D}_is1) (Version: 1.2.0.6 - Lenovo Group Limited)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Manuales de usuario (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Hidden
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.12827.20336 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Nitro Pro 9 (HKLM\...\{58D922F3-9C4A-4F2E-B338-72AD6A748CA7}) (Version: 9.0.5.9 - Nitro)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20336 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
OneKey Optimizer (HKLM-x32\...\{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.3.0.10 - Lenovo) Hidden
OneKey Optimizer (HKLM-x32\...\InstallShield_{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.3.0.10 - Lenovo)
Paquete de controladores de Windows - Lenovo (ACPIVPC) System  (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Paquete de controladores de Windows - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39059 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
Software Intel® PROSet/Wireless (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{f5d71765-7cd1-4e68-998f-5b379e725da3}) (Version: 10.0.22 - Intel(R) Corporation) Hidden
Spotify (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\Spotify) (Version: 1.1.35.458.g891674f3 - Spotify AB)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
WhatsApp (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\WhatsApp) (Version: 2.2023.2 - WhatsApp)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-15] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.170.800.0_x86__kgqvnymyfvs32 [2020-06-19] (king.com)
Dailymotion -> C:\Program Files\WindowsApps\DailymotionSA.Dailymotion_10.2006.3.0_x64__6dqnvyezrysvy [2020-06-24] (Dailymotion)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-20] (Dolby Laboratories)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.25.9091.0_x86__q4d96b2w5wcc2 [2020-06-27] (Evernote)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2018-01-11] (LENOVO INCORPORATED.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2004.12.0_x64__k1h2ywk1493x8 [2020-05-20] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2015-06-19] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-23] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Moments de pel·lícula -> C:\Program Files\WindowsApps\Microsoft.MovieMoments_6.3.9654.20464_x64__8wekyb3d8bbwe [2015-05-29] (Microsoft Corporation)
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
MSN El Temps -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
MSN Receptes -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-08-25] (Microsoft Corporation) [MS Ad]
MSN Salut i Benestar -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-08-25] (Microsoft Corporation) [MS Ad]
MSN Viatges -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-08-25] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2015-05-29] (LENOVO INC)
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2015-06-19] (CYBERLINK COM CORPORATION)
RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.6.0.0_x86__fxme7667cy4q4 [2020-02-28] (Ricoh Company, Ltd.)
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2015.1013.1.0_x64__t3yemqpq4kp7p [2016-06-20] (The Weather Channel.)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2016-12-27] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-13] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-06-19] (Zinio LLC)
==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3038993378-3514742665-455157994-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Judith\AppData\Local\GoToMeeting\16576\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-3038993378-3514742665-455157994-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Judith\AppData\Local\Google\Chrome\Application\83.0.4103.116\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3038993378-3514742665-455157994-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Judith\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3038993378-3514742665-455157994-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Judith\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\9.0\NPShellExtension64.dll [2013-12-12] (Nitro PDF Software -> Nitro PDF)
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

Judith_AB · 28 Junio, 2020 12:03

==================== Módulos cargados (Lista blanca) =============

2014-10-09 15:54 - 2014-10-09 15:54 - 000541696 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-10-09 15:54 - 2014-10-09 15:54 - 000297472 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2015-03-15 12:37 - 2015-03-15 12:37 - 000348160 ____N (Microsoft Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\Lenovo\PowerDVD10\MSVCR71.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\HP\IdrsOCR_15.2.10.1114\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Judith\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\P1040348.JPG
DNS Servers: 212.166.211.1 - 212.166.132.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "OneKeyOptimizer"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\StartupApproved\Run: => "GoToMeeting"
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{DC748680-9BE3-4B4C-9228-45502EC7CBAE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E716A9BC-9DA0-4679-94EA-AE658D6D43D8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{33FCDEFE-FE5C-4C9E-A05E-3D7385A83BFC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D56F0FA8-52E3-4BEC-B92F-C095AFEC5CA0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CF165227-3AC5-499C-9C1A-E1734C21C0D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0F6F1C2F-9265-463A-91AA-B6E54C65F468}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{AD2C1450-165B-4E4C-9C2D-C91B7A010EDF}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{1F770ED3-7F35-4148-BE69-8D9B3D33BFF3}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{EB12FB8B-411E-4215-80A5-DAC6E094976C}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{746EE892-E940-405D-93AC-C042198A9595}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F9E2CC6A-28D4-41C4-8739-9B1D7AF8232D}] => (Allow) C:\Program Files\HP\HP ENVY Photo 7800 series\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{E33DC55C-6FA1-4AD9-B512-21514F313DFF}C:\users\judith\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\judith\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{872EC777-F39A-49A4-AAAE-024F581E0EF3}C:\users\judith\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\judith\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{61575A5B-2D0F-4753-9F6A-B22259EE8149}C:\users\judith\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\judith\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{95ACB291-D6D9-4260-A914-8716F6F81536}C:\users\judith\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\judith\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DABD4545-91A9-43F8-9965-FA4848E5F76C}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{C09B0D24-7C82-4913-A4D9-A02BF8BB8C4D}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{03FBE24F-D953-4D58-B04B-E0021D14D900}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3FB60064-E2B8-4F13-9FAC-154552B17F07}] => (Allow) LPort=55100
FirewallRules: [{9DBAA4DD-BF03-4910-A288-D8A49B9FD32C}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe (Lenovo (Beijing) Limited -> Lenovo)
FirewallRules: [TCP Query User{30847A65-B106-4761-A0BA-B8286FFECE87}C:\users\judith\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\judith\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{EDE1A7EA-C27F-487D-B726-7A4D216364A5}C:\users\judith\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\judith\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B906872E-FF81-41B8-A7A3-616B529FE0C6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{75515354-4C0B-4AAF-B8D2-C8446F85D2CC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B4636D38-1DE8-4D8D-8FED-1171ED3FF44E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{04D977C6-BCE4-465E-BFD1-282BD3CB443D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9A78E38D-0264-44B6-BDDC-EAA99FC953E5}] => (Allow) C:\Program Files\HP\HP Officejet Pro 6830\bin\FaxApplications.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{E73C4881-C34D-4392-B7A8-4C287830460C}] => (Allow) C:\Program Files\HP\HP Officejet Pro 6830\bin\DigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{C9C5ADB5-249E-42D3-B541-177258F55EF3}] => (Allow) C:\Program Files\HP\HP Officejet Pro 6830\bin\SendAFax.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{0B163E3E-D540-4B84-B244-A8CF416EFF72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 6830\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{7E0935F9-51C2-4616-BBA8-99F3C04C41E3}] => (Allow) LPort=5357
FirewallRules: [{4AA2AF63-4E3F-4DAA-960F-3697FBDDA995}] => (Allow) C:\Program Files\HP\HP Officejet Pro 6830\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [TCP Query User{D211F363-088A-4614-9738-4CEDDA39A1D2}C:\users\judith\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\judith\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{B79C36F3-2B0F-4D5E-8A97-2065D2B2DD7F}C:\users\judith\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\judith\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{050D8258-2FB0-473D-929E-7C60FCB850D3}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{789EEAF1-6EBC-432E-A71E-69D2062EAAD8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Puntos de Restauración =========================

16-06-2020 11:16:52 Windows Update
23-06-2020 17:52:50 Punto de control programado
27-06-2020 21:24:20 Windows Update
28-06-2020 10:33:37 AdwCleaner_BeforeCleaning_28/06/2020_10:33:32
28-06-2020 10:45:23 AdwCleaner_BeforeCleaning_28/06/2020_10:45:16

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/28/2020 12:49:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11308,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/28/2020 12:27:27 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/28/2020 12:27:27 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/28/2020 12:22:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5816,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/28/2020 12:16:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2212,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/28/2020 12:09:26 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/28/2020 10:57:04 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5356,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/28/2020 10:48:03 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.


Errores del sistema:
=============
Error: (06/28/2020 12:18:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (06/28/2020 12:06:17 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: El servidor {784E29F4-5EBE-4279-9948-1E8FE941646D} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/28/2020 12:04:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (06/28/2020 12:03:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (06/28/2020 12:03:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (06/28/2020 11:04:42 AM) (Source: DCOM) (EventID: 10010) (User: ChuPc)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/28/2020 11:04:42 AM) (Source: DCOM) (EventID: 10010) (User: ChuPc)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (06/28/2020 11:04:42 AM) (Source: DCOM) (EventID: 10010) (User: ChuPc)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.


Windows Defender:
===================================
Date: 2020-06-25 20:24:03.445
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {3DCB6D3A-6C81-4555-87BE-BA151E72CFF1}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-06-25 19:35:52.757
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {3E2999EC-778D-404C-AEAB-ACB7F54DD748}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-06-05 20:36:11.688
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {0C32D948-4993-4BCC-ABB7-A0CB79C53ABD}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-06-05 19:43:46.936
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1C206D92-2216-40BB-8753-2030F1F15C68}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-06-05 19:33:55.206
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {383039EA-8BC0-4D96-8405-528B2A09B9D5}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-06-28 10:30:23.006
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Supervisión de comportamiento
Código de error: 0x80508023
Descripción del error: The program could not find the malware and other potentially unwanted software on this device. 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2020-06-22 19:13:47.251
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.317.1710.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\NETWORK SERVICE
Versión actual del motor: 
Versión anterior del motor: 1.1.17100.2
Código de error: 0x80070020
Descripción del error: El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso. 

Date: 2020-06-22 19:13:47.251
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.317.1710.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\NETWORK SERVICE
Versión actual del motor: 
Versión anterior del motor: 1.1.17100.2
Código de error: 0x80070020
Descripción del error: El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso. 

Date: 2020-06-22 19:13:47.251
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.317.1710.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\NETWORK SERVICE
Versión actual del motor: 
Versión anterior del motor: 1.1.17100.2
Código de error: 0x80070020
Descripción del error: El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso. 

Date: 2020-06-22 19:11:22.893
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.317.1710.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.17100.2
Código de error: 0x80240016
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 

CodeIntegrity:
===================================

Date: 2020-06-28 10:52:52.638
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-06-28 10:52:52.602
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-06-28 10:43:39.571
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-06-28 10:43:39.537
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-06-27 22:45:10.044
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-27 22:45:10.044
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-26 22:46:31.684
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-26 22:46:30.707
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: LENOVO B0CN72WW 01/27/2015
Placa base: LENOVO Lenovo G50-80
Procesador: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Porcentaje de memoria en uso: 62%
RAM física total: 4017.08 MB
RAM física disponible: 1486.93 MB
Virtual total: 8881.08 MB
Virtual disponible: 5691.68 MB

==================== Unidades ================================

Drive c: (Windows8_OS) (Fixed) (Total:423.58 GB) (Free:254.21 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.23 GB) NTFS

\\?\Volume{67566fd8-744e-4f49-81e5-04a1754c7b1e}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.69 GB) NTFS
\\?\Volume{e5c43c63-e7b3-4d9a-88b5-b52b642656cb}\ (PBR_DRV) (Fixed) (Total:14.85 GB) (Free:2.7 GB) NTFS
\\?\Volume{416298e2-bad1-425b-b777-a24385a68264}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CA4D2F04)

Partition: GPT.

==================== Final de Addition.txt =======================

Judith_AB · 28 Junio, 2020 12:04

Adjunto FRST

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 27-06-2020
Ejecutado por Judith Acón Bonache (administrador) sobre CHUPC (LENOVO 80L0) (28-06-2020 13:51:16)
Ejecutado desde C:\Users\Judith\Desktop
Perfiles cargados: Judith Acón Bonache
Platform: Windows 10 Home Versión 1903 18362.900 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Edge
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel® Services Manager -> ) C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
(Intel® Services Manager -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\ui\updateui.exe
(Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Windows\System32\LenovoUpdate.exe
(LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe
(LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe
(LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Judith\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
(New Horizon DataSys Inc. -> Lenovo) C:\Program Files\Lenovo\OneKey Optimizer\bin\FBService.exe
(Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [4060376 2014-10-22] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322712 2014-10-09] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [OneKeyOptimizer] => C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [604968 2015-06-19] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-12-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\Run: [Google Update] => C:\Users\Judith\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-22] (Google LLC -> Google LLC)
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\Run: [GoToMeeting] => C:\Users\Judith\AppData\Local\GoToMeeting\16576\g2mstart.exe [32256 2020-02-20] (LogMeIn, Inc. -> LogMeIn, Inc.)
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\HP 7212 Status Monitor: C:\WINDOWS\system32\hpinksts7212LM.dll [336904 2014-06-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet Pro 6830): C:\WINDOWS\system32\HPDiscoPM7212.dll [763968 2014-07-18] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon9.dll [29704 2013-12-12] (Nitro PDF Software -> Nitro PDF Software)
Startup: C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - .lnk [2016-05-29]
ShortcutAndArgument: Supervisar alertas de tinta - .lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet Pro 6830\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=TH48B5C199;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - HP Officejet Pro 6830.lnk [2018-04-29]
ShortcutAndArgument: Supervisar alertas de tinta - HP Officejet Pro 6830.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet Pro 6830\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=TH48B5C199;CONNECTION=USB;MONITOR=1;

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {01DD270A-3BB3-4D53-9E9C-1E2655C80BCD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Ningún archivo <==== ATENCIÓN
Task: {03975839-6C42-42D0-92B0-0BB5AF49C4A5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Ningún archivo <==== ATENCIÓN
Task: {04B9441A-EED7-48B9-A2EE-ACE03FD03AFD} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {0DBEC35B-121D-4970-AF11-2FE9D0BE7F63} - \Lenovo\ImController\TimeBasedEvents\b93537fa-154a-4e9f-91e5-c94a8a55de2e -> Ningún archivo <==== ATENCIÓN
Task: {0EA0FF2D-3844-483C-8456-EFB5C8B67FB4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Ningún archivo <==== ATENCIÓN
Task: {12372EC2-310E-4283-82A5-E7DBCC933925} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> )
Task: {166EBB38-58BB-41DE-8FAC-4072F74A66B9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124776 2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {1739E2CB-0899-444E-9CEB-8722BD3D13E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3038993378-3514742665-455157994-1001Core => C:\Users\Judith\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-06-14] (Google Inc -> Google Inc.)
Task: {1B36CD84-A1A0-49E9-958D-9F2DB0B830EE} - \WPD\SqmUpload_S-1-5-21-3038993378-3514742665-455157994-1001 -> Ningún archivo <==== ATENCIÓN
Task: {1E13AB18-0417-4321-B12D-61B5CBC36967} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23756168 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EBF46A0-AE41-4A96-9DC0-1BF68F0ADA54} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Ningún archivo <==== ATENCIÓN
Task: {2DA2332F-5897-4CB2-BB6B-C9EA7CC61B08} - System32\Tasks\HPCustParticipation HP ENVY Photo 7800 series => C:\Program Files\HP\HP ENVY Photo 7800 series\Bin\HPCustPartic.exe [6660232 2018-01-04] (Hewlett Packard -> HP Inc.)
Task: {3496195A-07E9-41B1-9E59-AB6B88A973E1} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3B7C30E0-BAD9-49F6-8567-D4C85009ED58} - System32\Tasks\G2MUpdateTask-S-1-5-21-3038993378-3514742665-455157994-1001 => C:\Users\Judith\AppData\Local\GoToMeeting\18068\g2mupdate.exe [32424 2020-06-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {3BED0B53-77E8-4581-B5FD-0A53CD72E99F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {41A07A38-C851-42C1-A069-2D9B84D5F073} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH7A33W2FD => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {434D597A-9BC9-4BE3-A297-E89CE7ED52B9} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {438E7C1E-C923-475C-8819-E9B9CF14A02A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4368792 2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {45D465AE-9F27-4E8E-BA4F-499C289157C5} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Ningún archivo <==== ATENCIÓN
Task: {46998E6D-E724-4BEC-93C7-AF0C878B9512} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Ningún archivo <==== ATENCIÓN
Task: {49D33D73-EDD3-4BBC-9E32-53A6847B3667} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Ningún archivo <==== ATENCIÓN
Task: {51519228-CF59-44CD-A31C-E62F4A5FDF8E} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {58591E15-D389-4E9D-91DF-B7E7995765EF} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16864 2015-12-10] (LENOVO -> Lenovo)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5B91EAB3-0036-4EBC-9FE9-9A93910F7A83} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe
Task: {5C76C798-6979-46F0-934D-2254D1D8A1FD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {5CB0211B-A05C-48CA-A9CE-39AB73BEE1ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {634BDCAA-4DF4-4946-A4D9-956CC66F1D92} - \Lenovo\ImController\TimeBasedEvents\06bf6140-5fed-423f-985c-f11a9c01ef9d -> Ningún archivo <==== ATENCIÓN
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7249451B-1DCD-4F53-8C09-4D9A672858FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4368792 2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {72C0682A-7B50-469D-A9E9-89B5727AB399} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Ningún archivo <==== ATENCIÓN
Task: {7F7126CC-2239-4CA0-B2FF-860A7B0E0C4B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {818CD386-3BD1-4281-919F-5C88A88C857A} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe
Task: {836B2849-BA4C-46C9-B129-1C4885A268D9} - System32\Tasks\HPCustParticipation HP Officejet Pro 6830 => C:\Program Files\HP\HP Officejet Pro 6830\Bin\HPCustPartic.exe [5815816 2014-07-18] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {9836FF02-36F3-4772-AAAE-3F6DD5CA5484} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {98A5B574-CEEB-4EE9-8D21-434562B30601} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Ningún archivo <==== ATENCIÓN
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {A09920FB-5BB3-4F2A-BF6B-6EAC2B85D3CB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {A145167A-921A-48C1-B873-DA2D3C4DE3EE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {A2A33DA2-50D7-40C8-8514-F0F483598A19} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {A9287619-5958-4F58-8DBD-96C9BF3A7F86} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3038993378-3514742665-455157994-1001Core1d2b6d678724336 => C:\Users\Judith\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-06-14] (Google Inc -> Google Inc.)
Task: {AC96B772-C693-478B-A656-5F6E93A24E17} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {ADCFF12B-7597-4765-AD4F-73AD72F044ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {AEAAD6C4-2A03-439F-A50C-7B817075F5A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Ningún archivo <==== ATENCIÓN
Task: {B3683E6B-E0FB-4C95-8B9E-AC1E19C4422A} - \Lenovo\ImController\TimeBasedEvents\52c9cf0e-17ad-4b8e-978a-e9d634924de8 -> Ningún archivo <==== ATENCIÓN
Task: {B4B75E0F-146E-4C08-90F0-257E97077731} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B67DDB1F-17E1-47C4-BC57-F08BDB166185} - System32\Tasks\G2MUploadTask-S-1-5-21-3038993378-3514742665-455157994-1001 => C:\Users\Judith\AppData\Local\GoToMeeting\18068\g2mupload.exe [32424 2020-06-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BBBC9F6C-62E5-4F53-A229-45334857499D} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
Task: {BDD84A20-CADC-4D27-A1EB-530B8EDE7E5F} - \Microsoft\Windows\UNP\RunCampaignManager -> Ningún archivo <==== ATENCIÓN
Task: {BE27EC64-3565-42E0-80AE-7622E976C02C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23756168 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2D49A9F-AF70-4C1E-BE2D-AB61CC3A8157} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3038993378-3514742665-455157994-1001UA1d2b6d678938cfc => C:\Users\Judith\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-06-14] (Google Inc -> Google Inc.)
Task: {C727A545-3698-474C-9467-5AF01CBF3BA4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3038993378-3514742665-455157994-1001UA => C:\Users\Judith\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-06-14] (Google Inc -> Google Inc.)
Task: {CE28EC37-331E-48E0-B80F-D092BADB54D2} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> )
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D27D1D26-BF71-4D3A-BFAC-7666A19D16F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Ningún archivo <==== ATENCIÓN
Task: {E3F40395-CE26-4477-92C1-93978BAE0D82} - \Lenovo\ImController\TimeBasedEvents\f6a9fef5-557a-49f3-86e2-bd7478b57180 -> Ningún archivo <==== ATENCIÓN
Task: {E6A6B4D4-697A-4A8E-B284-4197A3267AA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Ningún archivo <==== ATENCIÓN
Task: {EB33D164-0FFE-4BF7-9E14-229C9AEAFD85} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {F2882A53-D590-4C52-B4FB-F7DB6F53259D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124776 2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3128554-0273-437E-8B35-B1A259EA592F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Ningún archivo <==== ATENCIÓN
Task: {F53D41A1-DD96-496F-AE1B-886C022A7971} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {F57D7748-DADD-4B27-9A4D-EE3241DCB865} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {FF177976-7399-4CF4-918C-BDF9430A04AC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Ningún archivo <==== ATENCIÓN

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3038993378-3514742665-455157994-1001.job => C:\Users\Judith\AppData\Local\GoToMeeting\18068\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3038993378-3514742665-455157994-1001.job => C:\Users\Judith\AppData\Local\GoToMeeting\18068\g2mupload.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 212.166.211.1 212.166.132.96
Tcpip\..\Interfaces\{0efdeaae-6c5d-4b7d-ac41-1145d6810489}: [DhcpNameServer] 212.166.211.1 212.166.132.96
Tcpip\..\Interfaces\{641708e1-d612-4d23-b762-29581c31df8a}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{64fbf782-6123-42a8-9069-428889f07932}: [DhcpNameServer] 212.166.211.1 212.166.132.96

Internet Explorer:
==================
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> DefaultScope {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-18] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
Edge Profile: C:\Users\Judith\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-28]

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2013-12-12] (Nitro PDF Software -> Nitro PDF)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3038993378-3514742665-455157994-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Judith\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-23] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default [2020-06-28]
CHR Extension: (Presentacions) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Documents) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-29]
CHR Extension: (Google Drive) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-24]
CHR Extension: (Google Meet Grid View) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjkegbgpfgpikgkfidhcihhiflbjgfic [2020-05-06]
CHR Extension: (YouTube) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Cerca de Google) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-24]
CHR Extension: (Fulls de càlcul) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-29]
CHR Extension: (Documents de Google sense connexió) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-02]
CHR Extension: (Sistema de pagaments de Chrome Web Store) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-18]
==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-10-07] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10634632 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
R2 FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [193640 2015-10-22] (New Horizon DataSys Inc. -> Lenovo)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373680 2017-05-26] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-09-03] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> )
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (LENOVO -> Lenovo)
R2 Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2730280 2016-01-07] (LENOVO -> Lenovo(beijing) Limited)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2005320 2014-10-13] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
R3 LenovoUpdate; C:\WINDOWS\System32\LenovoUpdate.exe [26608 2020-06-28] (Lenovo (Beijing) Limited -> Lenovo)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [218952 2014-08-25] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-06-26] (Malwarebytes Inc -> Malwarebytes)
R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-12] (Nitro PDF Software -> Nitro PDF Software)
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [69640 2013-12-12] (Nitro PDF Software -> Nalpeiron Ltd.)
R2 OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [369960 2016-01-07] (LENOVO -> Lenovo(beijing) Limited)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255608 2016-06-01] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 LenovoPAWDService; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [X]
S2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [X]
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-13] (Microsoft Corporation) [Archivo no firmado] [El archivo está en uso]
R0 Fastboot; C:\WINDOWS\System32\DRIVERS\Fastboot.sys [72808 2015-10-22] (New Horizon DataSys Inc. -> Windows (R) Win 7 DDK provider)
R3 KMDFVirtualKbd; C:\WINDOWS\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] (Lenovo (Beijing) Limited -> )
R3 KMDFVirtualMouse; C:\WINDOWS\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] (Lenovo (Beijing) Limited -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-06-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-26] (Malwarebytes Inc -> Malwarebytes)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80920 2015-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [3525896 2016-11-09] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2584280 2014-10-22] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-27] (Synaptics Incorporated -> Synaptics Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [401120 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Judith_AB · 28 Junio, 2020 12:05

==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-28 13:51 - 2020-06-28 13:53 - 000034472 _____ C:\Users\Judith\Desktop\FRST.txt
2020-06-28 13:50 - 2020-06-28 13:52 - 000000000 ____D C:\FRST
2020-06-28 13:47 - 2020-06-28 13:47 - 002291200 _____ (Farbar) C:\Users\Judith\Desktop\FRST64.exe
2020-06-28 12:04 - 2020-06-28 12:05 - 000000000 ____D C:\Users\Judith\Desktop\Limpieza Junio 2020
2020-06-28 10:31 - 2020-06-28 10:35 - 000000000 ____D C:\AdwCleaner
2020-06-27 22:44 - 2020-06-28 10:53 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-27 22:44 - 2020-06-27 22:44 - 000002896 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-06-27 22:44 - 2020-06-27 22:44 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-27 22:44 - 2020-06-27 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-06-27 22:44 - 2020-06-27 22:44 - 000000000 ____D C:\Program Files\CCleaner
2020-06-27 22:42 - 2020-06-27 22:43 - 025838336 _____ (Piriform Software Ltd) C:\Users\Judith\Downloads\ccsetup568.exe
2020-06-27 22:41 - 2020-06-27 22:41 - 008402608 _____ (Malwarebytes) C:\Users\Judith\Desktop\adwcleaner_8.0.5.exe
2020-06-26 19:23 - 2020-06-26 19:23 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-06-26 19:23 - 2020-06-26 19:23 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-06-26 19:23 - 2020-06-26 19:23 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-06-26 19:23 - 2020-06-26 19:23 - 000002032 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-06-26 19:23 - 2020-06-26 19:23 - 000000000 ____D C:\Users\Judith\AppData\Local\mbam
2020-06-26 19:22 - 2020-06-26 19:22 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-06-26 19:22 - 2020-06-26 19:22 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-06-26 19:22 - 2020-06-26 19:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-06-26 19:21 - 2020-06-26 19:21 - 000000000 ____D C:\Program Files\Malwarebytes
2020-06-26 19:21 - 2020-06-26 19:21 - 000000000 ____D C:\Malwarebytes
2020-06-26 19:19 - 2020-06-26 19:19 - 001988280 _____ (Malwarebytes) C:\Users\Judith\Downloads\MBSetup.exe
2020-06-26 01:25 - 2020-06-26 12:42 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-06-26 01:25 - 2020-06-26 12:42 - 000002297 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-06-26 01:25 - 2020-06-26 12:28 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-06-26 01:25 - 2020-06-26 12:28 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-06-19 20:51 - 2020-06-19 20:51 - 001269781 _____ C:\Users\Judith\Desktop\002_Hipoacusia.pdf
2020-06-18 15:12 - 2020-06-05 23:03 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-06-18 15:12 - 2020-06-05 23:03 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-12 18:15 - 2020-06-12 18:15 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 006292480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-12 18:15 - 2020-06-12 18:15 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-06-12 18:15 - 2020-06-12 18:15 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2020-06-12 18:15 - 2020-06-12 18:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-06-12 18:15 - 2020-06-12 18:15 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2020-06-12 18:15 - 2020-06-12 18:15 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-12 18:15 - 2020-06-12 18:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-06-12 18:14 - 2020-06-12 18:15 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 008015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 007268864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 005765144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-06-12 18:14 - 2020-06-12 18:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-06-12 18:14 - 2020-06-12 18:14 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 001193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-06-12 18:14 - 2020-06-12 18:14 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-06-12 18:14 - 2020-06-12 18:14 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-06-12 18:14 - 2020-06-12 18:14 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-06-12 18:14 - 2020-06-12 18:14 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-06-12 18:14 - 2020-06-12 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-06-12 18:13 - 2020-06-12 18:13 - 007604592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 006091048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-06-12 18:13 - 2020-06-12 18:13 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001654960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001416224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000684856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000593424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-06-12 18:13 - 2020-06-12 18:13 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000405936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-06-12 18:13 - 2020-06-12 18:13 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-06-12 18:13 - 2020-06-12 18:13 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-06-12 18:13 - 2020-06-12 18:13 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-12 18:13 - 2020-06-12 18:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 007911176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 007266080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 003726848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 002235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000797464 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-06-12 18:12 - 2020-06-12 18:12 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000132424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-12 18:12 - 2020-06-12 18:12 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-06-12 18:12 - 2020-06-12 18:12 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-12 18:11 - 2020-06-12 18:12 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-12 18:11 - 2020-06-12 18:11 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-06-12 18:11 - 2020-06-12 18:11 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-06-12 18:11 - 2020-06-12 18:11 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-06-12 18:11 - 2020-06-12 18:11 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll
2020-06-12 18:11 - 2020-06-12 18:11 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-12 18:11 - 2020-06-12 18:11 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-12 16:10 - 2020-05-15 06:29 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-06-12 16:10 - 2020-05-15 06:10 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-06-01 14:18 - 2020-06-01 14:18 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-06-01 14:16 - 2020-06-01 14:16 - 000000000 ____D C:\Users\Judith\Documents\Zoom
2020-05-30 19:14 - 2020-05-30 19:14 - 000004054 _____ C:\Users\Judith\Downloads\His_Eye_Is_on_the_Sparrow (2).mid
2020-05-30 19:14 - 2020-05-30 19:14 - 000004054 _____ C:\Users\Judith\Downloads\His_Eye_Is_on_the_Sparrow (1).mid
2020-05-30 19:12 - 2020-05-30 19:12 - 000004054 _____ C:\Users\Judith\Downloads\His_Eye_Is_on_the_Sparrow.mid

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-06-28 13:44 - 2019-09-03 19:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-06-28 13:40 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-28 12:43 - 2018-04-29 18:13 - 000000000 ____D C:\Users\Judith\AppData\Local\PlaceholderTileLogoFolder
2020-06-28 12:09 - 2015-03-15 10:34 - 000000000 ____D C:\ProgramData\Lenovo
2020-06-28 12:06 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-06-28 12:03 - 2017-11-08 12:50 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-06-28 10:59 - 2019-09-07 00:33 - 000000000 ____D C:\WINDOWS\Minidump
2020-06-28 10:59 - 2019-08-02 09:32 - 000000000 ___DC C:\WINDOWS\Panther
2020-06-28 10:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-06-28 10:49 - 2019-09-03 20:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-06-28 10:49 - 2017-11-08 12:44 - 000111088 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoCheck.exe
2020-06-28 10:49 - 2017-11-08 12:44 - 000026608 _____ (Lenovo) C:\WINDOWS\system32\LenovoUpdate.exe
2020-06-28 10:48 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-06-28 10:48 - 2017-11-08 12:44 - 000153336 _____ C:\WINDOWS\system32\wpbbin.exe
2020-06-28 10:47 - 2016-01-31 21:59 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2020-06-28 10:37 - 2020-03-19 19:05 - 000000000 ____D C:\WINDOWS\Lenovo
2020-06-28 10:37 - 2019-09-03 20:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-06-28 10:37 - 2016-01-31 22:27 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2020-06-28 10:37 - 2015-06-14 19:35 - 000000000 ____D C:\Users\Judith Acón Bonache\AppData\Local\Lenovo
2020-06-28 10:37 - 2015-05-29 23:38 - 000000000 ____D C:\Users\Judith\AppData\Local\Lenovo
2020-06-28 10:36 - 2016-01-31 22:44 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Hewlett-Packard
2020-06-28 10:36 - 2016-01-31 22:19 - 000000000 ____D C:\Users\Judith\AppData\Local\Hewlett-Packard
2020-06-28 10:36 - 2015-03-15 12:05 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-06-28 10:35 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-06-28 10:34 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-06-28 10:30 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-06-28 10:28 - 2018-01-19 10:46 - 000000000 ____D C:\Users\Judith\AppData\Local\Packages
2020-06-28 10:26 - 2019-05-26 19:43 - 000000000 ____D C:\Program Files (x86)\Roni Music
2020-06-28 10:23 - 2015-06-19 20:20 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Nitro PDF
2020-06-27 22:41 - 2019-09-03 20:07 - 001775182 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-27 22:41 - 2019-03-19 13:59 - 000777334 _____ C:\WINDOWS\system32\perfh00A.dat
2020-06-27 22:41 - 2019-03-19 13:59 - 000155366 _____ C:\WINDOWS\system32\perfc00A.dat
2020-06-27 22:34 - 2019-09-03 19:54 - 000000000 ____D C:\Users\Judith
2020-06-27 22:31 - 2015-03-15 12:39 - 000000000 ____D C:\Program Files (x86)\Amazon
2020-06-27 13:43 - 2020-02-20 20:54 - 000000000 ____D C:\Users\Judith\AppData\Local\GoToMeeting
2020-06-27 02:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-26 22:17 - 2019-09-03 20:21 - 000004226 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{720C00E1-158D-49FD-808D-07AA1F6A0E5C}
2020-06-26 19:23 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-06-26 18:02 - 2015-06-14 20:01 - 000000000 ____D C:\Users\Judith\AppData\Local\Spotify
2020-06-26 18:00 - 2015-06-14 20:01 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Spotify
2020-06-26 01:24 - 2020-02-20 20:54 - 000000678 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3038993378-3514742665-455157994-1001.job
2020-06-26 01:24 - 2020-02-20 20:54 - 000000582 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3038993378-3514742665-455157994-1001.job
2020-06-25 23:47 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-25 19:45 - 2015-08-25 17:46 - 000000000 ___RD C:\Users\Judith\Desktop\Escriptori
2020-06-25 18:53 - 2020-01-15 14:28 - 000002447 _____ C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-25 18:53 - 2019-09-03 20:21 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3038993378-3514742665-455157994-1001
2020-06-25 18:53 - 2015-05-29 23:37 - 000000000 ___RD C:\Users\Judith\OneDrive
2020-06-25 18:51 - 2020-02-20 20:54 - 000003854 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-3038993378-3514742665-455157994-1001
2020-06-25 18:51 - 2020-02-20 20:54 - 000003758 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-3038993378-3514742665-455157994-1001
2020-06-23 14:12 - 2015-06-14 19:41 - 000002548 _____ C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-18 15:38 - 2018-01-19 11:14 - 000000000 ___RD C:\Users\Judith\3D Objects
2020-06-18 15:38 - 2015-05-30 06:19 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-06-18 15:38 - 2015-03-15 12:28 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-06-18 15:10 - 2019-09-03 19:42 - 000454472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-18 15:07 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-18 15:07 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-06-18 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-06-18 14:59 - 2019-01-02 16:31 - 000000000 ____D C:\Users\Judith\AppData\Roaming\WhatsApp
2020-06-12 18:11 - 2019-09-03 19:47 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-06-10 11:01 - 2019-01-02 16:30 - 000000000 ____D C:\Users\Judith\AppData\Local\WhatsApp
2020-06-05 19:05 - 2019-06-05 13:30 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-06-04 16:49 - 2018-02-27 18:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-06-04 15:40 - 2020-04-17 14:50 - 000000000 ____D C:\Users\Judith\Desktop\ATUR ERTO
2020-05-30 18:39 - 2017-06-11 12:40 - 000000000 ____D C:\Program Files\UNP

==================== Archivos en la raíz de algunos directorios ========

2015-12-21 21:28 - 2015-12-21 22:47 - 000464384 _____ (Dirección General de la Policía) C:\Users\Judith\AppData\Local\DNIeService.exe

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Daniela · 28 Junio, 2020 22:56

Hola

MUY Importante Realiza una copia de seguridad del registro :

Para hacerlo descarga DelFix.exe( en tu escritorio).
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.
Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

A continuación con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.

Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CREATERESTOREPOINT:
CLOSEPROCESSES:
Task: {01DD270A-3BB3-4D53-9E9C-1E2655C80BCD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Ningún archivo <==== ATENCIÓN
Task: {03975839-6C42-42D0-92B0-0BB5AF49C4A5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Ningún archivo <==== ATENCIÓN
Task: {0DBEC35B-121D-4970-AF11-2FE9D0BE7F63} - \Lenovo\ImController\TimeBasedEvents\b93537fa-154a-4e9f-91e5-c94a8a55de2e -> Ningún archivo <==== ATENCIÓN
Task: {0EA0FF2D-3844-483C-8456-EFB5C8B67FB4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Ningún archivo <==== ATENCIÓN
Task: {1B36CD84-A1A0-49E9-958D-9F2DB0B830EE} - \WPD\SqmUpload_S-1-5-21-3038993378-3514742665-455157994-1001 -> Ningún archivo <==== ATENCIÓN
Task: {1EBF46A0-AE41-4A96-9DC0-1BF68F0ADA54} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Ningún archivo <==== ATENCIÓN
Task: {45D465AE-9F27-4E8E-BA4F-499C289157C5} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Ningún archivo <==== ATENCIÓN
Task: {46998E6D-E724-4BEC-93C7-AF0C878B9512} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Ningún archivo <==== ATENCIÓN
Task: {49D33D73-EDD3-4BBC-9E32-53A6847B3667} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Ningún archivo <==== ATENCIÓN
Task: {634BDCAA-4DF4-4946-A4D9-956CC66F1D92} - \Lenovo\ImController\TimeBasedEvents\06bf6140-5fed-423f-985c-f11a9c01ef9d -> Ningún archivo <==== ATENCIÓN
Task: {72C0682A-7B50-469D-A9E9-89B5727AB399} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Ningún archivo <==== ATENCIÓN
Task: {98A5B574-CEEB-4EE9-8D21-434562B30601} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Ningún archivo <==== ATENCIÓN
Task: {A145167A-921A-48C1-B873-DA2D3C4DE3EE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {AEAAD6C4-2A03-439F-A50C-7B817075F5A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Ningún archivo <==== ATENCIÓN
Task: {B3683E6B-E0FB-4C95-8B9E-AC1E19C4422A} - \Lenovo\ImController\TimeBasedEvents\52c9cf0e-17ad-4b8e-978a-e9d634924de8 -> Ningún archivo <==== ATENCIÓN
Task: {BDD84A20-CADC-4D27-A1EB-530B8EDE7E5F} - \Microsoft\Windows\UNP\RunCampaignManager -> Ningún archivo <==== ATENCIÓN
Task: {D27D1D26-BF71-4D3A-BFAC-7666A19D16F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Ningún archivo <==== ATENCIÓN
Task: {E3F40395-CE26-4477-92C1-93978BAE0D82} - \Lenovo\ImController\TimeBasedEvents\f6a9fef5-557a-49f3-86e2-bd7478b57180 -> Ningún archivo <==== ATENCIÓN
Task: {E6A6B4D4-697A-4A8E-B284-4197A3267AA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Ningún archivo <==== ATENCIÓN
Task: {F3128554-0273-437E-8B35-B1A259EA592F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Ningún archivo <==== ATENCIÓN
Task: {F53D41A1-DD96-496F-AE1B-886C022A7971} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {FF177976-7399-4CF4-918C-BDF9430A04AC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Ningún archivo <==== ATENCIÓN
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> DefaultScope {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
S2 LenovoPAWDService; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [X]
S2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [X]
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [X]
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.

Nota Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
Presionar el botón FIX/Corregir y aguardar a que termine.
La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo

Judith_AB · 5 Julio, 2020 10:54

Gracias por la ayuda!! Adjunto report. Parece que ahora va todo bien.

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 04-07-2020 01
Ejecutado por Judith Acón Bonache (05-07-2020 12:41:06) Run:1
Ejecutado desde C:\Users\Judith\Desktop
Perfiles cargados: Judith Acón Bonache
Modo de Inicio: Safe Mode (with Networking)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
Task: {01DD270A-3BB3-4D53-9E9C-1E2655C80BCD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Ningún archivo <==== ATENCIÓN
Task: {03975839-6C42-42D0-92B0-0BB5AF49C4A5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Ningún archivo <==== ATENCIÓN
Task: {0DBEC35B-121D-4970-AF11-2FE9D0BE7F63} - \Lenovo\ImController\TimeBasedEvents\b93537fa-154a-4e9f-91e5-c94a8a55de2e -> Ningún archivo <==== ATENCIÓN
Task: {0EA0FF2D-3844-483C-8456-EFB5C8B67FB4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Ningún archivo <==== ATENCIÓN
Task: {1B36CD84-A1A0-49E9-958D-9F2DB0B830EE} - \WPD\SqmUpload_S-1-5-21-3038993378-3514742665-455157994-1001 -> Ningún archivo <==== ATENCIÓN
Task: {1EBF46A0-AE41-4A96-9DC0-1BF68F0ADA54} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Ningún archivo <==== ATENCIÓN
Task: {45D465AE-9F27-4E8E-BA4F-499C289157C5} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Ningún archivo <==== ATENCIÓN
Task: {46998E6D-E724-4BEC-93C7-AF0C878B9512} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Ningún archivo <==== ATENCIÓN
Task: {49D33D73-EDD3-4BBC-9E32-53A6847B3667} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Ningún archivo <==== ATENCIÓN
Task: {634BDCAA-4DF4-4946-A4D9-956CC66F1D92} - \Lenovo\ImController\TimeBasedEvents\06bf6140-5fed-423f-985c-f11a9c01ef9d -> Ningún archivo <==== ATENCIÓN
Task: {72C0682A-7B50-469D-A9E9-89B5727AB399} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Ningún archivo <==== ATENCIÓN
Task: {98A5B574-CEEB-4EE9-8D21-434562B30601} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Ningún archivo <==== ATENCIÓN
Task: {A145167A-921A-48C1-B873-DA2D3C4DE3EE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {AEAAD6C4-2A03-439F-A50C-7B817075F5A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Ningún archivo <==== ATENCIÓN
Task: {B3683E6B-E0FB-4C95-8B9E-AC1E19C4422A} - \Lenovo\ImController\TimeBasedEvents\52c9cf0e-17ad-4b8e-978a-e9d634924de8 -> Ningún archivo <==== ATENCIÓN
Task: {BDD84A20-CADC-4D27-A1EB-530B8EDE7E5F} - \Microsoft\Windows\UNP\RunCampaignManager -> Ningún archivo <==== ATENCIÓN
Task: {D27D1D26-BF71-4D3A-BFAC-7666A19D16F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Ningún archivo <==== ATENCIÓN
Task: {E3F40395-CE26-4477-92C1-93978BAE0D82} - \Lenovo\ImController\TimeBasedEvents\f6a9fef5-557a-49f3-86e2-bd7478b57180 -> Ningún archivo <==== ATENCIÓN
Task: {E6A6B4D4-697A-4A8E-B284-4197A3267AA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Ningún archivo <==== ATENCIÓN
Task: {F3128554-0273-437E-8B35-B1A259EA592F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Ningún archivo <==== ATENCIÓN
Task: {F53D41A1-DD96-496F-AE1B-886C022A7971} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Ningún archivo <==== ATENCIÓN
Task: {FF177976-7399-4CF4-918C-BDF9430A04AC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Ningún archivo <==== ATENCIÓN
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> DefaultScope {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
SearchScopes: HKU\S-1-5-21-3038993378-3514742665-455157994-1001 -> {81B0F82B-13DE-457E-8AA6-145BB865DC74} URL = 
S2 LenovoPAWDService; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [X]
S2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [X]
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [X]
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{01DD270A-3BB3-4D53-9E9C-1E2655C80BCD}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{01DD270A-3BB3-4D53-9E9C-1E2655C80BCD}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03975839-6C42-42D0-92B0-0BB5AF49C4A5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03975839-6C42-42D0-92B0-0BB5AF49C4A5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0DBEC35B-121D-4970-AF11-2FE9D0BE7F63}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0DBEC35B-121D-4970-AF11-2FE9D0BE7F63}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\b93537fa-154a-4e9f-91e5-c94a8a55de2e" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0EA0FF2D-3844-483C-8456-EFB5C8B67FB4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0EA0FF2D-3844-483C-8456-EFB5C8B67FB4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1B36CD84-A1A0-49E9-958D-9F2DB0B830EE}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B36CD84-A1A0-49E9-958D-9F2DB0B830EE}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3038993378-3514742665-455157994-1001" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EBF46A0-AE41-4A96-9DC0-1BF68F0ADA54}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EBF46A0-AE41-4A96-9DC0-1BF68F0ADA54}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{45D465AE-9F27-4E8E-BA4F-499C289157C5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45D465AE-9F27-4E8E-BA4F-499C289157C5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{46998E6D-E724-4BEC-93C7-AF0C878B9512}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46998E6D-E724-4BEC-93C7-AF0C878B9512}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{49D33D73-EDD3-4BBC-9E32-53A6847B3667}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49D33D73-EDD3-4BBC-9E32-53A6847B3667}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{634BDCAA-4DF4-4946-A4D9-956CC66F1D92}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{634BDCAA-4DF4-4946-A4D9-956CC66F1D92}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\06bf6140-5fed-423f-985c-f11a9c01ef9d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{72C0682A-7B50-469D-A9E9-89B5727AB399}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72C0682A-7B50-469D-A9E9-89B5727AB399}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{98A5B574-CEEB-4EE9-8D21-434562B30601}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98A5B574-CEEB-4EE9-8D21-434562B30601}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A145167A-921A-48C1-B873-DA2D3C4DE3EE}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A145167A-921A-48C1-B873-DA2D3C4DE3EE}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AEAAD6C4-2A03-439F-A50C-7B817075F5A5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AEAAD6C4-2A03-439F-A50C-7B817075F5A5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B3683E6B-E0FB-4C95-8B9E-AC1E19C4422A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3683E6B-E0FB-4C95-8B9E-AC1E19C4422A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\52c9cf0e-17ad-4b8e-978a-e9d634924de8" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BDD84A20-CADC-4D27-A1EB-530B8EDE7E5F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDD84A20-CADC-4D27-A1EB-530B8EDE7E5F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D27D1D26-BF71-4D3A-BFAC-7666A19D16F9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D27D1D26-BF71-4D3A-BFAC-7666A19D16F9}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E3F40395-CE26-4477-92C1-93978BAE0D82}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3F40395-CE26-4477-92C1-93978BAE0D82}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\f6a9fef5-557a-49f3-86e2-bd7478b57180" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6A6B4D4-697A-4A8E-B284-4197A3267AA2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6A6B4D4-697A-4A8E-B284-4197A3267AA2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3128554-0273-437E-8B35-B1A259EA592F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3128554-0273-437E-8B35-B1A259EA592F}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F53D41A1-DD96-496F-AE1B-886C022A7971}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F53D41A1-DD96-496F-AE1B-886C022A7971}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF177976-7399-4CF4-918C-BDF9430A04AC}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF177976-7399-4CF4-918C-BDF9430A04AC}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => eliminado correctamente
"HKU\S-1-5-21-3038993378-3514742665-455157994-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => eliminado correctamente
HKU\S-1-5-21-3038993378-3514742665-455157994-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{81B0F82B-13DE-457E-8AA6-145BB865DC74} => eliminado correctamente
HKLM\System\CurrentControlSet\Services\LenovoPAWDService => eliminado correctamente
LenovoPAWDService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\PhoneCompanionPusher => eliminado correctamente
PhoneCompanionPusher => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\PhoneCompanionVap => eliminado correctamente
PhoneCompanionVap => servicio eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SHAREit.FileContextMenuExt => eliminado correctamente
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SHAREit.FileContextMenuExt => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-3038993378-3514742665-455157994-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3038993378-3514742665-455157994-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Wi-Fi mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 5 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 6 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 7 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : home
   V¡nculo: direcci¢n IPv6 local. . . : fe80::7d93:eb4:c898:19db%15
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.16
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de LAN inal mbrica Wi-Fi:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : home

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 5:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 6:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 7:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c

========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 91305360 B
Java, Flash, Steam htmlcache => 558 B
Windows/system/drivers => 10826741 B
Edge => 4266644 B
Chrome => 579230678 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 15016 B
NetworkService => 129924450 B
Judith => 185082972 B

RecycleBin => 0 B
EmptyTemp: => 964.4 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 12:41:53 ====

Daniela · 5 Julio, 2020 22:48

Hola @Judith_AB

Sigue estos pasos, para eliminar las herramientas utilizadas:

Para hacerlo utiliza de nuevo/descarga >> DelFix.exe en tu escritorio.

Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)
Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.

Gracias a ti por confiar en ForoSpyware. Ha sido un placer ayudarte

Nos alegramos que se te haya resuelto Damos el tema por solucionado.

Solucionado

Un saludo