Malware brnok

Hola tengo un malware muy molesto que constantemente me envia mensajes de mozilla de que McAfee detectó virus,cuando ni si quera uso mcafee,uso el malwarebytes actualizado y no me aparece nada y el adwcleaner solo me detecta un preinstalado de acer,el malware sigue activo,ayuda

Aqui el reporte del malwarebytes

alwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 17/1/24
Hora del análisis: 8:41
Archivo de registro: e1a21c7c-b50b-11ee-ae75-0897988521ee.json

-Información del software-
Versión: 4.6.7.301
Versión de los componentes: 1.0.2222
Versión del paquete de actualización: 1.0.79720
Licencia: Gratis

-Información del sistema-
SO: Windows 11 (Build 22621.3007)
CPU: x64
Sistema de archivos: NTFS
Usuario: syund\crist

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 255642
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 3 min, 4 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Aqui el de adwcleaner

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build:    08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-17-2024
# Duration: 00:00:02
# OS:       Windows 11 (Build 22621.3007)
# Cleaned:  15
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted       HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted       HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted       HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted       HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted       HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted       HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted       HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted       HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted       HKLM\Software\Wow6432Node\\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted       HKLM\Software\Wow6432Node\\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.AcerUpdater   Folder   C:\ProgramData\ACER\ACER UPDATER


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5092 octets] - [25/09/2023 18:48:03]
AdwCleaner[C00].txt - [5738 octets] - [25/09/2023 18:48:47]
AdwCleaner[S01].txt - [1661 octets] - [25/09/2023 18:50:31]
AdwCleaner[C01].txt - [1875 octets] - [25/09/2023 18:50:56]
AdwCleaner[S02].txt - [1702 octets] - [26/09/2023 23:28:07]
AdwCleaner[C02].txt - [1903 octets] - [26/09/2023 23:28:32]
AdwCleaner[S03].txt - [1824 octets] - [27/09/2023 15:44:00]
AdwCleaner[C03].txt - [2025 octets] - [27/09/2023 15:44:32]
AdwCleaner[S04].txt - [3357 octets] - [14/10/2023 14:48:03]
AdwCleaner[S05].txt - [3418 octets] - [25/10/2023 03:48:41]
AdwCleaner[S06].txt - [3479 octets] - [17/01/2024 08:46:41]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########

Hola

Descarga y ejecuta FRST

En Tu proxima respuesta pega el reporte Frst.txt

Saludos

muchas gracias por responder, temía que nadie me ayudaria, aqui esta el reporte.

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 22.01.2024
Ejecutado por crist (administrador) sobre SYUND (Acer Nitro AN515-53) (22-01-2024 12:21:31)
Ejecutado desde C:\Users\crist\Downloads\FRST64(1).exe
Perfiles cargados: crist
Plataforma: Microsoft Windows 11 Home Single Language Versión 22H2 22621.3007 (X64) Idioma: Español (México)
Navegador predeterminado: Edge
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

() [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\WolfHall.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\dotnet\PlariumPlay.NetHost.exe ->) (Plarium Global LTD -> PlariumPlayInfo) C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\dotnet\info\PlariumPlayInfo.exe
(C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\PlariumPlay.exe ->) (Plarium Global LTD -> PlariumPlay.NetHost) C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\dotnet\PlariumPlay.NetHost.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(Plarium Global LTD -> GitHub, Inc.) C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\PlariumPlay.exe <5>
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (Plarium Global LTD -> PlariumPlayClientService) C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\PlariumPlayClientService\PlariumPlayClientService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [876032 2018-09-05] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [318920 2019-05-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [MicrosoftEdgeAutoLaunch_C48BB71C922D1DF11C1271E971094808] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2024-01-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4388200 2024-01-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37180368 2023-12-21] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70913464 2023-10-14] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482128 2023-10-14] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\Run: [PlariumPlay] => C:\Users\crist\AppData\Local\PlariumPlay\PlariumPlay.exe [295240 2024-01-20] (Plarium Global LTD -> PlariumPlay)
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\MountPoints2: {284d2d44-62cb-11ee-9deb-c809a855c110} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\MountPoints2: {9488f706-69e3-11ee-9dec-c809a855c110} - "E:\setup.exe" 
HKU\S-1-5-18\...\Run: [Norton Download ManagerCCT_CERT_EXPIRY_MITIGATION] => C:\PROGRA~3\Norton\{0C55C~1\NORTON~1.EXE /m /noui (Ningún archivo)
HKU\S-1-5-18\...\Run: [Norton Download ManagerFORCE_UPGRADE_22_23_5] => C:\PROGRA~3\Norton\{0C55C~1\NORTON~1.EXE /m /noui /instversion "22.23.5" (Ningún archivo)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {712576A1-4047-413C-8026-E9738DBCFFC7} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe  -auto (Ningún archivo)
Task: {071E987C-D950-4B2B-9082-5B2853764C09} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {7316C3A0-A5BB-4683-9187-8338149FF03A} - System32\Tasks\ASC_PerformanceMonitor => "C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe"  /Task (Ningún archivo)
Task: {DDF13FF5-5949-4F33-86D4-C6F2C433D991} - System32\Tasks\ASC_SkipUac_crist => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe"  /SkipUac (Ningún archivo)
Task: {C408CB75-8528-4404-9D9A-76A1790E6C5B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5319424 2024-01-11] (Microsoft Windows -> Microsoft Corporation)
Task: {4B288D06-76C8-4A5C-B726-F3C0EB7F2CD9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916856 2023-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {1729D8FF-5C18-4C29-B9C7-EF7513E60413} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916856 2023-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1EE894C-77BD-40DF-B691-CBC45B3D320A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141352 2024-01-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E1F869F-F6AF-4926-8950-3EAE109AC1D7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141352 2024-01-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Ningún archivo)
Task: {9B1BFA6E-A907-4367-AAD8-8B909AEF08A1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Ningún archivo)
Task: {F213ED1D-F498-4A78-9601-0206631A5A18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6B09E6A-5B07-41B0-9959-53B7FBC3FB4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FB903814-70AB-40AC-886A-A9D82A69DCF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FD2E7D36-52A0-42B9-AF47-CEDA7CC8BDCE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4CBF65B-9030-47E1-8C26-A5C49EFC398C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2024-01-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {855E5659-D4C3-45FE-B486-CE4962E37394} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2024-01-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {07F20C5C-363D-41BB-BB6A-5B9A2FE9DDBB} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [601904 2019-07-20] (Acer Incorporated -> Acer Incorporated)
Task: {CBEF7C0D-32C3-4F28-8CF9-01076F6B6794} - System32\Tasks\NortonLifeLock Trial Agent V2 => "C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NLOKTrialAgentV2.exe"  /scheduled (Ningún archivo)
Task: {8F7F12FA-70D7-47F1-A2C3-C7C4EF2416ED} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {89145315-AD79-40CC-AD15-EBF808420128} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {AECBE5E3-ECB6-4CDC-A002-E24C3308AE32} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724328 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C129EE39-8809-4ED3-B566-0578C33DBEE9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702504 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3F5EBE11-F938-403F-A863-A810C0DD11E3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F79CDE18-1DA1-40FF-9A9A-AA1DCAE42FB4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B5299CDC-C149-4D8A-94D6-CBCD9AC969E8} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572456 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F43F138-C489-442C-9135-9B8E44AF45FD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9965C843-4B9E-4F69-AADC-2EAA466D52A8} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B7A9C56F-29C5-4A7D-AB74-22C81CB59AD6} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CF3ECC00-9F1F-41DC-BDDC-78A233D7EC48} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD3CB3F4-422E-4E48-B1F8-BC410FA99C65} - System32\Tasks\Oem\AcerJumpstartTask => "C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe"  /default (Ningún archivo)
Task: {CD57D08E-9D61-4C19-9752-D47A0A6177EF} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-23] (Acer Incorporated -> )
Task: {E664CEBE-E0BA-42E9-8A70-D9CE6030DFEA} - System32\Tasks\Oem\xvpnHelperTask => "%localappdata%\OEM\PromoX\XvpnHelper\XvpnInstaller.exe"  /install (Ningún archivo)
Task: {A312C18F-1FD9-464D-837C-A86E922A1A32} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {C05D941E-D06D-4626-BCD6-B888BF6C45FA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3147526363-3799713296-4026050306-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {0880212E-686C-4051-8813-5144F4A7E507} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2018-08-04] (Acer Incorporated -> Acer Incorporated)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}: [DhcpDomain] home
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\67F6461666F6E656241413830323: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\9716D6B6160343: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\D4651373532313532363: [DhcpNameServer] 208.67.222.222 129.219.13.81
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\D4651373532313532363: [DhcpDomain] local
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\D4966496262716D223439303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6e379455-9642-4012-86b9-58486afd5900}\D4966496262716D223439303: [DhcpDomain] home
Tcpip\..\Interfaces\{9e3de6a3-5784-463a-bf7b-89c66745b6cf}: [DhcpNameServer] 192.168.1.254

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\crist\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-22]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\crist\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
Edge Extension: (Edge relevant text changes) - C:\Users\crist\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]

FireFox:
========
FF DefaultProfile: jl5skd8p.default-1695664226395
FF ProfilePath: C:\Users\crist\AppData\Roaming\Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395 [2024-01-22]
FF Session Restore: Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395 -> está habilitado.
FF Notifications: Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395 -> hxxps://co.pinterest.com; hxxps://www.adzuna.es; hxxps://brnok.earthheartsmith.top
FF Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\crist\AppData\Roaming\Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395\Extensions\[email protected] [2023-09-25]
FF Extension: (uBlock Origin) - C:\Users\crist\AppData\Roaming\Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395\Extensions\[email protected] [2024-01-09]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\crist\AppData\Roaming\Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-01-17]
FF Extension: (Block Site) - C:\Users\crist\AppData\Roaming\Mozilla\Firefox\Profiles\jl5skd8p.default-1695664226395\Extensions\{54e2eb33-18eb-46ad-a4e4-1329c29f6e17}.xpi [2023-10-04]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9201848 2023-12-18] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4973904 2023-10-14] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
S2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-22] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9405400 2024-01-11] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
R2 Plarium Play Client Service; C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\PlariumPlayClientService\PlariumPlayClientService.exe [200520 2024-01-20] (Plarium Global LTD -> PlariumPlayClientService)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [820016 2019-07-20] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ACCSvc; "C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe" [X]
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-06-03] (Microsoft Corporation) [Archivo no firmado]
S3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2023-10-01] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATENCIÓN
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-06-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2023-10-14] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2024-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl884bef94; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{385920FF-1125-4C92-88D9-2804E0236A8A}\MpKslDrv.sys [263560 2024-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2021-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WinDivert1.1; C:\ProgramData\KMSAuto\bin\driver\x64WDV\WinDivert.sys [35376 2013-12-03] (Nemea Mjukvaruutveckling AB -> Basil Projects)
S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-01-22 12:21 - 2024-01-22 12:22 - 000027372 _____ C:\Users\crist\Downloads\FRST.txt
2024-01-22 12:20 - 2024-01-22 12:21 - 000000000 ____D C:\FRST
2024-01-22 12:20 - 2024-01-22 12:20 - 002389504 _____ (Farbar) C:\Users\crist\Downloads\FRST64(1).exe
2024-01-22 12:19 - 2024-01-22 12:19 - 002389504 _____ (Farbar) C:\Users\crist\Downloads\FRST64.exe
2024-01-21 16:42 - 2024-01-21 16:42 - 000000000 ____D C:\Users\crist\AppData\Local\StoneShard
2024-01-21 16:20 - 2024-01-21 16:20 - 000000000 ____D C:\Users\crist\Downloads\Stoneshard.v0.8.2.10a
2024-01-20 12:22 - 2024-01-20 12:22 - 000000000 ____D C:\Users\crist\AppData\LocalLow\Unity
2024-01-20 12:22 - 2024-01-20 12:22 - 000000000 ____D C:\Users\crist\AppData\LocalLow\Plarium
2024-01-20 12:17 - 2024-01-22 09:14 - 000000000 ____D C:\Users\crist\AppData\Roaming\PlariumPlay
2024-01-20 12:17 - 2024-01-20 12:17 - 000001201 _____ C:\Users\crist\OneDrive\Escritorio\Plarium Play.lnk
2024-01-20 12:17 - 2024-01-20 12:17 - 000001197 _____ C:\Users\crist\AppData\Roaming\Microsoft\Windows\Start Menu\Plarium Play.lnk
2024-01-20 12:16 - 2024-01-20 12:16 - 000000000 ____D C:\Program Files\dotnet
2024-01-20 12:14 - 2024-01-22 12:19 - 000000000 ____D C:\Users\crist\AppData\Local\PlariumPlay
2024-01-20 12:05 - 2024-01-20 12:05 - 001979496 _____ (Plarium) C:\Users\crist\Downloads\RaidSetup.exe
2024-01-20 11:48 - 2024-01-20 11:48 - 567567755 _____ C:\Users\crist\Downloads\Stoneshard.v0.8.2.10a.zip
2024-01-20 10:45 - 2024-01-20 10:58 - 000000000 ____D C:\Users\crist\AppData\Local\Kalypso Media
2024-01-20 10:45 - 2024-01-20 10:45 - 000000000 ____D C:\Users\crist\AppData\Roaming\Kalypso Media
2024-01-20 10:45 - 2024-01-20 10:45 - 000000000 ____D C:\Users\crist\AppData\LocalLow\Kalypso Media
2024-01-20 10:45 - 2024-01-20 10:45 - 000000000 ____D C:\Users\crist\AppData\Local\mod.io
2024-01-19 17:01 - 2024-01-19 17:01 - 000661662 _____ C:\Users\crist\OneDrive\Documentos\D.pdf
2024-01-19 16:59 - 2024-01-19 16:59 - 000661662 _____ C:\Users\crist\OneDrive\Documentos\Declarcion IVA 2023 3 Cuatrimestre.pdf
2024-01-19 16:55 - 2024-01-19 16:56 - 000214444 _____ C:\Users\crist\OneDrive\Documentos\Recibo IVA Cuatrimestre 3 2023.pdf
2024-01-19 16:55 - 2024-01-19 16:55 - 000000000 ____D C:\Users\crist\AppData\LocalLow\Temp
2024-01-19 16:53 - 2024-01-19 16:53 - 000144646 _____ C:\Users\crist\Downloads\4910769267819.pdf
2024-01-19 16:51 - 2024-01-19 16:51 - 000083536 _____ C:\Users\crist\Downloads\3004681227401 (2).pdf
2024-01-19 16:51 - 2024-01-19 16:51 - 000083528 _____ C:\Users\crist\Downloads\3004681227401 (3).pdf
2024-01-19 16:41 - 2024-01-19 16:41 - 000079314 _____ C:\Users\crist\Downloads\3004681227401 (1).pdf
2024-01-19 16:35 - 2024-01-19 16:35 - 000079313 _____ C:\Users\crist\Downloads\3004681227401.pdf
2024-01-19 11:54 - 2024-01-19 11:54 - 000000422 _____ C:\Users\crist\OneDrive\Escritorio\datos.txt
2024-01-17 16:51 - 2024-01-17 16:51 - 000000000 ____D C:\Users\crist\OneDrive\Escritorio\CVs
2024-01-17 16:27 - 2024-01-17 16:27 - 000000000 ____D C:\KVRT2020_Data
2024-01-17 16:22 - 2024-01-17 16:26 - 108902256 _____ (AO Kaspersky Lab) C:\Users\crist\Downloads\KVRT.exe
2024-01-17 13:17 - 2024-01-17 13:17 - 000000900 _____ C:\Users\crist\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2024-01-17 13:12 - 2024-01-17 13:12 - 001834584 _____ ( ) C:\Users\crist\Downloads\bittorrent_installer.exe
2024-01-17 12:55 - 2024-01-17 12:55 - 000024896 _____ C:\Users\crist\Downloads\CEXYweEy3CofbMi.torrent
2024-01-17 08:43 - 2024-01-17 08:43 - 008791352 _____ (Malwarebytes) C:\Users\crist\Downloads\adwcleaner(1).exe
2024-01-16 21:30 - 2024-01-16 21:30 - 000000222 _____ C:\Users\crist\OneDrive\Escritorio\Magical Diary Wolf Hall.url
2024-01-16 16:39 - 2024-01-16 16:39 - 000000000 ____D C:\Users\crist\AppData\LocalLow\webviewdata
2024-01-16 16:36 - 2024-01-16 16:36 - 000000000 ____D C:\Users\crist\AppData\Roaming\Microsoft\Outlook
2024-01-16 16:35 - 2024-01-16 16:50 - 000000000 ____D C:\Users\crist\OneDrive\Documentos\Archivos de Outlook
2024-01-16 16:35 - 2024-01-16 16:35 - 000099796 _____ C:\Users\crist\Downloads\cv para limpieza.eml
2024-01-14 18:07 - 2024-01-14 18:07 - 000802330 _____ C:\WINDOWS\system32\perfh00A.dat
2024-01-14 18:07 - 2024-01-14 18:07 - 000160166 _____ C:\WINDOWS\system32\perfc00A.dat
2024-01-11 13:15 - 2024-01-11 13:15 - 000016720 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-01-11 09:36 - 2024-01-11 13:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-01-09 11:28 - 2024-01-09 11:28 - 000000000 ____D C:\Users\crist\AppData\LocalLow\DrawDistance
2024-01-09 10:40 - 2024-01-19 12:15 - 000000000 ____D C:\Users\crist\AppData\Roaming\AtlantisAcademy
2024-01-08 17:15 - 2024-01-08 17:15 - 000000223 _____ C:\Users\crist\OneDrive\Escritorio\Wraiths of SENTINEL.url
2024-01-08 17:05 - 2024-01-08 17:05 - 000000000 ____D C:\Users\crist\Downloads\Atlantis.Academy
2024-01-03 16:51 - 2024-01-03 16:51 - 000144416 _____ (WeMod LLC) C:\Users\crist\Downloads\Ratopia Trainer.exe
2024-01-01 15:34 - 2024-01-01 15:34 - 000000223 _____ C:\Users\crist\OneDrive\Escritorio\Ratopia.url
2023-12-31 19:56 - 2024-01-16 17:56 - 000000000 ____D C:\Users\crist\AppData\LocalLow\Ludeon Studios
2023-12-31 15:17 - 2023-12-31 15:17 - 000000000 ____D C:\Users\crist\Downloads\R6imWo6rld-1.4.3901-elamigos
2023-12-25 19:35 - 2023-12-31 14:54 - 000000000 ____D C:\Users\crist\OneDrive\Documentos\Paradox Interactive
2023-12-23 23:21 - 2023-12-25 19:29 - 000000000 ____D C:\Users\crist\Downloads\Stellaris.Galaxy.Edition.v3.9.1.elamigos
2023-12-23 23:20 - 2023-12-23 23:20 - 000027967 _____ C:\Users\crist\Downloads\ZlDx1vAlOUpc8Ze.torrent
2023-12-23 23:20 - 2023-12-23 23:20 - 000027967 _____ C:\Users\crist\Downloads\ZlDx1vAlOUpc8Ze(1).torrent

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-01-22 12:20 - 2023-09-25 15:36 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-22 12:18 - 2023-09-25 15:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-22 12:13 - 2023-10-14 13:26 - 000000000 ____D C:\Users\crist\AppData\Local\Malwarebytes
2024-01-22 11:10 - 2023-09-26 09:30 - 000000000 ____D C:\Program Files (x86)\Steam
2024-01-22 09:29 - 2023-09-29 02:36 - 000000000 ____D C:\Users\crist\AppData\Local\CrashDumps
2024-01-22 09:16 - 2023-09-25 14:49 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-22 09:15 - 2023-09-25 18:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-01-21 21:18 - 2023-09-25 14:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-21 09:07 - 2023-09-25 17:16 - 000000000 ____D C:\Users\crist\AppData\Local\D3DSCache
2024-01-20 12:22 - 2023-09-25 16:58 - 000000000 ____D C:\Users\crist
2024-01-20 12:16 - 2019-12-19 13:40 - 000000000 ____D C:\ProgramData\Package Cache
2024-01-20 10:28 - 2023-09-25 15:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-19 21:19 - 2023-10-04 20:53 - 000000000 ____D C:\Users\crist\AppData\Roaming\bittorrent
2024-01-19 19:26 - 2023-10-04 21:21 - 000000000 ____D C:\Users\crist\AppData\Local\BitTorrentHelper
2024-01-19 19:19 - 2023-09-25 15:36 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-19 19:04 - 2023-09-25 14:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-18 11:57 - 2023-12-08 13:08 - 000000000 ____D C:\Users\crist\AppData\Local\ElevatedDiagnostics
2024-01-17 10:33 - 2019-12-19 14:03 - 000000000 ____D C:\ProgramData\Acer
2024-01-17 08:19 - 2023-09-25 17:16 - 000000000 __SHD C:\Users\crist\IntelGraphicsProfiles
2024-01-16 21:34 - 2023-11-22 15:27 - 000000000 ____D C:\Users\crist\AppData\Roaming\RenPy
2024-01-16 21:33 - 2023-09-26 09:47 - 000000000 ____D C:\Users\crist\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-01-15 21:28 - 2023-09-28 12:05 - 000000000 ____D C:\Users\crist\AppData\Local\EpicGamesLauncher
2024-01-14 18:07 - 2023-09-25 15:35 - 000000000 ____D C:\WINDOWS\INF
2024-01-14 18:07 - 2023-09-25 15:02 - 001804456 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-13 15:24 - 2023-11-04 17:30 - 000000000 ____D C:\Program Files\Microsoft Office
2024-01-12 20:11 - 2023-09-25 14:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-12 20:11 - 2023-09-25 14:49 - 000012288 ___SH C:\DumpStack.log.tmp
2024-01-12 17:10 - 2023-09-25 19:20 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-01-12 11:29 - 2023-09-27 19:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-12 11:13 - 2023-09-27 19:23 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-01-11 15:41 - 2023-10-25 03:07 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-01-11 13:22 - 2023-09-25 15:33 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-01-11 13:21 - 2023-09-25 14:49 - 000474952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-11 13:21 - 2019-12-19 14:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-01-11 13:20 - 2023-10-14 13:49 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-01-11 13:20 - 2023-09-25 15:36 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-01-11 13:20 - 2023-09-25 15:36 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-11 13:20 - 2023-09-25 15:36 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-11 13:20 - 2023-09-25 15:36 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-11 13:20 - 2023-09-25 15:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-11 13:19 - 2023-09-25 15:33 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-11 13:15 - 2023-09-25 14:51 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-01-11 11:08 - 2019-12-19 14:05 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-01-09 10:40 - 2023-10-14 12:08 - 000000000 ____D C:\Users\crist\AppData\Roaming\Goldberg SteamEmu Saves

==================== Archivos en la raíz de algunos directorios ========

2024-01-20 12:14 - 2024-01-20 12:17 - 000028331 _____ () C:\Users\crist\AppData\Local\PlariumPlay.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

demasiados caracteres aqui la parte final.

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 22.01.2024
Ejecutado por crist (22-01-2024 12:22:53)
Ejecutado desde C:\Users\crist\Downloads
Microsoft Windows 11 Home Single Language Versión 22H2 22621.3007 (X64) (2023-09-25 13:59:05)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-3147526363-3799713296-4026050306-500 - Administrator - Disabled)
crist (S-1-5-21-3147526363-3799713296-4026050306-1001 - Administrator - Enabled) => C:\Users\crist
DefaultAccount (S-1-5-21-3147526363-3799713296-4026050306-503 - Limited - Disabled)
Invitado (S-1-5-21-3147526363-3799713296-4026050306-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3147526363-3799713296-4026050306-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Norton Security Ultra (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security Ultra (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Acer Configuration Manager (HKLM-x32\...\{8CB1A03C-9849-4744-AD56-341A18F9E3E2}) (Version: 2.5.22250 - Acer)
Acer Jumpstart (HKLM-x32\...\{0C5ED25A-B8D1-4E71-BFCB-6B370A4EA19C}) (Version: 3.5.22220.20 - Acer)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
BitTorrent (HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\BitTorrent) (Version: 7.11.0.46923 - BitTorrent Inc.)
Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
Cheat Engine 7.5 (HKLM\...\Cheat Engine_is1) (Version:  - Cheat Engine)
Citra (HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\{070d104d-f514-4c7c-ab2f-ea24f186a5c3}) (Version: 1.0.0 - Citra Team)
CLIP STUDIO 2.2.2 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 2.2.2 - CELSYS)
CLIP STUDIO PAINT 2.2.2 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 2.2.2 - CELSYS)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.2.0.2105 - Disc Soft Ltd)
Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Dynamic Application Loader Host Interface Service (HKLM\...\{BC22A1D7-FFB1-455C-9780-9ABBEFDFDBF7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{EAE25815-EABC-445A-8B60-AF104DD9CD2A}) (Version: 1.3.82.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.)
ExpressVPN (HKLM-x32\...\{5B1D5290-DC0D-43D1-8220-8BB29BDDA0BE}) (Version: 2.5.22300.30 - Acer)
GOODBYE VOLCANO HIGH (HKLM-x32\...\GOODBYE VOLCANO HIGH_) (Version:  - )
Intel(R) Chipset Device Software (HKLM\...\{C844CC39-BC28-46CA-8239-3F37D8FE2A59}) (Version: 10.1.17541.8066 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden
Intel(R) Icls (HKLM\...\{FC83287C-7512-4C43-99AF-276534F06F56}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{E9F1A67D-E88A-405C-B269-9118935E2035}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1916.12.0.1263 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{AACEDB11-5CFF-4823-83FB-8AAF9746DF94}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{C5618F9D-BDF5-422C-9BBE-B73E50585FF9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{8FF4D5C7-B56C-4384-8E03-3194E2419C28}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) OEM Extension (HKLM\...\{30728274-EE8E-4658-97F6-8880A6FEBE17}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6576 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.5.0.1017 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{F1612379-83A3-4F18-8B9B-7AA4A393E106}) (Version: 17.5.0.1017 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{7D4998B3-AC68-4815-AC47-5A1969D91E30}) (Version: 17.5.0.1017 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.6.7.301 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.7.301 - Malwarebytes)
Microsoft .NET Host - 6.0.10 (x64) (HKLM\...\{0222FFF1-57A3-48A6-9AD2-0D6B5D0172B3}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.10 (x64) (HKLM\...\{A93C4E12-1BAB-4CFB-ADBC-9CE0B93176FF}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.10 (x64) (HKLM\...\{A2A39CB9-677D-4299-8537-C00B99F3D4A4}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.144 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - es-es (HKLM\...\ProPlus2021Volume - es-es) (Version: 16.0.14332.20624 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Project Profesional 2021 - es-es (HKLM\...\ProjectPro2021Volume - es-es) (Version: 16.0.14332.20624 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{D669FEBB-A202-4A9E-A5F2-80BE5D7EDB8C}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{7CB407C8-80FD-400C-90E6-CEB4053B35BB}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visio LTSC Professional 2021 - es-es (HKLM\...\VisioPro2021Volume - es-es) (Version: 16.0.14332.20624 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x64) (HKLM\...\{3EC7701F-54F2-491D-AFD1-0395F465BC5A}) (Version: 48.43.48870 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x64) (HKLM-x32\...\{ff748137-9c9a-4056-be0a-48c7e465453c}) (Version: 6.0.10.31726 - Microsoft Corporation)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 121.0.1 (x64 en-US)) (Version: 121.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 117.0.1 - Mozilla)
NitroSense Service (HKLM\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3012 - Acer Incorporated)
NVIDIA Controlador de 3D Vision 419.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.72 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 419.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.13.7500 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20624 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20624 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14332.20624 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Plarium Play (HKLM-x32\...\{e0da4e7a-2c37-41ae-8f1b-bfccd484e7b3}) (Version: 8.9.0 - Plarium)
PlariumPlay (HKLM-x32\...\{9B203640-56DB-4542-ACCF-CAFFCEED173C}) (Version: 8.9.0 - Plarium) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.21304 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8907.1 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\SumatraPDF) (Version: 3.5.2 - Krzysztof Kowalczyk)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.144 - Microsoft Corporation)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
XSplit Gamecaster (HKLM-x32\...\{C9470F90-F309-454D-96C0-F3C4C691F7A8}) (Version: 3.3.1805.0412 - SplitmediaLabs)

Packages:
=========
Acer Collection S -> C:\Program Files\WindowsApps\acerincorporated.acercollections_1.0.3004.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3044.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
Care Center S -> C:\Program Files\WindowsApps\acerincorporated.acercarecenters_4.0.3010.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.900.374.0_x64__8wekyb3d8bbwe [2024-01-18] (Microsoft Corporation)
Dropbox - promoción -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.21.0_x64__xbfy0k16fey96 [2023-12-04] (Dropbox Inc.)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2023-11-01] (GoTrustID Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.20.0_x64__w1wdnht996qgy [2024-01-17] (LinkedIn) [Startup Task]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2311.21003.0_x64__8wekyb3d8bbwe [2023-12-09] (Microsoft Corporation) [Startup Task]
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-01-11] (Microsoft Corporation)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2023-09-25] (Netflix, Inc.)
NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3012.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
PhotoDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.photodirectorforacerdesktop_8.0.5229.0_x64__ypz87dpxkv292 [2023-09-25] (CYBERLINK COM CORP)
Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2312.164.0_x64__8wekyb3d8bbwe [2024-01-17] (Microsoft Corporation) [Startup Task]
PowerDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.powerdirectorforacerdesktop_14.0.4304.0_x64__ypz87dpxkv292 [2023-09-25] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3009.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-05] (Microsoft Studios) [MS Ad]
Speech Pack - English (Canada) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-CA.1_1.0.7.0_x64__cw5n1h2txyewy [2023-11-28] (Microsoft Windows)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0 [2024-01-19] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2023-09-25] (Acer Incorporated)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-01-11] (Microsoft Corporation)
WinRAR -> C:\Users\crist\Documents [2023-12-21] (win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3147526363-3799713296-4026050306-1001_Classes\CLSID\{31b2773a-13df-50e7-d9f3-deabcda029ce}\localserver32 -> C:\Users\crist\AppData\Local\PlariumPlay\8.9.0-0.0.2\dotnet\info\PlariumPlayInfo.exe (Plarium Global LTD -> PlariumPlayInfo)
ShellIconOverlayIdentifiers: [  OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-09] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [  OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\PROGRA~1\ITOPEA~1\IEDMenu.dll -> Ningún archivo
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-10-14] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers2: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\PROGRA~1\ITOPEA~1\IEDMenu.dll -> Ningún archivo
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} =>  -> Ningún archivo
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-10-14] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-10-14] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-09] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\PROGRA~1\ITOPEA~1\IEDMenu.dll -> Ningún archivo
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4b34c18659561116\igfxDTCM.dll [2019-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\PROGRA~1\ITOPEA~1\IEDMenu.dll -> Ningún archivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\PROGRA~1\ITOPEA~1\IEDMenu.dll -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-10-14] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-19] (Fox Magic Software) [Archivo no firmado]

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2024-01-22 09:14 - 2024-01-22 09:14 - 000110080 _____ () [Archivo no firmado] \\?\C:\Users\crist\AppData\Local\Temp\77111ad7-8889-40e5-8781-8eb329b4211a.tmp.node
2024-01-22 09:14 - 2024-01-22 09:14 - 000147456 _____ () [Archivo no firmado] \\?\C:\Users\crist\AppData\Local\Temp\8fe3fb35-836d-4494-a9d5-f369b3267189.tmp.node
2024-01-16 21:30 - 2024-01-16 21:30 - 000273289 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\game\blitter.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000480432 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\glew32.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000087552 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\_ctypes.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000774656 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\_hashlib.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000123392 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\_renpy.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000100864 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\_renpybidi.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000046080 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\_socket.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000068608 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\bz2.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000269824 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\color.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000045568 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\controller.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000135680 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\display.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000092672 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\draw.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000030208 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\error.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000147968 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\event.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000058368 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\font.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000164352 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\gfxdraw.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000053760 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\image.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000039424 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\joystick.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000038912 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\key.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000114176 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\locals.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000026624 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\mouse.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000057344 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\pygame_time.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000117760 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\rect.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000058368 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\rwobject.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000031744 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\scrap.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000260096 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\surface.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000062464 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\pygame_sdl2\transform.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000144896 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\gl.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000388608 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\gldraw.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000079360 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\glenviron_shader.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000038912 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\glrtt_copy.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000042496 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\glrtt_fbo.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000289280 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\angle\gltexture.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000088064 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\audio\renpysound.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000093696 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\display\accelerator.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000367616 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\display\render.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000143872 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\gl.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000069632 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\gl1.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000400896 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\gldraw.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000061952 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\glenviron_fixed.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000050176 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\glenviron_limited.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000078848 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\glenviron_shader.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000038912 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\glrtt_copy.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000042496 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\glrtt_fbo.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000289280 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\gl\gltexture.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000177152 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\style.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000063488 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_activate_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000091136 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000072704 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_hover_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000072192 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_idle_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000073728 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_insensitive_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000065536 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_selected_activate_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000077312 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_selected_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000069632 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_selected_hover_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000069632 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_selected_idle_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000072192 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\style_selected_insensitive_functions.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000122880 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\styleclass.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000024576 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\styledata\stylesets.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000081408 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\text\ftfont.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000377344 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\text\textsupport.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000028160 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\renpy\text\texwrap.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000010240 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\lib\select.pyd
2024-01-16 21:30 - 2024-01-16 21:30 - 000608451 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\libfreetype-6.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000085551 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\libgcc_s_sjlj-1.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000447049 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\libjpeg-62.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000203097 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\libpng-3.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 001136494 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\SDL2.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000225757 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\SDL2_image.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000055859 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\SDL2_ttf.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000102400 _____ () [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\zlib1.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 003119616 _____ (FFmpeg Project) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\avcodec-57.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000525312 _____ (FFmpeg Project) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\avformat-57.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000475136 _____ (FFmpeg Project) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\avutil-55.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000115200 _____ (FFmpeg Project) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\swresample-2.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000497664 _____ (FFmpeg Project) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\swscale-4.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 000084347 _____ (MingW-W64 Project. All rights reserved.) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\libwinpthread-1.dll
2024-01-16 21:30 - 2024-01-16 21:30 - 002459648 _____ (Python Software Foundation) [Archivo no firmado] C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\lib\windows-i686\python27.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\crist\Downloads\adwcleaner.exe:MBAM.Zone.Identifier [26]
AlternateDataStreams: C:\Users\crist\Downloads\driver_booster_setup.exe:MBAM.Zone.Identifier [121]
AlternateDataStreams: C:\Users\crist\Downloads\EpicInstaller-15.7.0-7ac640e8413a42b994e9b560ec45c5d7.msi:MBAM.Zone.Identifier [304]
AlternateDataStreams: C:\Users\crist\Downloads\Firefox Installer.exe:MBAM.Zone.Identifier [246]
AlternateDataStreams: C:\Users\crist\Downloads\SteamSetup.exe:MBAM.Zone.Identifier [147]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-11-04] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Acer01.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\StartupApproved\Run: => "RiotClient"
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\StartupApproved\Run: => "bt"
HKU\S-1-5-21-3147526363-3799713296-4026050306-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{0CA467ED-405B-41BC-AB60-C2EADEFE7E43}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2B2C7F6A-E8BF-4F3C-A7FB-286175ED3BEC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{24BDA015-0208-4441-BB5E-5BC4D2CF6743}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{6A9C468F-2BEA-406F-A52C-04EFDDEBD25E}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{B1C5171B-E7B9-40D1-9AB1-B5EB4D3133F8}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{0FB19A1D-A628-4D0F-AB1E-420A84A845EE}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{707A0564-0A08-4245-8F99-6D553665EC2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{39F2E37B-50CE-40E7-B9C5-32273F24C8E4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{060D72FA-DDF2-4E42-AF32-1070025C1A57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FCEE7806-4716-4810-A6C3-E1F74773F538}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE2F86F2-E651-4650-AB26-3B7F9E9E6E91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E3CA91F2-36A4-409F-B8C1-34D5FAC10D26}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{33E9C3F7-E5A1-4F3A-9393-F489B7FA6D57}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{03471D5F-4BA4-440D-AEAD-91D1AD8D7389}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8E161C99-1A1A-484F-99F2-126ADC302926}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{74FE9731-D81F-4689-BCE1-610D0162220D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D6DE6F9A-B265-4EB6-BF90-09E4CE0F4A5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x64\Hades.exe () [Archivo no firmado]
FirewallRules: [{CF1402F9-CAD1-42FB-8785-5B17CBF703F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x64\Hades.exe () [Archivo no firmado]
FirewallRules: [{08D21020-7C4B-4E8B-9E4E-2152E1871EF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x64Vk\Hades.exe () [Archivo no firmado]
FirewallRules: [{056B69FB-88FD-413C-959D-9D2F220397F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x64Vk\Hades.exe () [Archivo no firmado]
FirewallRules: [{A7283C50-B6CC-464A-B0A2-248B672A4562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x86\Hades.exe () [Archivo no firmado]
FirewallRules: [{BAF4C84C-38CB-4517-9BD1-55A13D556062}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hades\x86\Hades.exe () [Archivo no firmado]
FirewallRules: [{C4C932C0-D665-4EA0-82B6-FEF0009D8593}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe => Ningún archivo
FirewallRules: [{22E79FE6-E9CB-4789-9E6C-D6F3DDECFFF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe => Ningún archivo
FirewallRules: [{0744C57A-9ED6-493A-AF5A-FD3601186368}] => (Allow) C:\Users\crist\AppData\Roaming\BitTorrent\BitTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{728F2DF9-9C0A-48F7-9C4B-E26A52820134}] => (Allow) C:\Users\crist\AppData\Roaming\BitTorrent\BitTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{A75B1B03-1DA5-424B-BCDB-55570EEC9F34}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
FirewallRules: [{2DF9015A-D43C-43C6-900F-6F128F525E01}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
FirewallRules: [TCP Query User{0D0FE40F-AFCF-40F3-AA1E-30B245966187}F:\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe] => (Allow) F:\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe => Ningún archivo
FirewallRules: [UDP Query User{8DAEC7F6-8F9B-4C6E-BF3D-88F646BAEB97}F:\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe] => (Allow) F:\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe => Ningún archivo
FirewallRules: [TCP Query User{D04EBD41-7B87-4FC9-AFD6-968A36ECB4FB}C:\users\crist\downloads\disgaea.7.vows.of.the.virtueless\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe] => (Allow) C:\users\crist\downloads\disgaea.7.vows.of.the.virtueless\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{83995E93-9A2F-41B9-8A5A-3C30A815F2BF}C:\users\crist\downloads\disgaea.7.vows.of.the.virtueless\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe] => (Allow) C:\users\crist\downloads\disgaea.7.vows.of.the.virtueless\disgaea.7.vows.of.the.virtueless\game\disgaea7.exe () [Archivo no firmado]
FirewallRules: [{B59A5509-A0B5-4C35-B454-CD9AFA584B6D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23275.702.2421.2406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4EA42F8F-BD35-46E6-845C-D22657749C31}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23275.702.2421.2406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{18689F52-FBAE-40BF-A8F3-ABC26EA24725}] => (Allow) LPort=1688
FirewallRules: [{67EBD626-4877-42FB-B0A9-F7A1249B66F7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6CE828E0-16DB-460A-97A9-CD18011179A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Hayseed Knight\TheHayseedKnight.exe () [Archivo no firmado]
FirewallRules: [{87536523-237B-4ED4-A8BE-D2B792B719E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Hayseed Knight\TheHayseedKnight.exe () [Archivo no firmado]
FirewallRules: [{AFE43B14-045D-421F-B1C4-506C4BC62C56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pathfinder Kingmaker\Kingmaker.exe () [Archivo no firmado]
FirewallRules: [{1BAEDA2D-09C9-4021-9F7A-1F00689AF401}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pathfinder Kingmaker\Kingmaker.exe () [Archivo no firmado]
FirewallRules: [{83D38F7A-FA92-4A99-A03C-FBBAEAAE1554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dad Quest\DadQuest.exe () [Archivo no firmado]
FirewallRules: [{5FC50CFC-481A-4570-BF11-10C6B6730200}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dad Quest\DadQuest.exe () [Archivo no firmado]
FirewallRules: [{D4E8E5F6-C9BA-4030-9A81-F81C2D8DA8B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euclyca\Game.exe (The NW.js Community) [Archivo no firmado]
FirewallRules: [{F341AE47-1345-45B7-8103-A158E749B2F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euclyca\Game.exe (The NW.js Community) [Archivo no firmado]
FirewallRules: [{DA26F2C7-7D9F-42AE-B1A8-A11F621537CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DashBored\Game.exe () [Archivo no firmado]
FirewallRules: [{FE125FAC-37AC-43A2-99AB-034202497DAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DashBored\Game.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{20AF730B-6EB8-4987-913D-E1C5F210A5BC}C:\users\crist\appdata\local\citra\nightly\citra-qt.exe] => (Allow) C:\users\crist\appdata\local\citra\nightly\citra-qt.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{B470FC1D-C246-4827-B6F5-B105134D1A0E}C:\users\crist\appdata\local\citra\nightly\citra-qt.exe] => (Allow) C:\users\crist\appdata\local\citra\nightly\citra-qt.exe () [Archivo no firmado]
FirewallRules: [{11402F43-827D-4496-A804-4129D7CAD85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Coffee Talk\CoffeeTalk.exe () [Archivo no firmado]
FirewallRules: [{5C6A4EB4-370C-4669-B807-914BE29ABB66}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Coffee Talk\CoffeeTalk.exe () [Archivo no firmado]
FirewallRules: [{CDA5C20A-69D8-4E2A-A9C2-EEE0641D59DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{23A43056-92B7-465C-AF0F-8913B83D4A7F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6BF44FAD-5EE6-4726-990B-C04885957939}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4D16FE4-00A1-4145-969D-FF81AF89F38B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D9A11CFE-9BA3-4A3B-A7A3-29205B573D57}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5776BA63-683F-415F-AF74-B64B228C35D7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{0B2B26DC-CC01-42C9-AC70-9ED49CF38B3A}C:\users\crist\downloads\ratopia\game\ratopia.exe] => (Allow) C:\users\crist\downloads\ratopia\game\ratopia.exe => Ningún archivo
FirewallRules: [UDP Query User{3CF9C071-581E-45F1-A1D9-EFF6DF80A0C8}C:\users\crist\downloads\ratopia\game\ratopia.exe] => (Allow) C:\users\crist\downloads\ratopia\game\ratopia.exe => Ningún archivo
FirewallRules: [{5F8A8C8B-E397-4917-8D21-60CD16087589}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ratopia\Ratopia.exe () [Archivo no firmado]
FirewallRules: [{6A31D0D6-7B13-4467-BC03-F0B8F7EC7608}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ratopia\Ratopia.exe () [Archivo no firmado]
FirewallRules: [{FEE8F64B-25C7-488E-8A7E-2F2B9A124F82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wraiths of SENTINEL\WraithsOfSentinel.exe (Choice of Games) [Archivo no firmado]
FirewallRules: [{3BD307B1-F29B-4D24-BB7A-F64A724AB27B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wraiths of SENTINEL\WraithsOfSentinel.exe (Choice of Games) [Archivo no firmado]
FirewallRules: [TCP Query User{F27B24E9-4656-4BA0-AE5B-F188B90E59CE}C:\users\crist\downloads\atlantis.academy\atlantis.academy\game\atlantisacademy.exe] => (Allow) C:\users\crist\downloads\atlantis.academy\atlantis.academy\game\atlantisacademy.exe (Choice of Games) [Archivo no firmado]
FirewallRules: [UDP Query User{8E7E1620-B9F3-44E4-ACB5-0A4B163627CC}C:\users\crist\downloads\atlantis.academy\atlantis.academy\game\atlantisacademy.exe] => (Allow) C:\users\crist\downloads\atlantis.academy\atlantis.academy\game\atlantisacademy.exe (Choice of Games) [Archivo no firmado]
FirewallRules: [{F043F7BA-5853-478C-8BA2-D52618D1BF87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\WolfHall.exe () [Archivo no firmado]
FirewallRules: [{73EF8974-A74F-49A0-B69F-D632219763CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magical Diary Wolf Hall\WolfHall.exe () [Archivo no firmado]
FirewallRules: [{0D111C0F-4604-48EB-8FF7-314624F4371F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4224ECCB-5A7F-4752-A39E-4817277AA97B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6109DC66-AD85-48C7-8C43-1BC93C922BF9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3E66ACB7-D8BD-48EA-9B03-401FF7234EE0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{27DAC2F6-54A1-4373-BEAE-A68A2E43941B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0C95E853-C20E-4ACB-A5E8-7E0B58A40FA0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E6CFA59E-AEFD-4FF6-9912-8BB77677A0F9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7B179CD4-0251-4CB9-AA16-37D9B10DA378}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3F957198-EDD8-4580-A8AB-A93A7EAF8BE1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{78EF5FF6-6CB3-41E4-893F-D0E76860E76C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{711A2326-EFE1-4BEB-A029-89EEF0D82121}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Puntos de Restauración =========================

20-01-2024 12:15:47 Plarium Play
20-01-2024 20:40:49 Eliminación del paquete de idioma

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (01/22/2024 09:29:53 AM) (Source: Application Error) (EventID: 1000) (User: SYUND)
Description: Nombre de la aplicación con errores: AcerRegistrationBackGroundTask.exe, versión: 1.0.0.0, marca de tiempo: 0x64375ffb
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.22621.2861, marca de tiempo: 0x9e57f18c
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x00149392
Identificador del proceso con errores: 0x0x2acc
Hora de inicio de la aplicación con errores: 0x0x1da4d0d26e2573f
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 0b801bf5-f2e5-4e0c-8f5a-1216cad7967d
Nombre completo del paquete con errores: AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4
Identificador de aplicación relativa del paquete con errores: Acer.AcerRegistration

Error: (01/22/2024 09:29:46 AM) (Source: Application Error) (EventID: 1000) (User: SYUND)
Description: Nombre de la aplicación con errores: AcerRegistrationBackGroundTask.exe, versión: 1.0.0.0, marca de tiempo: 0x64375ffb
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.22621.2861, marca de tiempo: 0x9e57f18c
Código de excepción: 0xc0020001
Desplazamiento de errores: 0x00149392
Identificador del proceso con errores: 0x0x2acc
Hora de inicio de la aplicación con errores: 0x0x1da4d0d26e2573f
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 41434c42-6efd-4790-9619-e051164fba10
Nombre completo del paquete con errores: AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4
Identificador de aplicación relativa del paquete con errores: Acer.AcerRegistration

Error: (01/22/2024 09:29:45 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: AcerRegistrationBackGroundTask.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: código de la excepción c0020001, dirección de la excepción 774F9392
Pila:
   en MS.Win32.UnsafeNativeMethods.CallWindowProc(IntPtr, IntPtr, Int32, IntPtr, IntPtr)
   en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   en System.Environment._Exit(Int32)
   en System.Environment.Exit(Int32)
   en AcerRegistrationBackGroundTask.MainWindow+<closeBackGroundTask>d__24.MoveNext()
   en System.Runtime.CompilerServices.AsyncVoidMethodBuilder.Start[[AcerRegistrationBackGroundTask.MainWindow+<closeBackGroundTask>d__24, AcerRegistrationBackGroundTask, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]](<closeBackGroundTask>d__24 ByRef)
   en AcerRegistrationBackGroundTask.MainWindow.closeBackGroundTask()
   en AcerRegistrationBackGroundTask.MainWindow.Window_Loaded(System.Object, System.Windows.RoutedEventArgs)
   en System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   en System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   en System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   en System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   en System.Windows.BroadcastEventHelper.BroadcastEvent(System.Windows.DependencyObject, System.Windows.RoutedEvent)
   en System.Windows.BroadcastEventHelper.BroadcastLoadedEvent(System.Object)
   en MS.Internal.LoadedOrUnloadedOperation.DoWork()
   en System.Windows.Media.MediaContext.FireLoadedPendingCallbacks()
   en System.Windows.Media.MediaContext.FireInvokeOnRenderCallbacks()
   en System.Windows.Media.MediaContext.RenderMessageHandlerCore(System.Object)
   en System.Windows.Media.MediaContext.RenderMessageHandler(System.Object)
   en System.Windows.Media.MediaContext.Resize(System.Windows.Media.ICompositionTarget)
   en System.Windows.Interop.HwndTarget.OnResize()
   en System.Windows.Interop.HwndTarget.HandleMessage(MS.Internal.Interop.WindowMessage, IntPtr, IntPtr)
   en System.Windows.Interop.HwndSource.HwndTargetFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   en MS.Win32.UnsafeNativeMethods.ShowWindow(System.Runtime.InteropServices.HandleRef, Int32)
   en System.Windows.Window.ShowHelper(System.Object)
   en System.Windows.Window.Show()
   en System.Windows.Application+<>c.<RunInternal>b__105_0(System.Object)
   en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   en System.Windows.Threading.DispatcherOperation.InvokeImpl()
   en System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   en MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object)
   en System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   en MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
   en System.Windows.Threading.DispatcherOperation.Invoke()
   en System.Windows.Threading.Dispatcher.ProcessQueue()
   en System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   en MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   en System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   en System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   en System.Windows.Application.RunDispatcher(System.Object)
   en System.Windows.Application.RunInternal(System.Windows.Window)
   en System.Windows.Application.Run(System.Windows.Window)
   en AcerRegistrationBackGroundTask.Startup.Main(System.String[])

Error: (01/21/2024 01:58:41 PM) (Source: Application Error) (EventID: 1000) (User: SYUND)
Description: Nombre de la aplicación con errores: AcerRegistrationBackGroundTask.exe, versión: 1.0.0.0, marca de tiempo: 0x64375ffb
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.22621.2861, marca de tiempo: 0x9e57f18c
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x00149392
Identificador del proceso con errores: