Malware doble acento

Buenas tardes, he le´´ido todos los temas relacionados pero no puedo dar con la soluci´´on. Han instalado recientemente en mi pc un validador de claves de Office y desde ese momento tengo el problema del doble acento. Ingreso aqu´´i los logs de FRST. Muchas gracias!! FRST.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 21.07.2024
Ejecutado por 54351 (administrador) sobre LAPTOP-OPJN8V87 (LENOVO 81Y4) (22-07-2024 14:26:28)
Ejecutado desde C:\Users\54351\Desktop\FRST64.exe
Perfiles cargados: 54351
Plataforma: Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.U.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1085224 2020-06-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248144 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [TeamViewerMeeting] => "C:\Users\54351\AppData\Roaming\TeamViewerMeeting\TeamViewerMeeting.exe" --Minimize (Ningún archivo)
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.182\Installer\chrmstp.exe [2024-07-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-07-16]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Ningún archivo)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-01-30]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicyScripts: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {0D4BE8DF-7A6C-4556-BFF6-83F41962C96A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {10FAB8E1-885D-4328-93E8-54089AADD146} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {224DADA5-0C30-4DDB-9FB8-6CC41B8523D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {48A6236C-022F-40AD-A34F-1871B3123A5C} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {4CD47085-F11A-4C42-8738-D9A584A164F2} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {50CF7C23-FC25-4A27-A5A9-661D33EDB2DF} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {72E16DAA-ACB5-48EA-8A66-FAD27477C18A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {87BF85F4-2CE1-4160-96EA-52F554AA28A2} - \Microsoft\Windows\Autochk\Proxy -> Ningún archivo <==== ATENCIÓN
Task: {BD30B767-86C3-4867-8DDE-468207782635} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {C661AE01-550D-4233-913F-543357C83373} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E6899FA9-00C1-45BA-AB9E-34FB24256739} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {EB097344-4802-4DB0-9D64-9F1D5F7204D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {ED09E48A-76B5-43B4-8576-218C0ACBFDF8} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {058347AE-6D6C-4F45-9C5B-1212AAB72B2C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {BAA0DDCF-01D1-472E-A872-EBD839A40F01} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93D88397-DACB-4C30-8EC5-77CF303D9EBF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6a2f848c-00df-4e12-86e3-037a85dee55d" --version "6.25.11131" --silent
Task: {BBE9451B-140B-4CEC-BDE4-C56E5EABB707} - System32\Tasks\CCleanerSkipUAC - 54351 => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A008D664-6865-4A6F-B16A-DB20B870404A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B2E104C7-EAEA-4772-AF0C-5CA6447BF284} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AD4C9554-E634-45A8-A115-0E0FEC0A6AAB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{9F0790C8-A043-45D1-B14D-4A9E649CD5D8} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {52053E6B-E763-42F6-B41D-BF292EC3252A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {AB357A27-347E-42BD-AEE7-B04ACFBBFD3D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {F5BF5AE0-1E8E-4620-90B5-6E4B6B514195} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C8849BCC-A00B-42D1-AC1C-1529DC19CF82} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\306e7dad-01b3-4719-9b2c-fe8e34ddf5ea => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {48B9A4A5-2F68-4B4F-A143-B2FB4B1A1A0C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4dca79a6-f0cd-47f9-9851-ba68f77554dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {10F38451-B42B-47D2-B7E4-E3075B3BA427} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\84ef12d0-6c0f-42e6-a7a2-3912fb9ab448 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FD96BE87-1A9E-4024-AE27-6163AEFA2FB4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a2e92431-685b-4fc9-86d2-ddb57941fe5a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {6F1BAE47-F04C-4FF4-85C6-3DAE5CD5E005} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d1aa5e86-3aef-4265-86a8-b57138ac26cd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {2CBB4673-11BB-4436-9C69-85225E69970E} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {2F0824D8-4A31-4C05-8D97-FF0DEC23EF07} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
Task: {1A8157AE-0A7C-4083-B45A-274DCB8BACFF} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {17E05054-60AB-4F73-AEB9-E3E16F264691} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {78483B37-3FA8-4FF5-B98D-97E9252E7056} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {3A4B04AB-A48E-4ED6-B5D1-2EF19A1AF9A6} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {D91D57A8-A348-4838-B011-BB1D3905F999} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {588E1C2C-D2A5-4B9E-9118-5D0CC75DB927} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {217B6A89-5090-4427-ADE1-E3ECDCCDE277} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {B869B6A7-AB7E-47AE-B263-9FA5C7087C17} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {3A6BDFE6-2658-4015-9700-96976EEF76BA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {1C24E975-197A-4E00-A116-A2E49BE4E011} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {83818374-B534-4E63-9727-48F9039376C4} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (Ningún archivo)
Task: {E206F6ED-1EB5-48FF-AED2-DC8D122BC561} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {85BA5717-35F3-43BE-873B-797B51FF251E} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {B4793484-AE42-4E22-BD7C-27374FC6BFBD} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {C739C671-9AC9-4BE7-A0A9-90FB652B565F} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\uninstall.exe [345552 2024-05-30] (Lenovo -> Lenovo)
Task: {7C8C9FC8-610B-4EAA-B575-E10739E16DE7} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADupdater.exe  (Ningún archivo)
Task: {6F08C731-C44E-46D9-BF69-FA681E3E9598} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {B668182F-0762-4575-9A92-8F3D8E4A672E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF2982B2-8D04-4F3E-87D9-70A10D072435} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9073E839-596D-48F7-8C67-CF74D38F095B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FF173B0-A753-49A9-8B27-2D314C2E6101} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [90112 2024-07-11] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136} - System32\Tasks\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\CordPower\IesgPoper\"C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll" /U /silent
Task: {23185FCA-2FEA-4338-AD85-420AE01B05BF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F26D0FE4-FD35-4849-B11E-CBE267B94872} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {79CE8470-6736-4648-81B9-EBCCCDA82F7E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {494F5282-CE6A-4484-9C70-49AC5D1977BE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {AF5B39AC-7E85-4527-BB34-4121BB445113} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A069C1-0ABB-47C5-989B-E3FFFFF6D581} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CE86389-4BBD-4DAC-9D47-3162A6533D8E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F68CD87-205A-48B1-8C7A-88E107494659} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40E3B307-8B3A-4132-88A8-76D22695864C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D93267E0-F272-4C4B-8FC9-E249972C9DE9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.106 192.168.0.106
Tcpip\..\Interfaces\{7ee2d9e7-a1a0-4e44-bc1e-a464b034a1e5}: [DhcpNameServer] 150.215.1.2
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}: [DhcpNameServer] 192.168.0.106 192.168.0.106
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3616274696F6C6F6769616: [DhcpNameServer] 186.56.20.66 186.56.20.67 192.168.68.1
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6F55374: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpDomain] TL-WA850RE
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\964736F6D6F50727965647F6: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Profile: C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-18]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default [2024-07-22]
CHR Extension: (uBlock Origin) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-05-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-23]
CHR Extension: (Marsala) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjlfmldcaheghnjjpgpoadjfppefjmkj [2021-08-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-19]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-15]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-07-15]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-04-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-23]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-17]
CHR HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3910472 2024-02-07] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9202656 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\203.4.4857\DropboxElevationService.exe [1659288 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe [34256 2024-05-30] (Lenovo -> Lenovo)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8901528 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [119560 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [81424 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.U.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-16] (Microsoft Corporation) [Archivo no firmado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-16] (Microsoft Corporation) [Archivo no firmado]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Archivo no firmado]
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [151152 2022-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [36552 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-22 14:26 - 2024-07-22 14:27 - 000040479 _____ C:\Users\54351\Desktop\FRST.txt
2024-07-22 14:26 - 2024-07-22 14:26 - 000000000 ____D C:\FRST
2024-07-22 14:23 - 2024-07-22 14:23 - 002396672 _____ (Farbar) C:\Users\54351\Desktop\FRST64.exe
2024-07-22 13:03 - 2024-07-22 13:03 - 002588568 _____ (Malwarebytes) C:\Users\54351\Desktop\MBSetup.exe
2024-07-22 10:17 - 2024-07-22 10:17 - 000769398 _____ C:\WINDOWS\system32\perfh00A.dat
2024-07-22 10:17 - 2024-07-22 10:17 - 000152964 _____ C:\WINDOWS\system32\perfc00A.dat
2024-07-22 09:42 - 2024-07-22 14:17 - 000001287 _____ C:\Users\54351\Desktop\ESET Online Scanner.lnk
2024-07-22 09:41 - 2024-07-22 14:17 - 000001393 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-07-22 09:41 - 2024-07-22 09:41 - 008389496 _____ (ESET) C:\Users\54351\Desktop\esetonlinescanner.exe
2024-07-22 09:41 - 2024-07-22 09:41 - 000000000 ____D C:\Users\54351\AppData\Local\ESET
2024-07-22 09:33 - 2024-07-22 10:11 - 000002144 _____ C:\Users\54351\Desktop\Rkill.txt
2024-07-22 09:33 - 2024-07-22 09:33 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\54351\Desktop\rkill.exe
2024-07-21 11:48 - 2024-07-21 12:24 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\MMC
2024-07-21 11:29 - 2024-07-21 11:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-07-18 22:35 - 2024-07-22 14:24 - 000000000 ____D C:\Users\54351\AppData\Local\Malwarebytes
2024-07-18 22:35 - 2024-07-18 22:35 - 000002104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\Program Files\Malwarebytes
2024-07-17 08:29 - 2024-07-17 08:29 - 000503277 _____ C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip
2024-07-17 08:29 - 2024-07-17 08:29 - 000000000 ____D C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6
2024-07-16 22:32 - 2024-07-16 22:32 - 000000000 ____D C:\ProgramData\Piriform
2024-07-16 22:31 - 2024-07-22 09:30 - 000000000 ____D C:\Program Files\CCleaner
2024-07-16 22:31 - 2024-07-18 22:48 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-16 22:31 - 2024-07-16 22:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-16 22:31 - 2024-07-16 22:31 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-16 22:31 - 2024-07-16 22:31 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - 54351
2024-07-16 22:31 - 2024-07-16 22:31 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-16 22:31 - 2024-07-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-11 07:54 - 2024-07-11 07:54 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-11 07:53 - 2024-07-11 07:53 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-11 07:49 - 2024-07-11 07:51 - 000000000 ___HD C:\$WinREAgent
2024-07-11 07:04 - 2024-07-11 07:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-07-10 20:02 - 2024-07-10 20:02 - 000000000 ____D C:\WINDOWS\Panther
2024-07-09 08:02 - 2024-07-09 08:02 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-22 14:27 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-22 14:26 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-22 14:07 - 2022-11-16 17:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-22 12:25 - 2021-06-24 14:07 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-22 12:23 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-22 12:13 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Roaming\Dropbox
2024-07-22 12:13 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Local\Dropbox
2024-07-22 12:12 - 2021-08-19 15:42 - 000000000 __SHD C:\Users\54351\IntelGraphicsProfiles
2024-07-22 11:09 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\VirtualStore
2024-07-22 10:31 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-22 10:17 - 2022-11-16 20:54 - 001711630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-22 10:10 - 2023-09-25 19:26 - 000000000 ____D C:\Program Files\TeamViewer
2024-07-22 10:10 - 2022-11-16 17:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-22 10:10 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-22 10:10 - 2021-06-24 14:04 - 000000000 ___HD C:\Intel
2024-07-22 10:09 - 2022-05-07 02:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-22 10:09 - 2022-01-30 20:41 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-07-22 10:09 - 2020-05-06 15:33 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-22 10:01 - 2021-10-24 08:49 - 000000000 ____D C:\Users\54351\AppData\Local\CrashDumps
2024-07-21 16:43 - 2022-11-16 20:51 - 000000000 ____D C:\Users\54351\AppData\Local\D3DSCache
2024-07-21 14:32 - 2021-08-21 21:06 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Word
2024-07-21 11:26 - 2022-11-16 17:53 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Spelling
2024-07-21 11:22 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-19 12:57 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-19 08:11 - 2023-01-16 09:04 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-07-19 08:11 - 2021-06-24 13:53 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\OCR
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Globalization
2024-07-18 23:06 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-18 22:58 - 2021-08-19 15:44 - 000000000 ____D C:\Users\54351\AppData\Local\PlaceholderTileLogoFolder
2024-07-18 22:58 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\Packages
2024-07-18 22:48 - 2023-01-08 13:07 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-18 22:40 - 2023-09-02 12:30 - 000000000 ____D C:\Users\54351\AppData\Roaming\utorrent
2024-07-18 22:34 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-18 07:58 - 2021-08-19 15:46 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-07-18 07:58 - 2021-08-19 15:46 - 000002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-07-17 13:54 - 2024-02-16 14:04 - 000267880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-07-17 13:54 - 2022-10-21 17:15 - 000108136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-07-17 13:54 - 2022-10-21 17:15 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-07-17 13:54 - 2021-11-20 10:23 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 002799208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000751208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000222816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-07-16 22:26 - 2021-08-27 09:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-07-16 22:26 - 2021-08-19 15:44 - 000000000 ____D C:\ProgramData\Packages
2024-07-16 18:36 - 2021-06-24 13:57 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-15 12:00 - 2021-08-19 15:52 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Excel
2024-07-11 17:54 - 2022-11-16 17:57 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-11 17:54 - 2022-11-16 17:57 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-11 10:25 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-11 09:46 - 2022-11-16 17:52 - 000474712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-11 09:45 - 2023-12-14 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-11 09:45 - 2023-10-12 14:45 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-11 09:45 - 2022-11-16 13:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-11 07:54 - 2022-11-16 17:57 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-11 07:05 - 2021-08-19 16:05 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-07-11 07:04 - 2024-02-16 14:04 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll.0
2024-07-11 07:04 - 2021-08-19 15:53 - 000751096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0
2024-07-10 20:02 - 2021-08-19 16:05 - 000000980 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2024-07-10 20:02 - 2021-08-19 16:05 - 000000976 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2024-07-10 18:35 - 2021-08-29 10:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 17:30 - 2021-08-29 10:18 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-06 08:05 - 2023-02-15 09:29 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-07-06 08:05 - 2023-02-13 17:46 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-07-06 08:05 - 2021-08-19 15:39 - 000002428 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-05 08:55 - 2021-08-29 23:02 - 000000000 ____D C:\Users\54351\AppData\Roaming\vlc
2024-07-02 10:02 - 2022-10-13 11:31 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-02 10:02 - 2022-10-13 11:31 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-06-30 15:35 - 2022-11-16 17:57 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 21.07.2024
Ejecutado por 54351 (22-07-2024 14:29:14)
Ejecutado desde C:\Users\54351\Desktop
Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) (2022-11-16 23:49:17)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

54351 (S-1-5-21-3373832111-2872085848-2811205463-1001 - Administrator - Enabled) => C:\Users\54351
Administrador (S-1-5-21-3373832111-2872085848-2811205463-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3373832111-2872085848-2811205463-503 - Limited - Disabled)
Invitado (S-1-5-21-3373832111-2872085848-2811205463-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3373832111-2872085848-2811205463-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Malwarebytes (Disabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Panda Dome (Disabled - Up to date) {8404BB29-B609-D604-AF5C-6806F0482FD3}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1034-1033-7760-BC15014EA700}) (Version: 24.002.20895 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.15 - AnyDesk Software GmbH)
Apowersoft Online Launcher version 1.8.2 (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.8.2 - APOWERSOFT LIMITED)
Canva (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.36.0 - Canva Pty Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 6.25 - Piriform)
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Dropbox (HKLM-x32\...\Dropbox) (Version: 203.4.4857 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.911.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 126.0.6478.182 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{44C34709-F068-4CBC-8A71-515EDBC3B2A6}) (Version: 10.1.18383.8213 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.12.0 - Lenovo Group Ltd.)
Malwarebytes version 5.1.6.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.6.117 - Malwarebytes)
Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - en-us (HKLM\...\Access2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - es-es (HKLM\...\Access2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 126.0.2592.113 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - en-us (HKLM\...\Standard2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - es-es (HKLM\...\Standard2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\OneDriveSetup.exe) (Version: 24.126.0623.0001 - Microsoft Corporation)
Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project Profesional 2021 - es-es (HKLM\...\ProjectPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio LTSC Professional 2021 - es-es (HKLM\...\VisioPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28720 (HKLM\...\{CB4A0FDE-1126-4AE2-97C6-A243692C3D95}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28720 (HKLM\...\{DD1EC0FD-3F0A-4740-A05E-1DCD14A6B0D1}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
NVIDIA Controlador de gráficos 462.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{7DD06CA9-7719-4AA5-B778-BF08A8C72C6A}) (Version: 12.12.20 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.2.0 - Panda Security)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.55.3 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\ZoomUMX) (Version: 5.15.11 (21032) - Zoom Video Communications, Inc.)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-23] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt [2024-07-18] (INTEL CORP) [Startup Task]
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-21] (Microsoft Corporation)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20602.609.0_x64__rz1tebttyb220 [2021-06-24] (Dolby Laboratories)
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2024-07-11] (Dropbox Inc.)
Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.15005.0_x64__8wekyb3d8bbwe [2024-07-17] (Microsoft Corporation) [Startup Task]
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-07-05] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-23] (Apple Inc.) [Startup Task]
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-07-16] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-04-03] (LENOVO INC) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Microsoft Jenny (Natural) - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-US.Jenny.1_1.0.8.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.1293.0_x64__8wekyb3d8bbwe [2024-06-03] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-16] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24062.51.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.99.5.0_x64__mcm4njqhnhss8 [2024-04-23] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
PDF X -> C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.2.0_x64__sbe4t8mqwq93a [2024-07-11] (NG PDF Lab) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2021-06-24] (Realtek Semiconductor Corp)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.16.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-07-11] (Microsoft Windows)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\54351\Dropbox [2021-08-20 09:19]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.75.0.dll [2024-06-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\nvshext.dll [2021-08-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============


==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\54351\Desktop\esetonlinescanner.exe:MBAM.Zone.Identifier [223]
AlternateDataStreams: C:\Users\54351\Desktop\MBSetup.exe:MBAM.Zone.Identifier [145]
AlternateDataStreams: C:\Users\54351\Desktop\rkill.exe:MBAM.Zone.Identifier [133]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 06:14 - 2022-04-12 19:46 - 000000828 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Control Panel\Desktop\\Wallpaper -> D:\Fotos Iphone\Ultimas fotos Iphone\Segunda mitad\PCCI2249.JPG
DNS Servers: 192.168.0.106
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 -> Netwtw10.sys
Ethernet 2: AnchorFree TAP-Windows Adapter V9 -> aftap0901.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys

NNSNAHSL: Network Activity Hook Server LightWeight Filter Driver
netvsc_vfpp: Microsoft NetVsc Failover VF Protocol

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{C6D73A20-F300-4E48-9AD8-A786D9D6DD4D}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{33499D6B-EC70-4B9D-B1CE-DA50EC07C399}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{60A207C7-E822-4F93-A902-9EC3F992189D}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C009F61D-424D-49C2-BB9D-55A31FD83C86}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Ningún archivo
FirewallRules: [{C37626C7-6B44-4FD9-9C86-F449366C313A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10CED43D-58F7-49B2-AC9C-4B96B7532EB9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CAE6AE9C-8880-4900-8CE2-2F8A604CA289}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4FBA02FA-6DCA-4E38-9E90-521646901486}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D781C84B-9F17-4D0E-8C6C-A4110B9F6B46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D5D6447-DA5D-4FDC-A536-9431BA750ECD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C9EBFF40-E0D8-4E2B-9952-8A2375C712FF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F3670FCF-03B0-474C-98C3-DCB996DB9D21}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{92AE2F08-64E1-42DF-893D-8FEC62C13239}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{12DB5C5C-E184-4FBA-AEF9-3F28FC74693F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{458C52C9-1276-4104-86C3-AFF678845D4C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2104BFE0-C398-43B7-9B66-04E3DC6D6582}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7FCC9FE0-5C24-424B-A04D-95062FFEE1F5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{67935A76-5F57-4FE5-92E5-E222291DEDC1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{84F562FD-A1DD-48C6-9F71-EA944672CC42}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6878F463-045D-41FC-9F09-260605120468}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2E98A507-7DC7-4B15-8204-90C4B427466B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{19A7B768-AB10-421C-BA10-DCE7E14D2E33}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{51C492EA-BA02-4DC6-9A02-15885009B3AD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8F245096-2DED-46D6-9E51-CC562E61FFE1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FB41294E-21CC-4EA0-95AF-B0C2A22F5FF2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EE04BF7A-500C-4428-B114-5B2F899C39EF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CE8F3242-E652-43CC-9506-B67E7728AFE5}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B816698F-70FA-4E7F-97F3-CA0013F3C142}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9D322C8C-897A-4D30-8A83-0F3154431016}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C43033DE-AB21-41ED-B2B3-F7A6D89B8935}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{12E7392E-4DE5-48C5-BA95-9B3A21F8C9A0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B6ADAC83-ABB1-4C2B-8638-E9316C99B49A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{331C0CDC-0CF2-4B17-85EA-98F21E5F9842}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{7FD4CA46-5E60-4924-A681-EB2CBA1E9A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9E0881A-EBE1-422C-8278-62BDAE84DE5C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8FBD1441-DDAE-438A-8FE1-DD53B01B7061}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{467A85BB-6235-400A-9169-FE567DD95531}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{584FAEB1-ECAD-4C8F-8AFF-D3E40868C455}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C8A2A635-389E-4691-839C-E95F6DA31E66}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F4B45FB7-939C-407B-BA50-734E3A960324}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{37C7FEC2-6B6F-412F-9C60-82756DD170E4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{98CBDE62-6B0D-4030-B515-4A2B74A0AAB3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{7B5A61CB-B941-4A0F-ACE4-C60190C734D3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{2C6B447A-B06C-4071-92D1-A059917D9E76}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{A2F3B75D-93CC-4701-94F8-432F69A83204}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)

==================== Puntos de Restauración =========================

ATENCIÓN: Restaurar Sistema está deshabilitado (Total:118 GB) (Free:9.07 GB) (8%)

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Universal Device Client Device
Description: Universal Device Client Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (07/22/2024 12:13:09 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 12:13:09 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 12:13:09 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.

Error: (07/22/2024 12:13:09 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 12:13:07 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 10:59:05 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 10:59:05 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/22/2024 10:59:04 AM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.


Errores del sistema:
=============
Error: (07/22/2024 10:12:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Google Update Servicio (gupdate) no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (07/22/2024 10:12:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Google Update Servicio (gupdate).

Error: (07/22/2024 10:10:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio GameInput Service se terminó de manera inesperada. Esto ha sucedido 6 veces.

Error: (07/22/2024 10:10:10 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio GameInput Service se cerró con el siguiente error: 
El archivo compuesto GameInput Service se creó con una versión de almacenamiento más reciente.

Error: (07/22/2024 10:10:09 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio GameInput Service terminó inesperadamente. Esto se ha repetido 5 veces. Se realizará la siguiente acción correctora en 1000 milisegundos: Reiniciar el servicio.

Error: (07/22/2024 10:10:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio GameInput Service se cerró con el siguiente error: 
El archivo compuesto GameInput Service se creó con una versión de almacenamiento más reciente.

Error: (07/22/2024 10:10:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio GameInput Service terminó inesperadamente. Esto se ha repetido 4 veces. Se realizará la siguiente acción correctora en 1000 milisegundos: Reiniciar el servicio.

Error: (07/22/2024 10:10:08 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio GameInput Service se cerró con el siguiente error: 
El archivo compuesto GameInput Service se creó con una versión de almacenamiento más reciente.


Windows Defender:
================
Date: 2024-05-17 18:11:39
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {646E15CA-6EF2-46E1-8187-1B199EE72DAA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-12 10:46:08
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {3A249362-43FA-45A0-83DC-098D5E6F1F65}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-11 08:22:53
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {5FE391F8-FC99-4D83-8D3B-D774EBC68174}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-10 08:56:56
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {7BFAF7FF-C78B-40AB-B5CC-565C416FE045}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-06 08:25:42
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {0ACA0DA9-61E5-4EEF-9AA4-F6D83D172EF4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

CodeIntegrity:
===============
Date: 2024-07-22 14:22:52
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 

Date: 2024-07-22 13:58:16
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\wscript.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 


==================== Información de la memoria =========================== 

BIOS: LENOVO EGCN34WW 05/18/2021
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i5-10300H CPU @ 2.50GHz
Porcentaje de memoria en uso: 79%
RAM física total: 8059.8 MB
RAM física disponible: 1691.39 MB
Virtual total: 11387.8 MB
Virtual disponible: 2406.16 MB

==================== Unidades ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:9.07 GB) (Model: SAMSUNG MZALQ128HBHQ-000L2) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:863.26 GB) (Model: WDC WD10SPZX-08Z10) NTFS

\\?\Volume{445d065c-579a-4e09-837d-eb754791adb0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.06 GB) NTFS
\\?\Volume{ab06857b-4f8f-4155-a874-23bcacb42ed6}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 53F0087B)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: D0DC65C1)

Partition: GPT.

==================== Final de Addition.txt =======================

Hola buenas @Devora_Chico bienvenida al foro. Al ser nueva te recomiendo que te leas las políticas de este. No porque hayas hecho nada mal, sino para saber más acerca del funcionamiento de este.

Claro, cada caso de este malware es único y todo y que muchas veces sigue una misma filosofía o parecida para instalarse y hacer de las suyas, para ser erradicado ha de ser de forma concreta y adaptada a cada máquina infectada.

Claro, allí se te ha colado el malware. Nunca utilices mierdas de estas de activadores o similares porque casi siempre traen lo que traen. Y después lo barato sale demasiado caro.

OK. Ya los he revisado, sé donde tienes la infección. De todas formas como ya hace 6 días aprox. Por favor, traes nuevos informes frescos de FRST.

Puedes adjuntar los informes directamente tal y como ya has hecho antes en tu primer mensaje.

Para ello:

EN BUSCA / ELIMINACIÓN DE MALWARE

Desactivas tu antivirus Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad que tengas activado.

LO DESCARGAS EN TU ESCRITORIO MUY IMPORTANTE (y no en otro sitio).

Descargas Farbar Recovery Scan Tool MUY IMPORTANTE >> seleccionas la versión adecuada para la arquitectura correspondiente de tu Ordenador (32 o 64 bits). ¿Cómo saber si mi Windows es de 32 o 64 bits.?

Una vez descargado FRST, desconectas tu equipo de completamente de Internet (apagas el router) >> Super Importante. Acto seguido, cierras también cualquier otro programa que tengas abierto.

Farbar Recovery Scan Tool

1. Ejecutas el FRST.exe (Si utilizas Windows Vista/7/8 o 10, presionas clic derecho y seleccionas Ejecutar como Administrador).

2. Aparecerá una ventana con un mensaje de Disclaimer/Responsabilidad, presionas sobre Sí o Yes.

3. En la ventana principal del programa, presionas sobre Analizar/Scan y esperas a que finalice el análisis.

4. Aparecerán dos logs/reportes que serán: Frst.txt y Addition.txt, estos quedarán guardados en el escritorio.

Activas de nuevo tu antivirus y cualquier programa de seguridad que tengas activado. También conectas nuevamente tu equipo a Internet.

PRÓXIMA RESPUESTA

Pegas los reportes de FRST.txt y Addition.txt. Debes de poner ambos reportes todos enteros con absolutamente todo su contenido. Deberás de realizar varios mensajes si recibes un mensaje de error/advertencia indicando que es muy largo dicho reporte que formará el mensaje (más de 50.000 caracteres aprox.).

NOTA IMPORTANTE

Por Favor, mientras estemos desinfectando tu maquina o terminando de hacerlo:

• No realices pasos/acciones que NOSOTROS no te hayamos indicado.
• No descargues NADA de Internet y/o conectes dispositivos externos a tu equipo.
• No instales NADA (programas/software/complementos/extensiones del navegador…).
• No ejecutes otros programas de seguridad (Antivirus, Antimalware, ANTINADA…).
• No realices por tu cuenta otros procedimientos.
• Usa tu equipo EXCLUSIVAMENTE para desinfectarlo siguiendo nuestras indicaciones.

Muy Importante Coloca los diferentes reportes que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Salu2.

Aqu´´i va. Muchas gracias por su tiempo! FRST.TXT

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 21.07.2024
Ejecutado por 54351 (administrador) sobre LAPTOP-OPJN8V87 (LENOVO 81Y4) (29-07-2024 20:00:59)
Ejecutado desde C:\Users\54351\Desktop\FRST64.exe
Perfiles cargados: 54351
Plataforma: Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform) C:\Program Files\CCleaner\ccleaner_update_helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.U.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
(taskhostw.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1085224 2020-06-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248136 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [TeamViewerMeeting] => "C:\Users\54351\AppData\Roaming\TeamViewerMeeting\TeamViewerMeeting.exe" --Minimize (Ningún archivo)
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.73\Installer\chrmstp.exe [2024-07-29] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-07-16]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Ningún archivo)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-01-30]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicyScripts: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {0D4BE8DF-7A6C-4556-BFF6-83F41962C96A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {10FAB8E1-885D-4328-93E8-54089AADD146} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {224DADA5-0C30-4DDB-9FB8-6CC41B8523D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {48A6236C-022F-40AD-A34F-1871B3123A5C} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {4CD47085-F11A-4C42-8738-D9A584A164F2} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {50CF7C23-FC25-4A27-A5A9-661D33EDB2DF} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {72E16DAA-ACB5-48EA-8A66-FAD27477C18A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {87BF85F4-2CE1-4160-96EA-52F554AA28A2} - \Microsoft\Windows\Autochk\Proxy -> Ningún archivo <==== ATENCIÓN
Task: {BD30B767-86C3-4867-8DDE-468207782635} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {C661AE01-550D-4233-913F-543357C83373} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E6899FA9-00C1-45BA-AB9E-34FB24256739} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {EB097344-4802-4DB0-9D64-9F1D5F7204D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {ED09E48A-76B5-43B4-8576-218C0ACBFDF8} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {058347AE-6D6C-4F45-9C5B-1212AAB72B2C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {BAA0DDCF-01D1-472E-A872-EBD839A40F01} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93D88397-DACB-4C30-8EC5-77CF303D9EBF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6a2f848c-00df-4e12-86e3-037a85dee55d" --version "6.25.11131" --silent
Task: {BBE9451B-140B-4CEC-BDE4-C56E5EABB707} - System32\Tasks\CCleanerSkipUAC - 54351 => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A008D664-6865-4A6F-B16A-DB20B870404A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B2E104C7-EAEA-4772-AF0C-5CA6447BF284} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AD4C9554-E634-45A8-A115-0E0FEC0A6AAB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{9F0790C8-A043-45D1-B14D-4A9E649CD5D8} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {52053E6B-E763-42F6-B41D-BF292EC3252A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {AB357A27-347E-42BD-AEE7-B04ACFBBFD3D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {F5BF5AE0-1E8E-4620-90B5-6E4B6B514195} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C8849BCC-A00B-42D1-AC1C-1529DC19CF82} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\306e7dad-01b3-4719-9b2c-fe8e34ddf5ea => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {48B9A4A5-2F68-4B4F-A143-B2FB4B1A1A0C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4dca79a6-f0cd-47f9-9851-ba68f77554dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {10F38451-B42B-47D2-B7E4-E3075B3BA427} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\84ef12d0-6c0f-42e6-a7a2-3912fb9ab448 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FD96BE87-1A9E-4024-AE27-6163AEFA2FB4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a2e92431-685b-4fc9-86d2-ddb57941fe5a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {6F1BAE47-F04C-4FF4-85C6-3DAE5CD5E005} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d1aa5e86-3aef-4265-86a8-b57138ac26cd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {2CBB4673-11BB-4436-9C69-85225E69970E} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {2F0824D8-4A31-4C05-8D97-FF0DEC23EF07} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
Task: {1A8157AE-0A7C-4083-B45A-274DCB8BACFF} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {17E05054-60AB-4F73-AEB9-E3E16F264691} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {78483B37-3FA8-4FF5-B98D-97E9252E7056} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {3A4B04AB-A48E-4ED6-B5D1-2EF19A1AF9A6} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {D91D57A8-A348-4838-B011-BB1D3905F999} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {588E1C2C-D2A5-4B9E-9118-5D0CC75DB927} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {217B6A89-5090-4427-ADE1-E3ECDCCDE277} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {B869B6A7-AB7E-47AE-B263-9FA5C7087C17} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {3A6BDFE6-2658-4015-9700-96976EEF76BA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {1C24E975-197A-4E00-A116-A2E49BE4E011} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {83818374-B534-4E63-9727-48F9039376C4} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (Ningún archivo)
Task: {E206F6ED-1EB5-48FF-AED2-DC8D122BC561} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {85BA5717-35F3-43BE-873B-797B51FF251E} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {B4793484-AE42-4E22-BD7C-27374FC6BFBD} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {C739C671-9AC9-4BE7-A0A9-90FB652B565F} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\uninstall.exe [345552 2024-05-30] (Lenovo -> Lenovo)
Task: {7C8C9FC8-610B-4EAA-B575-E10739E16DE7} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADupdater.exe  (Ningún archivo)
Task: {6F08C731-C44E-46D9-BF69-FA681E3E9598} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {B668182F-0762-4575-9A92-8F3D8E4A672E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF2982B2-8D04-4F3E-87D9-70A10D072435} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9073E839-596D-48F7-8C67-CF74D38F095B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FF173B0-A753-49A9-8B27-2D314C2E6101} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [90112 2024-07-11] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136} - System32\Tasks\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\CordPower\IesgPoper\"C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll" /U /silent
Task: {23185FCA-2FEA-4338-AD85-420AE01B05BF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F26D0FE4-FD35-4849-B11E-CBE267B94872} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {79CE8470-6736-4648-81B9-EBCCCDA82F7E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {494F5282-CE6A-4484-9C70-49AC5D1977BE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {AF5B39AC-7E85-4527-BB34-4121BB445113} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A069C1-0ABB-47C5-989B-E3FFFFF6D581} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CE86389-4BBD-4DAC-9D47-3162A6533D8E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F68CD87-205A-48B1-8C7A-88E107494659} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40E3B307-8B3A-4132-88A8-76D22695864C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D93267E0-F272-4C4B-8FC9-E249972C9DE9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.106 192.168.0.106
Tcpip\..\Interfaces\{7ee2d9e7-a1a0-4e44-bc1e-a464b034a1e5}: [DhcpNameServer] 150.215.1.2
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}: [DhcpNameServer] 192.168.0.106 192.168.0.106
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6F55374: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpDomain] TL-WA850RE
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\964736F6D6F50727965647F6: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Profile: C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-18]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default [2024-07-29]
CHR Extension: (uBlock Origin) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-05-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-23]
CHR Extension: (Marsala) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjlfmldcaheghnjjpgpoadjfppefjmkj [2021-08-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-19]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-15]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-07-15]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-04-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-23]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-17]
CHR HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3910472 2024-02-07] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9202656 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\204.4.5420\DropboxElevationService.exe [1659288 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe [34664 2024-07-16] (Lenovo -> Lenovo)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8901528 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [119560 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [81424 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.U.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-16] (Microsoft Corporation) [Archivo no firmado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-16] (Microsoft Corporation) [Archivo no firmado]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Archivo no firmado]
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl51126c5b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FDA5197F-7A71-4391-B15C-0F2450CAE2C6}\MpKslDrv.sys [271648 2024-07-29] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [151152 2022-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [36552 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-25 08:00 - 2024-07-25 08:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-07-23 12:21 - 2024-07-23 12:21 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-07-22 14:29 - 2024-07-22 14:30 - 000039062 _____ C:\Users\54351\Desktop\Addition.txt
2024-07-22 14:26 - 2024-07-29 20:01 - 000040290 _____ C:\Users\54351\Desktop\FRST.txt
2024-07-22 14:26 - 2024-07-29 20:01 - 000000000 ____D C:\FRST
2024-07-22 14:23 - 2024-07-22 14:23 - 002396672 _____ (Farbar) C:\Users\54351\Desktop\FRST64.exe
2024-07-22 13:03 - 2024-07-22 13:03 - 002588568 _____ (Malwarebytes) C:\Users\54351\Desktop\MBSetup.exe
2024-07-22 10:17 - 2024-07-22 10:17 - 000769398 _____ C:\WINDOWS\system32\perfh00A.dat
2024-07-22 10:17 - 2024-07-22 10:17 - 000152964 _____ C:\WINDOWS\system32\perfc00A.dat
2024-07-22 09:42 - 2024-07-22 14:17 - 000001287 _____ C:\Users\54351\Desktop\ESET Online Scanner.lnk
2024-07-22 09:41 - 2024-07-22 14:17 - 000001393 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-07-22 09:41 - 2024-07-22 09:41 - 008389496 _____ (ESET) C:\Users\54351\Desktop\esetonlinescanner.exe
2024-07-22 09:41 - 2024-07-22 09:41 - 000000000 ____D C:\Users\54351\AppData\Local\ESET
2024-07-22 09:33 - 2024-07-22 10:11 - 000002144 _____ C:\Users\54351\Desktop\Rkill.txt
2024-07-22 09:33 - 2024-07-22 09:33 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\54351\Desktop\rkill.exe
2024-07-21 11:48 - 2024-07-21 12:24 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\MMC
2024-07-21 11:29 - 2024-07-21 11:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-07-18 22:35 - 2024-07-22 14:24 - 000000000 ____D C:\Users\54351\AppData\Local\Malwarebytes
2024-07-18 22:35 - 2024-07-18 22:35 - 000002104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\Program Files\Malwarebytes
2024-07-17 08:29 - 2024-07-17 08:29 - 000503277 _____ C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip
2024-07-17 08:29 - 2024-07-17 08:29 - 000000000 ____D C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6
2024-07-16 22:32 - 2024-07-16 22:32 - 000000000 ____D C:\ProgramData\Piriform
2024-07-16 22:31 - 2024-07-29 19:56 - 000000000 ____D C:\Program Files\CCleaner
2024-07-16 22:31 - 2024-07-24 07:33 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-16 22:31 - 2024-07-18 22:48 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-16 22:31 - 2024-07-16 22:31 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-16 22:31 - 2024-07-16 22:31 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - 54351
2024-07-16 22:31 - 2024-07-16 22:31 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-16 22:31 - 2024-07-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-11 07:54 - 2024-07-11 07:54 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-11 07:53 - 2024-07-11 07:53 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-11 07:49 - 2024-07-11 07:51 - 000000000 ___HD C:\$WinREAgent
2024-07-10 20:02 - 2024-07-10 20:02 - 000000000 ____D C:\WINDOWS\Panther

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-29 19:59 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-29 19:58 - 2021-08-19 15:46 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-07-29 19:58 - 2021-08-19 15:46 - 000002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-07-29 19:58 - 2021-06-24 14:07 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-29 19:57 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Roaming\Dropbox
2024-07-29 19:57 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Local\Dropbox
2024-07-29 19:56 - 2021-08-19 15:42 - 000000000 __SHD C:\Users\54351\IntelGraphicsProfiles
2024-07-29 13:10 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-29 12:51 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-29 12:51 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-29 12:35 - 2021-08-21 21:06 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Word
2024-07-29 12:22 - 2023-01-16 09:04 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-07-29 12:22 - 2021-06-24 13:53 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-29 12:16 - 2023-02-15 09:29 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-07-29 12:16 - 2023-02-13 17:46 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-07-29 12:16 - 2022-11-16 17:57 - 000003636 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-29 12:16 - 2022-11-16 17:57 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-29 12:16 - 2021-08-19 15:39 - 000002428 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-25 08:00 - 2022-11-16 17:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-25 08:00 - 2021-08-19 16:05 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-07-23 08:12 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-23 07:10 - 2023-09-25 19:26 - 000000000 ____D C:\Program Files\TeamViewer
2024-07-22 22:33 - 2022-01-30 20:41 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-07-22 14:38 - 2021-10-24 08:49 - 000000000 ____D C:\Users\54351\AppData\Local\CrashDumps
2024-07-22 14:26 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-22 11:09 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\VirtualStore
2024-07-22 10:17 - 2022-11-16 20:54 - 001711630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-22 10:10 - 2022-11-16 17:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-22 10:10 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-22 10:10 - 2021-06-24 14:04 - 000000000 ___HD C:\Intel
2024-07-22 10:09 - 2022-05-07 02:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-22 10:09 - 2020-05-06 15:33 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-21 16:43 - 2022-11-16 20:51 - 000000000 ____D C:\Users\54351\AppData\Local\D3DSCache
2024-07-21 11:26 - 2022-11-16 17:53 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Spelling
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\OCR
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Globalization
2024-07-18 23:06 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-18 22:58 - 2021-08-19 15:44 - 000000000 ____D C:\Users\54351\AppData\Local\PlaceholderTileLogoFolder
2024-07-18 22:58 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\Packages
2024-07-18 22:48 - 2023-01-08 13:07 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-18 22:40 - 2023-09-02 12:30 - 000000000 ____D C:\Users\54351\AppData\Roaming\utorrent
2024-07-18 22:34 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-17 13:54 - 2024-02-16 14:04 - 000267880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-07-17 13:54 - 2022-10-21 17:15 - 000108136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-07-17 13:54 - 2022-10-21 17:15 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-07-17 13:54 - 2021-11-20 10:23 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 002799208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000751208 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000222816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-17 13:54 - 2021-08-19 15:53 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-07-16 22:26 - 2021-08-27 09:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-07-16 22:26 - 2021-08-19 15:44 - 000000000 ____D C:\ProgramData\Packages
2024-07-16 18:36 - 2021-06-24 13:57 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-15 12:00 - 2021-08-19 15:52 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Excel
2024-07-11 10:25 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-11 09:46 - 2022-11-16 17:52 - 000474712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-11 09:45 - 2023-12-14 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-11 09:45 - 2023-10-12 14:45 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-11 09:45 - 2022-11-16 13:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-11 07:54 - 2022-11-16 17:57 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-11 07:04 - 2024-02-16 14:04 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll.0
2024-07-11 07:04 - 2021-08-19 15:53 - 000751096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0
2024-07-10 20:02 - 2021-08-19 16:05 - 000000980 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2024-07-10 20:02 - 2021-08-19 16:05 - 000000976 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2024-07-10 18:35 - 2021-08-29 10:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 17:30 - 2021-08-29 10:18 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-05 08:55 - 2021-08-29 23:02 - 000000000 ____D C:\Users\54351\AppData\Roaming\vlc
2024-07-02 10:02 - 2022-10-13 11:31 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-02 10:02 - 2022-10-13 11:31 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-06-30 15:35 - 2022-11-16 17:57 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 21.07.2024
Ejecutado por 54351 (29-07-2024 20:02:58)
Ejecutado desde C:\Users\54351\Desktop
Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) (2022-11-16 23:49:17)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

54351 (S-1-5-21-3373832111-2872085848-2811205463-1001 - Administrator - Enabled) => C:\Users\54351
Administrador (S-1-5-21-3373832111-2872085848-2811205463-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3373832111-2872085848-2811205463-503 - Limited - Disabled)
Invitado (S-1-5-21-3373832111-2872085848-2811205463-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3373832111-2872085848-2811205463-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Malwarebytes (Disabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Panda Dome (Disabled - Up to date) {8404BB29-B609-D604-AF5C-6806F0482FD3}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1034-1033-7760-BC15014EA700}) (Version: 24.002.20895 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.15 - AnyDesk Software GmbH)
Apowersoft Online Launcher version 1.8.2 (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.8.2 - APOWERSOFT LIMITED)
Canva (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.36.0 - Canva Pty Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 6.25 - Piriform)
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Dropbox (HKLM-x32\...\Dropbox) (Version: 204.4.5420 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.911.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.73 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{44C34709-F068-4CBC-8A71-515EDBC3B2A6}) (Version: 10.1.18383.8213 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.22.0 - Lenovo Group Ltd.)
Malwarebytes version 5.1.6.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.6.117 - Malwarebytes)
Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - en-us (HKLM\...\Access2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - es-es (HKLM\...\Access2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.74 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - en-us (HKLM\...\Standard2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - es-es (HKLM\...\Standard2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\OneDriveSetup.exe) (Version: 24.141.0714.0002 - Microsoft Corporation)
Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project Profesional 2021 - es-es (HKLM\...\ProjectPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio LTSC Professional 2021 - es-es (HKLM\...\VisioPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28720 (HKLM\...\{CB4A0FDE-1126-4AE2-97C6-A243692C3D95}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28720 (HKLM\...\{DD1EC0FD-3F0A-4740-A05E-1DCD14A6B0D1}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
NVIDIA Controlador de gráficos 462.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{7DD06CA9-7719-4AA5-B778-BF08A8C72C6A}) (Version: 12.12.20 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.2.0 - Panda Security)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.55.3 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\ZoomUMX) (Version: 5.15.11 (21032) - Zoom Video Communications, Inc.)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-23] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt [2024-07-18] (INTEL CORP) [Startup Task]
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-21] (Microsoft Corporation)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20602.609.0_x64__rz1tebttyb220 [2021-06-24] (Dolby Laboratories)
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2024-07-25] (Dropbox Inc.)
Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.19012.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation) [Startup Task]
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-07-05] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-23] (Apple Inc.) [Startup Task]
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-07-16] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-04-03] (LENOVO INC) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Microsoft Jenny (Natural) - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-US.Jenny.1_1.0.8.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.1293.0_x64__8wekyb3d8bbwe [2024-06-03] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-16] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24062.51.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-23] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
PDF X -> C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.3.0_x64__sbe4t8mqwq93a [2024-07-29] (NG PDF Lab) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2021-06-24] (Realtek Semiconductor Corp)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.16.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-07-11] (Microsoft Windows)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\54351\Dropbox [2021-08-20 09:19]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\nvshext.dll [2021-08-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2024-07-22 22:33 - 2024-07-22 22:33 - 000394240 _____ (Google Inc.) [Archivo no firmado] C:\Program Files (x86)\AnyDesk\gcapi.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\54351\Desktop\esetonlinescanner.exe:MBAM.Zone.Identifier [223]
AlternateDataStreams: C:\Users\54351\Desktop\MBSetup.exe:MBAM.Zone.Identifier [145]
AlternateDataStreams: C:\Users\54351\Desktop\rkill.exe:MBAM.Zone.Identifier [133]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 06:14 - 2022-04-12 19:46 - 000000828 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Control Panel\Desktop\\Wallpaper -> D:\Fotos Iphone\Ultimas fotos Iphone\Segunda mitad\PCCI2249.JPG
DNS Servers: 192.168.0.106
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 -> Netwtw10.sys
Ethernet 2: AnchorFree TAP-Windows Adapter V9 -> aftap0901.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys

NNSNAHSL: Network Activity Hook Server LightWeight Filter Driver
netvsc_vfpp: Microsoft NetVsc Failover VF Protocol

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{C6D73A20-F300-4E48-9AD8-A786D9D6DD4D}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{33499D6B-EC70-4B9D-B1CE-DA50EC07C399}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{60A207C7-E822-4F93-A902-9EC3F992189D}] => (Allow) C:\Users\54351\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C009F61D-424D-49C2-BB9D-55A31FD83C86}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Ningún archivo
FirewallRules: [{C37626C7-6B44-4FD9-9C86-F449366C313A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10CED43D-58F7-49B2-AC9C-4B96B7532EB9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CAE6AE9C-8880-4900-8CE2-2F8A604CA289}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4FBA02FA-6DCA-4E38-9E90-521646901486}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D781C84B-9F17-4D0E-8C6C-A4110B9F6B46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D5D6447-DA5D-4FDC-A536-9431BA750ECD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C9EBFF40-E0D8-4E2B-9952-8A2375C712FF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F3670FCF-03B0-474C-98C3-DCB996DB9D21}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{92AE2F08-64E1-42DF-893D-8FEC62C13239}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{12DB5C5C-E184-4FBA-AEF9-3F28FC74693F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{458C52C9-1276-4104-86C3-AFF678845D4C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2104BFE0-C398-43B7-9B66-04E3DC6D6582}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7FCC9FE0-5C24-424B-A04D-95062FFEE1F5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{67935A76-5F57-4FE5-92E5-E222291DEDC1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{84F562FD-A1DD-48C6-9F71-EA944672CC42}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6878F463-045D-41FC-9F09-260605120468}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2E98A507-7DC7-4B15-8204-90C4B427466B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{19A7B768-AB10-421C-BA10-DCE7E14D2E33}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{51C492EA-BA02-4DC6-9A02-15885009B3AD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8F245096-2DED-46D6-9E51-CC562E61FFE1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FB41294E-21CC-4EA0-95AF-B0C2A22F5FF2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EE04BF7A-500C-4428-B114-5B2F899C39EF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CE8F3242-E652-43CC-9506-B67E7728AFE5}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B816698F-70FA-4E7F-97F3-CA0013F3C142}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9D322C8C-897A-4D30-8A83-0F3154431016}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C43033DE-AB21-41ED-B2B3-F7A6D89B8935}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{12E7392E-4DE5-48C5-BA95-9B3A21F8C9A0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C8A2A635-389E-4691-839C-E95F6DA31E66}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F4B45FB7-939C-407B-BA50-734E3A960324}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{37C7FEC2-6B6F-412F-9C60-82756DD170E4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{98CBDE62-6B0D-4030-B515-4A2B74A0AAB3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{7B5A61CB-B941-4A0F-ACE4-C60190C734D3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{2C6B447A-B06C-4071-92D1-A059917D9E76}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{A2F3B75D-93CC-4701-94F8-432F69A83204}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EFFFD87B-CD7B-47D1-8ECF-C4316A9448FC}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{803F579A-2254-4199-9AE9-EC9CB2015C9C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{8B92095E-CFD6-4D78-8285-D4B9A8F899DE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{657D6024-049A-4880-A187-7AA367783774}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{33662C58-5A77-4E4E-ADB0-C16206CB7185}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{80528A9E-BFD1-4BF3-AD77-A421BE10E40F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.124.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3EF0FC54-624C-4B22-8960-E27B723B0FDF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

ATENCIÓN: Restaurar Sistema está deshabilitado (Total:118 GB) (Free:8.14 GB) (7%)

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Universal Device Client Device
Description: Universal Device Client Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (07/29/2024 07:57:28 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 07:57:28 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 07:57:28 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.

Error: (07/29/2024 07:57:28 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 07:57:26 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 12:16:33 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 12:16:33 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (07/29/2024 12:16:33 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.


Errores del sistema:
=============
Error: (07/29/2024 08:02:44 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (07/29/2024 12:36:02 PM) (Source: Schannel) (EventID: 4113) (User: LAPTOP-OPJN8V87)
Description: El certificado recibido del servidor remoto expiró o aún no es válido. Error en la solicitud de conexión TLS. Los datos adjuntos contienen el certificado del servidor. 
 el proceso de cliente SSPI está TeamViewer (PID: 5316).

Error: (07/29/2024 12:35:57 PM) (Source: Schannel) (EventID: 4113) (User: LAPTOP-OPJN8V87)
Description: El certificado recibido del servidor remoto expiró o aún no es válido. Error en la solicitud de conexión TLS. Los datos adjuntos contienen el certificado del servidor. 
 el proceso de cliente SSPI está TeamViewer (PID: 5316).

Error: (07/29/2024 12:21:46 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (07/25/2024 08:03:33 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (07/25/2024 08:02:22 AM) (Source: Schannel) (EventID: 4113) (User: LAPTOP-OPJN8V87)
Description: El certificado recibido del servidor remoto expiró o aún no es válido. Error en la solicitud de conexión TLS. Los datos adjuntos contienen el certificado del servidor. 
 el proceso de cliente SSPI está TeamViewer (PID: 15464).

Error: (07/25/2024 08:02:18 AM) (Source: Schannel) (EventID: 4113) (User: LAPTOP-OPJN8V87)
Description: El certificado recibido del servidor remoto expiró o aún no es válido. Error en la solicitud de conexión TLS. Los datos adjuntos contienen el certificado del servidor. 
 el proceso de cliente SSPI está TeamViewer (PID: 15464).

Error: (07/24/2024 07:38:08 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931


Windows Defender:
================
Date: 2024-05-17 18:11:39
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {646E15CA-6EF2-46E1-8187-1B199EE72DAA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-12 10:46:08
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {3A249362-43FA-45A0-83DC-098D5E6F1F65}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-11 08:22:53
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {5FE391F8-FC99-4D83-8D3B-D774EBC68174}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-10 08:56:56
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {7BFAF7FF-C78B-40AB-B5CC-565C416FE045}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-06 08:25:42
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {0ACA0DA9-61E5-4EEF-9AA4-F6D83D172EF4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

CodeIntegrity:
===============
Date: 2024-07-22 14:22:52
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 

Date: 2024-07-22 13:58:16
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\wscript.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 


==================== Información de la memoria =========================== 

BIOS: LENOVO EGCN34WW 05/18/2021
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i5-10300H CPU @ 2.50GHz
Porcentaje de memoria en uso: 66%
RAM física total: 8059.8 MB
RAM física disponible: 2670.17 MB
Virtual total: 11958.56 MB
Virtual disponible: 5497.35 MB

==================== Unidades ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:8.14 GB) (Model: SAMSUNG MZALQ128HBHQ-000L2) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:863.26 GB) (Model: WDC WD10SPZX-08Z10) NTFS

\\?\Volume{445d065c-579a-4e09-837d-eb754791adb0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.06 GB) NTFS
\\?\Volume{ab06857b-4f8f-4155-a874-23bcacb42ed6}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 53F0087B)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: D0DC65C1)

Partition: GPT.

==================== Final de Addition.txt =======================

Hola buenas @Devora_Chico

Primero de todo mis disculpas por haber tardado tanto en responder. Todo se me complico y bueno… he podido ahora.

PREGUNTAS

He detectado en tu equipo los siguientes antivirus instalados:

Malwarebytes
Panda Dome
Windows Defender

.Todo y que por el log me lo imagino… ¿Pero qué antivirus utilizas actualmente en tu equipo como protección residente? ¿Y qué Firewall?

. ¿Reconoces utilizar, haber instalado o usado en algún momento dado estas interfaces de red virtuales?

Ethernet 2: AnchorFree TAP-Windows Adapter V9 -> aftap0901.sys
NNSNAHSL: Network Activity Hook Server LightWeight Filter Driver
netvsc_vfpp: Microsoft NetVsc Failover VF Protocol

DESINSTALACIÓN PROGRAMAS

También el McAfee Security Scan para ello accedes al siguiente enlace: McAfee Customer Service -- Official Site y te diriges a: Cómo eliminar el software de McAfee de tu PC con Windows y finalmente haces lo indicado en: Opción 2 - Elimínalo con la herramienta de eliminación de productos de consumo de McAfee (MCPR). >> ME COMENTAS COMO HA IDO TODO ESTO.

DESINSTALACIÓN EXTENSIONES

Para las extensiones en que te diga: puedes quitarlas. Hazlo así:

Accedes a Chrome y quitas las extensiones llamadas: McAfee® WebAdvisor >> fheoggkfdfchfphceeifdbepaooicaho.

Ahora debes de hacer una COPIA DE SEGURIDAD DEL REGISTRO, para ello:

• Reinicias el ordenador en Modo Normal.

• Descargas DelFix en tu escritorio.

• Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)

• Marcas solamente la casilla de Create registry backup, el resto te aseguras de que no estén seleccionadas.

• Presionas en Run.

Se abrirá el informe (DelFix.txt), puedes cerrarlo. Pero lo guardas por si en el futuro te lo pido/hace falta.

Seguidamente, CIERRAS TODOS LOS PROGRAMAS, vas a Inicio >> Ejecutar y escribes Notepad.exe

• Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
SystemRestore: On
CREATERESTOREPOINT:
CLOSEPROCESSES:

Unlock: C:\Program Files (x86)\CordPower\IesgPoper
Unlock: C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll

Folder: C:\Program Files (x86)\CordPower\IesgPoper
Folder: C:\Program Files (x86)\CordPower
Folder: C:\Users\54351\AppData\Roaming\Microsoft\MMC
Folder: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6

File: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip;C:\Program Files (x86)\AnyDesk\gcapi.dll;C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json;C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
VirusScan: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip;C:\Program Files (x86)\AnyDesk\gcapi.dll;C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json;C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json

(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [TeamViewerMeeting] => "C:\Users\54351\AppData\Roaming\TeamViewerMeeting\TeamViewerMeeting.exe" --Minimize (Ningún archivo)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-07-16]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Ningún archivo)
GroupPolicyScripts: Restricción <==== ATENCIÓN
Task: {0D4BE8DF-7A6C-4556-BFF6-83F41962C96A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {10FAB8E1-885D-4328-93E8-54089AADD146} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {224DADA5-0C30-4DDB-9FB8-6CC41B8523D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {48A6236C-022F-40AD-A34F-1871B3123A5C} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {4CD47085-F11A-4C42-8738-D9A584A164F2} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {50CF7C23-FC25-4A27-A5A9-661D33EDB2DF} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {72E16DAA-ACB5-48EA-8A66-FAD27477C18A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {87BF85F4-2CE1-4160-96EA-52F554AA28A2} - \Microsoft\Windows\Autochk\Proxy -> Ningún archivo <==== ATENCIÓN
Task: {BD30B767-86C3-4867-8DDE-468207782635} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {C661AE01-550D-4233-913F-543357C83373} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E6899FA9-00C1-45BA-AB9E-34FB24256739} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {EB097344-4802-4DB0-9D64-9F1D5F7204D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {ED09E48A-76B5-43B4-8576-218C0ACBFDF8} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {83818374-B534-4E63-9727-48F9039376C4} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (Ningún archivo)
Task: {7C8C9FC8-610B-4EAA-B575-E10739E16DE7} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADupdater.exe  (Ningún archivo)
Task: {A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136} - System32\Tasks\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\CordPower\IesgPoper\"C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll" /U /silent
Tcpip\..\Interfaces\{7ee2d9e7-a1a0-4e44-bc1e-a464b034a1e5}: [DhcpNameServer] 150.215.1.2
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2024-07-11 07:49 - 2024-07-11 07:51 - 000000000 ___HD C:\$WinREAgent
AlternateDataStreams: C:\Users\54351\Desktop\esetonlinescanner.exe:MBAM.Zone.Identifier [223]
AlternateDataStreams: C:\Users\54351\Desktop\MBSetup.exe:MBAM.Zone.Identifier [145]
AlternateDataStreams: C:\Users\54351\Desktop\rkill.exe:MBAM.Zone.Identifier [133]
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
2019-12-07 06:14 - 2022-04-12 19:46 - 000000828 _____ C:\WINDOWS\system32\drivers\etc\hosts
FirewallRules: [{C009F61D-424D-49C2-BB9D-55A31FD83C86}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Ningún archivo
FirewallRules: [{F3670FCF-03B0-474C-98C3-DCB996DB9D21}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{92AE2F08-64E1-42DF-893D-8FEC62C13239}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
C:\Program Files\Common Files\McAfee
C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END

Lo guardas con el nombre de FIXLIST.TXT en tu escritorio (MUY IMPORTANTE). Pues en caso contrario no funcionará el SCRIPT, ambos ficheros (FRST.exe y FIXLIST.TXT) y deben de estar en la ubicación del ESCRITORIO.

El anterior Script de reparación es personalizado para la máquina en concreto para la cual se fabricó y está hecho específicamente por un miembro del Staff. Si se tiene un problema parecido, por favor abra su propio tema para recibir ayuda personalizada y específica. Utilizar Scripts de otros Sistemas puede causar daños graves en su ordenador.

Finalmente (OJO, en MODO NORMAL):

1. Ejecutas nuevamente FRST.exe (Si usas Windows Vista/7/8 o 10, presiona clic derecho y selecciona - Ejecutar como Administrador).

2. Presionas sobre Fix/Corregir y esperas a que finalice el proceso. No hagas nada con el PC mientras este realizando dichas reparaciones, incluso si parece ser que se ha quedado colgado. No lo toques y esperas.

3. Cunado finalicé, en el ESCRITORIO se creará el fichero FIXLOG.TXT lo traes en tu próxima respuesta.

4. Reinicias el ordenador en Modo Normal, compruebas durante un rato el funcionamiento de este y comentas como sigue el problema inicialmente planteado.

Muy Importante Coloca el reporte que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Salu2.

Sigamos @Devora_Chico pues…

Inicias el ordenador en Modo Seguro.

Seguidamente, TE ASEGURAS DE QUE TODOS LOS PROGRAMAS ESTÉN CERRADOS, vas a Inicio >> Ejecutar y escribes Notepad.exe

• Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

START
CMD: sfc /scannow
CMD: findstr /c:"[SR]" %windir%\logs\cbs\cbs.log > "%userprofile%\desktop\sfcdetails.txt"

END

Lo guardas con el nombre de FIXLIST.TXT en tu escritorio (MUY IMPORTANTE). Pues en caso contrario no funcionará el SCRIPT, ambos ficheros (FRST.exe y FIXLIST.TXT ) y deben de estar en la ubicación del ESCRITORIO.

El anterior Script de reparación es personalizado para la máquina en concreto para la cual se fabricó y está hecho específicamente por un miembro del Staff. Si se tiene un problema parecido, por favor abra su propio tema para recibir ayuda personalizada y específica. Utilizar Scripts de otros Sistemas puede causar daños graves en su ordenador.

Finalmente (OJO, en MODO NORMAL):

1. Ejecutas nuevamente FRST.exe (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador).

2. Presionas sobre Fix/Corregir y esperas a que finalice el proceso. No hagas nada con el PC mientras este realizando dichas reparaciones, incluso si parece ser que se ha quedado colgado. No lo toques y esperas.

3. Cunado finalice, en el ESCRITORIO se creará el fichero FIXLOG.TXT lo traes en tu próxima respuesta.

4. Reinicias el ordenador en Modo Normal y traes el reporte (FIXLOG.TXT). También necesitaré el log que se encuentra en: %userprofile%\desktop\sfcdetails.txt.

Muy Importante Coloca el reporte que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Salu2.

Buenas tardes, muchas gracias por su tiempo.

Primero el Antivirus que utilizo es el Panda y el Windows defender como firewall.

0.1: No reconozco haber instalado ninguno de los programas que mencionas.

2: La desinstalación del McAfee la realicé con exito. No así las extensiones de Chrome que no las pude encontrar como instaladas.

La PC parece estar funcionando mucho mejor luego de los fix del FRST. Te adjunto ambos FIXLOGS aquí. Muchas gracias!!

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 02-08.2024
Ejecutado por 54351 (04-08-2024 15:32:38) Run:1
Ejecutado desde C:\Users\54351\Desktop
Perfiles cargados: 54351
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
START
SystemRestore: On
CREATERESTOREPOINT:
CLOSEPROCESSES:

Unlock: C:\Program Files (x86)\CordPower\IesgPoper
Unlock: C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll

Folder: C:\Program Files (x86)\CordPower\IesgPoper
Folder: C:\Program Files (x86)\CordPower
Folder: C:\Users\54351\AppData\Roaming\Microsoft\MMC
Folder: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6

File: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip;C:\Program Files (x86)\AnyDesk\gcapi.dll;C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json;C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
VirusScan: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip;C:\Program Files (x86)\AnyDesk\gcapi.dll;C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json;C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json

(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [TeamViewerMeeting] => "C:\Users\54351\AppData\Roaming\TeamViewerMeeting\TeamViewerMeeting.exe" --Minimize (Ningún archivo)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-07-16]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Ningún archivo)
GroupPolicyScripts: Restricción <==== ATENCIÓN
Task: {0D4BE8DF-7A6C-4556-BFF6-83F41962C96A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {10FAB8E1-885D-4328-93E8-54089AADD146} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {224DADA5-0C30-4DDB-9FB8-6CC41B8523D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {48A6236C-022F-40AD-A34F-1871B3123A5C} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {4CD47085-F11A-4C42-8738-D9A584A164F2} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {50CF7C23-FC25-4A27-A5A9-661D33EDB2DF} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {72E16DAA-ACB5-48EA-8A66-FAD27477C18A} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {87BF85F4-2CE1-4160-96EA-52F554AA28A2} - \Microsoft\Windows\Autochk\Proxy -> Ningún archivo <==== ATENCIÓN
Task: {BD30B767-86C3-4867-8DDE-468207782635} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {C661AE01-550D-4233-913F-543357C83373} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {E6899FA9-00C1-45BA-AB9E-34FB24256739} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {EB097344-4802-4DB0-9D64-9F1D5F7204D5} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {ED09E48A-76B5-43B4-8576-218C0ACBFDF8} - no ruta de acceso de archivo. <==== ATENCIÓN
Task: {83818374-B534-4E63-9727-48F9039376C4} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (Ningún archivo)
Task: {7C8C9FC8-610B-4EAA-B575-E10739E16DE7} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADupdater.exe  (Ningún archivo)
Task: {A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136} - System32\Tasks\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\CordPower\IesgPoper\"C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll" /U /silent
Tcpip\..\Interfaces\{7ee2d9e7-a1a0-4e44-bc1e-a464b034a1e5}: [DhcpNameServer] 150.215.1.2
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2024-07-11 07:49 - 2024-07-11 07:51 - 000000000 ___HD C:\$WinREAgent
AlternateDataStreams: C:\Users\54351\Desktop\esetonlinescanner.exe:MBAM.Zone.Identifier [223]
AlternateDataStreams: C:\Users\54351\Desktop\MBSetup.exe:MBAM.Zone.Identifier [145]
AlternateDataStreams: C:\Users\54351\Desktop\rkill.exe:MBAM.Zone.Identifier [133]
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
2019-12-07 06:14 - 2022-04-12 19:46 - 000000828 _____ C:\WINDOWS\system32\drivers\etc\hosts
FirewallRules: [{C009F61D-424D-49C2-BB9D-55A31FD83C86}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Ningún archivo
FirewallRules: [{F3670FCF-03B0-474C-98C3-DCB996DB9D21}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
FirewallRules: [{92AE2F08-64E1-42DF-893D-8FEC62C13239}] => (Allow) C:\Users\54351\AppData\Roaming\uTorrent\uTorrent.exe => Ningún archivo
C:\Program Files\Common Files\McAfee
C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

SystemRestore: On => Error -> 6%
CreateRestorePoint: Error(1=6%) -> Error al crear un punto de restauración.
Procesos cerrados correctamente.
"C:\Program Files (x86)\CordPower\IesgPoper" => fue desbloqueado
"C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll" => fue desbloqueado

========================= Folder: C:\Program Files (x86)\CordPower\IesgPoper ========================

2024-03-04 20:12 - 2024-01-17 15:13 - 003080192 ____A [19D0B5B83EF1614BFF40E5F8F1028D66] () [Archivo no firmado] C:\Program Files (x86)\CordPower\IesgPoper\AAD.Core.dll
2024-03-04 20:12 - 2024-01-17 15:13 - 004452121 ____A [24801EB2E46BF9B588ABC1D6026D3748] () C:\Program Files (x86)\CordPower\IesgPoper\CbsPersist_20240710214906.cab
2024-03-04 20:12 - 2024-01-17 15:13 - 018891462 ____A [E396BA1B7CF4556714274450FFC72C75] () C:\Program Files (x86)\CordPower\IesgPoper\CbsPersist_20240711110655.log
2024-03-04 20:12 - 2024-01-17 15:13 - 000149504 ____A [033894A07B843C21DC0706E4B2655E74] () [Archivo no firmado] C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll
2024-03-04 20:12 - 2024-01-17 15:13 - 000001570 ____A [CA4E8FE5956898C6ED674088EC979E70] () C:\Program Files (x86)\CordPower\IesgPoper\ddsm7windoerf.hm
2024-03-04 20:12 - 2024-01-17 15:13 - 014238691 ____A [E87FA1BB02AE36A4C441C983ED655865] () C:\Program Files (x86)\CordPower\IesgPoper\dism.log
2024-03-04 20:12 - 2024-01-17 15:13 - 009248144 ____A [429A6C0A0BB195DC015225400FBAB18F] (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\CordPower\IesgPoper\Dropbox.exe
2024-03-04 20:12 - 2024-01-17 15:13 - 012666902 ____A [3FAB62FEA7ED01B531AE07FCFDBEE447] () C:\Program Files (x86)\CordPower\IesgPoper\PFRO.log
2024-03-04 20:12 - 2024-01-17 15:13 - 058523648 ____A [6B0AD9C6061E8658852A418CBD1B5A29] () C:\Program Files (x86)\CordPower\IesgPoper\pliolyFparhm.stm
2024-03-04 20:12 - 2024-01-17 15:13 - 002060809 ____A [AFE5D10ACE8D207E6B282C2AE4746D40] () C:\Program Files (x86)\CordPower\IesgPoper\RNBBGuritlkAulw32.lv
2024-03-04 20:12 - 2024-01-17 15:13 - 022447306 ____A [89C865067ABA3CF319265BA344080AF2] () C:\Program Files (x86)\CordPower\IesgPoper\Sessions.back.xml
2024-03-04 20:12 - 2024-01-17 15:13 - 003472585 ____A [512C5BC5215D83D46648AAF15735706B] () C:\Program Files (x86)\CordPower\IesgPoper\Sessions.xml
2024-03-04 20:12 - 2024-01-17 15:13 - 000000000 ____A [D41D8CD98F00B204E9800998ECF8427E] () C:\Program Files (x86)\CordPower\IesgPoper\TOUuntiaeYr3232.th

====== Final de Folder: ======


========================= Folder: C:\Program Files (x86)\CordPower ========================

2024-03-04 20:12 - 2024-01-17 15:13 - 001815275 ____A [4829822D95F8E5C76E3976FA0CB4146D] () C:\Program Files (x86)\CordPower\APPRAISER_TelemetryBaseline_NI23H2.bin
2024-03-04 20:12 - 2024-01-17 15:13 - 001264432 ____A [642F4233003B1B7230936AA4E5C7690D] () C:\Program Files (x86)\CordPower\APPRAISER_TelemetryBaseline_UNV.bin
2024-03-04 20:12 - 2024-01-17 15:13 - 001045960 ____A [559E2C661BDA0DF1442C897454FC98A2] () C:\Program Files (x86)\CordPower\arial.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 001681220 ____A [D2A2BD08CDFCA017C1439B2021604ED7] () C:\Program Files (x86)\CordPower\calibri.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 001471248 ____A [DCDA31A1BB37E6813EB9D3E2712F20FF] () C:\Program Files (x86)\CordPower\calibril.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 001092612 ____A [604C8772CDEE53166DE6E26114DACF54] () C:\Program Files (x86)\CordPower\calibrili.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 001190004 ____A [8F98BBE5693AF41DD162CA01F1AA7E0B] () C:\Program Files (x86)\CordPower\calibriz.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 000841440 ____A [0A84110497CEF2DB12947CE798071DB7] () C:\Program Files (x86)\CordPower\cambriab.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 000892620 ____A [A68F2038B179D4FC695FF5558D0DDFA6] () C:\Program Files (x86)\CordPower\cambriai.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 002284973 ____A [56DF2A43B12416D9A00DB50A4D12F05D] () C:\Program Files (x86)\CordPower\CBS.log
2024-03-04 20:12 - 2024-01-17 15:13 - 001606818 ____A [F360E8BFB0AA5CA7F7C236089FC3169E] () C:\Program Files (x86)\CordPower\CbsPersist_20240710214906.cab
2024-03-04 20:12 - 2024-01-17 15:13 - 001704587 ____A [54A9B05E02C5506C8D74077724AD5A79] () C:\Program Files (x86)\CordPower\CbsPersist_20240711110655.log
2024-03-04 20:12 - 2024-01-17 15:13 - 000805244 ____A [69A8F2205DB42688F843D7CF7CC735B6] () C:\Program Files (x86)\CordPower\courbd.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 001082056 ____A [9679D1C91AEED37125D86B4A46B499B9] () C:\Program Files (x86)\CordPower\dism.log
2024-03-04 20:12 - 2024-01-17 15:13 - 000921480 ____A [28C7B51F49F109501604BF565C5DD8D8] () C:\Program Files (x86)\CordPower\ebrima.ttf
2024-03-04 20:12 - 2024-01-17 15:13 - 000344579 ____A [234A2E714FB2B9AFD0132817483B4FB2] () C:\Program Files (x86)\CordPower\es-es.log
2024-03-04 20:12 - 2024-01-17 15:13 - 001271561 ____A [3B83A0C455CE5EBE5665D3EACE71B6B0] () C:\Program Files (x86)\CordPower\Microsoft.BingSearch_8wekyb3d8bbwe.msixbundle
2024-03-04 20:12 - 2024-01-17 15:13 - 001644572 ____A [05B59FEBDBBFA68115C454637FF7CD28] () C:\Program Files (x86)\CordPower\Microsoft.StartExperiencesApp_8wekyb3d8bbwe.msixbundle
2024-03-04 20:12 - 2024-01-17 15:13 - 000780880 ____A [8042D19C91F2A32EEEFAE7533C344177] () C:\Program Files (x86)\CordPower\windows.uif_ondemand.xml
2024-03-04 20:12 - 2024-03-04 20:12 - 000000000 _RSHD [00000000000000000000000000000000] C:\Program Files (x86)\CordPower\IesgPoper
2024-03-04 20:12 - 2024-01-17 15:13 - 003080192 ____A [19D0B5B83EF1614BFF40E5F8F1028D66] () [Archivo no firmado] C:\Program Files (x86)\CordPower\IesgPoper\AAD.Core.dll
2024-03-04 20:12 - 2024-01-17 15:13 - 004452121 ____A [24801EB2E46BF9B588ABC1D6026D3748] () C:\Program Files (x86)\CordPower\IesgPoper\CbsPersist_20240710214906.cab
2024-03-04 20:12 - 2024-01-17 15:13 - 018891462 ____A [E396BA1B7CF4556714274450FFC72C75] () C:\Program Files (x86)\CordPower\IesgPoper\CbsPersist_20240711110655.log
2024-03-04 20:12 - 2024-01-17 15:13 - 000149504 ____A [033894A07B843C21DC0706E4B2655E74] () [Archivo no firmado] C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll
2024-03-04 20:12 - 2024-01-17 15:13 - 000001570 ____A [CA4E8FE5956898C6ED674088EC979E70] () C:\Program Files (x86)\CordPower\IesgPoper\ddsm7windoerf.hm
2024-03-04 20:12 - 2024-01-17 15:13 - 014238691 ____A [E87FA1BB02AE36A4C441C983ED655865] () C:\Program Files (x86)\CordPower\IesgPoper\dism.log
2024-03-04 20:12 - 2024-01-17 15:13 - 009248144 ____A [429A6C0A0BB195DC015225400FBAB18F] (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\CordPower\IesgPoper\Dropbox.exe
2024-03-04 20:12 - 2024-01-17 15:13 - 012666902 ____A [3FAB62FEA7ED01B531AE07FCFDBEE447] () C:\Program Files (x86)\CordPower\IesgPoper\PFRO.log
2024-03-04 20:12 - 2024-01-17 15:13 - 058523648 ____A [6B0AD9C6061E8658852A418CBD1B5A29] () C:\Program Files (x86)\CordPower\IesgPoper\pliolyFparhm.stm
2024-03-04 20:12 - 2024-01-17 15:13 - 002060809 ____A [AFE5D10ACE8D207E6B282C2AE4746D40] () C:\Program Files (x86)\CordPower\IesgPoper\RNBBGuritlkAulw32.lv
2024-03-04 20:12 - 2024-01-17 15:13 - 022447306 ____A [89C865067ABA3CF319265BA344080AF2] () C:\Program Files (x86)\CordPower\IesgPoper\Sessions.back.xml
2024-03-04 20:12 - 2024-01-17 15:13 - 003472585 ____A [512C5BC5215D83D46648AAF15735706B] () C:\Program Files (x86)\CordPower\IesgPoper\Sessions.xml
2024-03-04 20:12 - 2024-01-17 15:13 - 000000000 ____A [D41D8CD98F00B204E9800998ECF8427E] () C:\Program Files (x86)\CordPower\IesgPoper\TOUuntiaeYr3232.th

====== Final de Folder: ======


========================= Folder: C:\Users\54351\AppData\Roaming\Microsoft\MMC ========================

2024-07-21 12:24 - 2024-07-21 12:24 - 000139777 ____A [739C6CA24EF960EEDA5BAA3606F01B5C] () C:\Users\54351\AppData\Roaming\Microsoft\MMC\eventvwr
2024-07-21 12:17 - 2024-07-21 12:17 - 000093538 ____A [65D976EC7F79E7C9DFD1B5375E2BF124] () C:\Users\54351\AppData\Roaming\Microsoft\MMC\services

====== Final de Folder: ======


========================= Folder: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6 ========================

2024-07-17 08:29 - 2024-07-17 08:31 - 000000000 ____D [00000000000000000000000000000000] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor
2020-12-27 15:14 - 2024-07-17 08:29 - 000145920 ____A [F17BE368ADE3F7CFBB6AA9DD734CE328] () [Archivo no firmado] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\Aga.Controls.dll
2016-11-06 10:59 - 2024-07-17 08:29 - 000028155 ____A [56E35FD2E011977C42260637515E7E6A] () C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\License.html
2024-07-17 08:31 - 2024-07-17 08:31 - 000014874 ____A [8BEE762EE6E2E070C3393FF8D3FFA155] () C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.config
2020-12-27 15:45 - 2024-07-17 08:29 - 000493568 ____A [A261F824AB957A5331AF53C7722FA2DE] () [Archivo no firmado] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.exe
2020-12-27 15:45 - 2024-07-17 08:29 - 000311808 ____A [84F1D429196CC4E89D22B2652E65F669] () [Archivo no firmado] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitorLib.dll
2020-12-27 15:14 - 2024-07-17 08:29 - 000305152 ____A [F07E485AB092D993A4B2BFBABF6B1D75] (OxyPlot) [Archivo no firmado] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OxyPlot.dll
2020-12-27 15:14 - 2024-07-17 08:29 - 000021504 ____A [689121CA3540A36B3829FD887635756F] (OxyPlot) [Archivo no firmado] C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OxyPlot.WindowsForms.dll

====== Final de Folder: ======


========================= File: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip;C:\Program Files (x86)\AnyDesk\gcapi.dll;C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json;C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json ========================

C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip
Archivo no firmado
MD5: 6F649C4615A01A4911283F2FECC00211
Fecha de creación y modificación: 2024-07-17 08:29 - 2024-07-17 08:29
Tamaño: 000503277
Atributos: ----A
Nombre de la compañía: 
Interno Nombre: 
Original Nombre: 
Producto: 
Descripción: 
Archivo Versión: 
Producto Versión: 
Copyright: 
Virusscan: https://virusscan.jotti.org/filescanjob/pixis9y6md

"C:\Program Files (x86)\AnyDesk\gcapi.dll" => no encontrado
C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
Catalog: C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04~31bf3856ad364e35~amd64~~10.0.22621.3880.cat
El archivo está firmado digitalmente
MD5: E1BA250FB674EA9212F6C797CB37AAD5
Fecha de creación y modificación: 2024-07-11 07:54 - 2024-07-11 07:54
Tamaño: 000025684
Atributos: ----A
Nombre de la compañía: Microsoft Windows -> 
Interno Nombre: 
Original Nombre: 
Producto: 
Descripción: 
Archivo Versión: 
Producto Versión: 
Copyright: 
Virusscan: https://virusscan.jotti.org/filescanjob/eoz6qve83e

C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
Catalog: C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04~31bf3856ad364e35~amd64~~10.0.22621.3880.cat
El archivo está firmado digitalmente
MD5: E1BA250FB674EA9212F6C797CB37AAD5
Fecha de creación y modificación: 2024-07-11 07:53 - 2024-07-11 07:53
Tamaño: 000025684
Atributos: ----A
Nombre de la compañía: Microsoft Windows -> 
Interno Nombre: 
Original Nombre: 
Producto: 
Descripción: 
Archivo Versión: 
Producto Versión: 
Copyright: 
Virusscan: https://virusscan.jotti.org/filescanjob/eoz6qve83e

====== Final de File: ======

Virusscan: C:\Users\54351\Desktop\openhardwaremonitor-v0.9.6.zip => https://virusscan.jotti.org/filescanjob/pixis9y6md
"Virusscan: C:\Program Files (x86)\AnyDesk\gcapi.dll" => no encontrado
Virusscan: C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json => https://virusscan.jotti.org/filescanjob/eoz6qve83e
Virusscan: C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json => https://virusscan.jotti.org/filescanjob/eoz6qve83e
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe => No se encontró ningún proceso en ejecución
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center => eliminado correctamente
"HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Windows\CurrentVersion\Run\\TeamViewerMeeting" => eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk => movido correctamente
"ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Ningún archivo)" => no encontrado

"C:\WINDOWS\system32\GroupPolicy\Machine" Carpeta mover:

C:\WINDOWS\system32\GroupPolicy\Machine => movido correctamente
C:\WINDOWS\system32\GroupPolicy\GPT.ini => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0D4BE8DF-7A6C-4556-BFF6-83F41962C96A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D4BE8DF-7A6C-4556-BFF6-83F41962C96A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10FAB8E1-885D-4328-93E8-54089AADD146}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10FAB8E1-885D-4328-93E8-54089AADD146}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{224DADA5-0C30-4DDB-9FB8-6CC41B8523D5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{224DADA5-0C30-4DDB-9FB8-6CC41B8523D5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48A6236C-022F-40AD-A34F-1871B3123A5C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48A6236C-022F-40AD-A34F-1871B3123A5C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4CD47085-F11A-4C42-8738-D9A584A164F2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CD47085-F11A-4C42-8738-D9A584A164F2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{50CF7C23-FC25-4A27-A5A9-661D33EDB2DF}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50CF7C23-FC25-4A27-A5A9-661D33EDB2DF}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{72E16DAA-ACB5-48EA-8A66-FAD27477C18A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72E16DAA-ACB5-48EA-8A66-FAD27477C18A}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{87BF85F4-2CE1-4160-96EA-52F554AA28A2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87BF85F4-2CE1-4160-96EA-52F554AA28A2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Autochk\Proxy" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD30B767-86C3-4867-8DDE-468207782635}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD30B767-86C3-4867-8DDE-468207782635}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C661AE01-550D-4233-913F-543357C83373}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C661AE01-550D-4233-913F-543357C83373}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6899FA9-00C1-45BA-AB9E-34FB24256739}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6899FA9-00C1-45BA-AB9E-34FB24256739}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EB097344-4802-4DB0-9D64-9F1D5F7204D5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB097344-4802-4DB0-9D64-9F1D5F7204D5}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED09E48A-76B5-43B4-8576-218C0ACBFDF8}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED09E48A-76B5-43B4-8576-218C0ACBFDF8}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{83818374-B534-4E63-9727-48F9039376C4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83818374-B534-4E63-9727-48F9039376C4}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\NotificationCenter" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C8C9FC8-610B-4EAA-B575-E10739E16DE7}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C8C9FC8-610B-4EAA-B575-E10739E16DE7}" => eliminado correctamente
"C:\WINDOWS\System32\Tasks\McAfee\DAD.Execute.Updates" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\DAD.Execute.Updates" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1A2A969-BB2D-4ACA-95E6-FC7B6C9CD136}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\DiskCleanup\Iardcrzyjfsv" => eliminado correctamente
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7ee2d9e7-a1a0-4e44-bc1e-a464b034a1e5}\\DhcpNameServer" => eliminado correctamente
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23] => Error: Ninguna corrección automática encontrada para esta entrada.
HKLM\System\CurrentControlSet\Services\uhssvc => eliminado correctamente
uhssvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\WinSetupMon => eliminado correctamente
WinSetupMon => servicio eliminado correctamente

"C:\$WinREAgent" Carpeta mover:

C:\$WinREAgent => movido correctamente
C:\Users\54351\Desktop\esetonlinescanner.exe => ":MBAM.Zone.Identifier" ADS eliminado correctamente
C:\Users\54351\Desktop\MBSetup.exe => ":MBAM.Zone.Identifier" ADS eliminado correctamente
C:\Users\54351\Desktop\rkill.exe => ":MBAM.Zone.Identifier" ADS eliminado correctamente
"HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => eliminado correctamente
C:\WINDOWS\system32\drivers\etc\hosts => movido correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C009F61D-424D-49C2-BB9D-55A31FD83C86}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F3670FCF-03B0-474C-98C3-DCB996DB9D21}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92AE2F08-64E1-42DF-893D-8FEC62C13239}" => eliminado correctamente
"C:\Program Files\Common Files\McAfee" => no encontrado
C:\Program Files (x86)\CordPower\IesgPoper\ccsgm5Web5Excmsn.dll => movido correctamente

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 3 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 12 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Ethernet 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 12:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Ethernet 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::b1f9:d4:fa64:7bc3%18
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.105
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {35B00CF4-FBA6-4D59-96B6-FAB1C32F4F1C}.
0 out of 1 jobs canceled.


========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.



========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar



========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar



========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.



========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.



========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

Hosts restaurado correctamente.

=========== EmptyTemp: ==========

FlushDNS => completado
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20103319 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 10703425 B
Edge => 0 B
Chrome => 1272961334 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 61756 B
NetworkService => 61756 B
54351 => 199237181 B

RecycleBin => 49152 B
EmptyTemp: => 1.4 GB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 15:34:15 ====

Segundo FIXLOG.txt

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 02-08.2024
Ejecutado por 54351 (04-08-2024 15:38:37) Run:2
Ejecutado desde C:\Users\54351\Desktop
Perfiles cargados: 54351
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
START
CMD: sfc /scannow
CMD: findstr /c:"[SR]" %windir%\logs\cbs\cbs.log > "%userprofile%\desktop\sfcdetails.txt"

END
*****************


========= sfc /scannow =========


Iniciando examen en el sistema. Este proceso tardará algún tiempo.

Iniciando la fase de comprobación del examen del sistema.

Se completó la comprobación de 0%.
Se completó la comprobación de 1%.
Se completó la comprobación de 1%.
Se completó la comprobación de 2%.
Se completó la comprobación de 2%.
Se completó la comprobación de 3%.
Se completó la comprobación de 3%.
Se completó la comprobación de 4%.
Se completó la comprobación de 4%.
Se completó la comprobación de 5%.
Se completó la comprobación de 5%.
Se completó la comprobación de 6%.
Se completó la comprobación de 6%.
Se completó la comprobación de 7%.
Se completó la comprobación de 7%.
Se completó la comprobación de 8%.
Se completó la comprobación de 9%.
Se completó la comprobación de 9%.
Se completó la comprobación de 10%.
Se completó la comprobación de 10%.
Se completó la comprobación de 11%.
Se completó la comprobación de 11%.
Se completó la comprobación de 12%.
Se completó la comprobación de 12%.
Se completó la comprobación de 13%.
Se completó la comprobación de 13%.
Se completó la comprobación de 14%.
Se completó la comprobación de 14%.
Se completó la comprobación de 15%.
Se completó la comprobación de 15%.
Se completó la comprobación de 16%.
Se completó la comprobación de 16%.
Se completó la comprobación de 17%.
Se completó la comprobación de 18%.
Se completó la comprobación de 18%.
Se completó la comprobación de 19%.
Se completó la comprobación de 19%.
Se completó la comprobación de 20%.
Se completó la comprobación de 20%.
Se completó la comprobación de 21%.
Se completó la comprobación de 21%.
Se completó la comprobación de 22%.
Se completó la comprobación de 22%.
Se completó la comprobación de 23%.
Se completó la comprobación de 23%.
Se completó la comprobación de 24%.
Se completó la comprobación de 24%.
Se completó la comprobación de 25%.
Se completó la comprobación de 26%.
Se completó la comprobación de 26%.
Se completó la comprobación de 27%.
Se completó la comprobación de 27%.
Se completó la comprobación de 28%.
Se completó la comprobación de 28%.
Se completó la comprobación de 29%.
Se completó la comprobación de 29%.
Se completó la comprobación de 30%.
Se completó la comprobación de 30%.
Se completó la comprobación de 31%.
Se completó la comprobación de 31%.
Se completó la comprobación de 32%.
Se completó la comprobación de 32%.
Se completó la comprobación de 33%.
Se completó la comprobación de 33%.
Se completó la comprobación de 34%.
Se completó la comprobación de 35%.
Se completó la comprobación de 35%.
Se completó la comprobación de 36%.
Se completó la comprobación de 36%.
Se completó la comprobación de 37%.
Se completó la comprobación de 37%.
Se completó la comprobación de 38%.
Se completó la comprobación de 38%.
Se completó la comprobación de 39%.
Se completó la comprobación de 39%.
Se completó la comprobación de 40%.
Se completó la comprobación de 40%.
Se completó la comprobación de 41%.
Se completó la comprobación de 41%.
Se completó la comprobación de 42%.
Se completó la comprobación de 43%.
Se completó la comprobación de 43%.
Se completó la comprobación de 44%.
Se completó la comprobación de 44%.
Se completó la comprobación de 45%.
Se completó la comprobación de 45%.
Se completó la comprobación de 46%.
Se completó la comprobación de 46%.
Se completó la comprobación de 47%.
Se completó la comprobación de 47%.
Se completó la comprobación de 48%.
Se completó la comprobación de 48%.
Se completó la comprobación de 49%.
Se completó la comprobación de 49%.
Se completó la comprobación de 50%.
Se completó la comprobación de 50%.
Se completó la comprobación de 51%.
Se completó la comprobación de 52%.
Se completó la comprobación de 52%.
Se completó la comprobación de 53%.
Se completó la comprobación de 53%.
Se completó la comprobación de 54%.
Se completó la comprobación de 54%.
Se completó la comprobación de 55%.
Se completó la comprobación de 55%.
Se completó la comprobación de 56%.
Se completó la comprobación de 56%.
Se completó la comprobación de 57%.
Se completó la comprobación de 57%.
Se completó la comprobación de 58%.
Se completó la comprobación de 58%.
Se completó la comprobación de 59%.
Se completó la comprobación de 60%.
Se completó la comprobación de 60%.
Se completó la comprobación de 61%.
Se completó la comprobación de 61%.
Se completó la comprobación de 62%.
Se completó la comprobación de 62%.
Se completó la comprobación de 63%.
Se completó la comprobación de 63%.
Se completó la comprobación de 64%.
Se completó la comprobación de 64%.
Se completó la comprobación de 65%.
Se completó la comprobación de 65%.
Se completó la comprobación de 66%.
Se completó la comprobación de 66%.
Se completó la comprobación de 67%.
Se completó la comprobación de 67%.
Se completó la comprobación de 68%.
Se completó la comprobación de 69%.
Se completó la comprobación de 69%.
Se completó la comprobación de 70%.
Se completó la comprobación de 70%.
Se completó la comprobación de 71%.
Se completó la comprobación de 71%.
Se completó la comprobación de 72%.
Se completó la comprobación de 72%.
Se completó la comprobación de 73%.
Se completó la comprobación de 73%.
Se completó la comprobación de 74%.
Se completó la comprobación de 74%.
Se completó la comprobación de 75%.
Se completó la comprobación de 75%.
Se completó la comprobación de 76%.
Se completó la comprobación de 77%.
Se completó la comprobación de 77%.
Se completó la comprobación de 78%.
Se completó la comprobación de 78%.
Se completó la comprobación de 79%.
Se completó la comprobación de 79%.
Se completó la comprobación de 80%.
Se completó la comprobación de 80%.
Se completó la comprobación de 81%.
Se completó la comprobación de 81%.
Se completó la comprobación de 82%.
Se completó la comprobación de 82%.
Se completó la comprobación de 83%.
Se completó la comprobación de 83%.
Se completó la comprobación de 84%.
Se completó la comprobación de 84%.
Se completó la comprobación de 85%.
Se completó la comprobación de 86%.
Se completó la comprobación de 86%.
Se completó la comprobación de 87%.
Se completó la comprobación de 87%.
Se completó la comprobación de 88%.
Se completó la comprobación de 88%.
Se completó la comprobación de 89%.
Se completó la comprobación de 89%.
Se completó la comprobación de 90%.
Se completó la comprobación de 90%.
Se completó la comprobación de 91%.
Se completó la comprobación de 91%.
Se completó la comprobación de 92%.
Se completó la comprobación de 92%.
Se completó la comprobación de 93%.
Se completó la comprobación de 93%.
Se completó la comprobación de 94%.
Se completó la comprobación de 95%.
Se completó la comprobación de 95%.
Se completó la comprobación de 96%.
Se completó la comprobación de 96%.
Se completó la comprobación de 97%.
Se completó la comprobación de 97%.
Se completó la comprobación de 98%.
Se completó la comprobación de 98%.
Se completó la comprobación de 99%.
Se completó la comprobación de 99%.
Se completó la comprobación de 100%.

Protección de recursos de Windows encontró archivos dañados y los reparó correctamente.
Para las reparaciones en línea, los detalles se encuentran en el archivo de registro de CBS ubicado en
windir\Logs\CBS\CBS.log. Por ejemplo, C:\Windows\Logs\CBS\CBS.log. Para las reparaciones
sin conexión, los detalles se encuentran en el archivo de registro que proporciona la marca /OFFLOGFILE.


========= Final de CMD: =========


========= findstr /c:"[SR]" %windir%\logs\cbs\cbs.log > "%userprofile%\desktop\sfcdetails.txt" =========


========= Final de CMD: =========


==== Final de Fixlog 15:42:37 ====

sfcdetails.txt:

2024-08-04 15:38:43, Info                  CSI    00000006 [SR] Verifying 100 components
2024-08-04 15:38:43, Info                  CSI    00000007 [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:43, Info                  CSI    00000008 [SR] Verify complete
2024-08-04 15:38:44, Info                  CSI    00000009 [SR] Verifying 100 components
2024-08-04 15:38:44, Info                  CSI    0000000a [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:44, Info                  CSI    0000000b [SR] Verify complete
2024-08-04 15:38:44, Info                  CSI    0000000c [SR] Verifying 100 components
2024-08-04 15:38:44, Info                  CSI    0000000d [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:45, Info                  CSI    0000000e [SR] Verify complete
2024-08-04 15:38:45, Info                  CSI    0000000f [SR] Verifying 100 components
2024-08-04 15:38:45, Info                  CSI    00000010 [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:46, Info                  CSI    00000011 [SR] Verify complete
2024-08-04 15:38:46, Info                  CSI    00000012 [SR] Verifying 100 components
2024-08-04 15:38:46, Info                  CSI    00000013 [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:47, Info                  CSI    00000014 [SR] Verify complete
2024-08-04 15:38:47, Info                  CSI    00000015 [SR] Verifying 100 components
2024-08-04 15:38:47, Info                  CSI    00000016 [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:49, Info                  CSI    00000017 [SR] Verify complete
2024-08-04 15:38:50, Info                  CSI    00000018 [SR] Verifying 100 components
2024-08-04 15:38:50, Info                  CSI    00000019 [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:53, Info                  CSI    0000001a [SR] Verify complete
2024-08-04 15:38:53, Info                  CSI    0000001b [SR] Verifying 100 components
2024-08-04 15:38:53, Info                  CSI    0000001c [SR] Beginning Verify and Repair transaction
2024-08-04 15:38:56, Info                  CSI    0000001d [SR] Verify complete
2024-08-04 15:38:56, Info                  CSI    0000001e [SR] Verifying 100 components
2024-08-04 15:38:56, Info                  CSI    0000001f [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:06, Info                  CSI    00000020 [SR] Verify complete
2024-08-04 15:39:06, Info                  CSI    00000021 [SR] Verifying 100 components
2024-08-04 15:39:06, Info                  CSI    00000022 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:08, Info                  CSI    00000023 [SR] Verify complete
2024-08-04 15:39:08, Info                  CSI    00000024 [SR] Verifying 100 components
2024-08-04 15:39:08, Info                  CSI    00000025 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:09, Info                  CSI    00000026 [SR] Verify complete
2024-08-04 15:39:09, Info                  CSI    00000027 [SR] Verifying 100 components
2024-08-04 15:39:09, Info                  CSI    00000028 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:10, Info                  CSI    00000029 [SR] Verify complete
2024-08-04 15:39:10, Info                  CSI    0000002a [SR] Verifying 100 components
2024-08-04 15:39:10, Info                  CSI    0000002b [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:11, Info                  CSI    0000002c [SR] Verify complete
2024-08-04 15:39:11, Info                  CSI    0000002d [SR] Verifying 100 components
2024-08-04 15:39:11, Info                  CSI    0000002e [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:22, Info                  CSI    00000031 [SR] Verify complete
2024-08-04 15:39:22, Info                  CSI    00000032 [SR] Verifying 100 components
2024-08-04 15:39:22, Info                  CSI    00000033 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:23, Info                  CSI    00000034 [SR] Verify complete
2024-08-04 15:39:23, Info                  CSI    00000035 [SR] Verifying 100 components
2024-08-04 15:39:23, Info                  CSI    00000036 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:24, Info                  CSI    00000037 [SR] Verify complete
2024-08-04 15:39:24, Info                  CSI    00000038 [SR] Verifying 100 components
2024-08-04 15:39:24, Info                  CSI    00000039 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:25, Info                  CSI    0000003a [SR] Verify complete
2024-08-04 15:39:25, Info                  CSI    0000003b [SR] Verifying 100 components
2024-08-04 15:39:25, Info                  CSI    0000003c [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:26, Info                  CSI    0000003d [SR] Verify complete
2024-08-04 15:39:26, Info                  CSI    0000003e [SR] Verifying 100 components
2024-08-04 15:39:26, Info                  CSI    0000003f [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:27, Info                  CSI    00000040 [SR] Verify complete
2024-08-04 15:39:27, Info                  CSI    00000041 [SR] Verifying 100 components
2024-08-04 15:39:27, Info                  CSI    00000042 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:28, Info                  CSI    00000043 [SR] Verify complete
2024-08-04 15:39:28, Info                  CSI    00000044 [SR] Verifying 100 components
2024-08-04 15:39:28, Info                  CSI    00000045 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:29, Info                  CSI    00000046 [SR] Verify complete
2024-08-04 15:39:29, Info                  CSI    00000047 [SR] Verifying 100 components
2024-08-04 15:39:29, Info                  CSI    00000048 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:31, Info                  CSI    00000049 [SR] Verify complete
2024-08-04 15:39:31, Info                  CSI    0000004a [SR] Verifying 100 components
2024-08-04 15:39:31, Info                  CSI    0000004b [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:32, Info                  CSI    0000004c [SR] Verify complete
2024-08-04 15:39:32, Info                  CSI    0000004d [SR] Verifying 100 components
2024-08-04 15:39:32, Info                  CSI    0000004e [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:34, Info                  CSI    0000004f [SR] Verify complete
2024-08-04 15:39:34, Info                  CSI    00000050 [SR] Verifying 100 components
2024-08-04 15:39:34, Info                  CSI    00000051 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:34, Info                  CSI    00000052 [SR] Verify complete
2024-08-04 15:39:35, Info                  CSI    00000053 [SR] Verifying 100 components
2024-08-04 15:39:35, Info                  CSI    00000054 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:35, Info                  CSI    00000055 [SR] Verify complete
2024-08-04 15:39:35, Info                  CSI    00000056 [SR] Verifying 100 components
2024-08-04 15:39:35, Info                  CSI    00000057 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:36, Info                  CSI    00000058 [SR] Verify complete
2024-08-04 15:39:37, Info                  CSI    00000059 [SR] Verifying 100 components
2024-08-04 15:39:37, Info                  CSI    0000005a [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:39, Info                  CSI    0000005c [SR] Verify complete
2024-08-04 15:39:39, Info                  CSI    0000005d [SR] Verifying 100 components
2024-08-04 15:39:39, Info                  CSI    0000005e [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:39, Info                  CSI    0000005f [SR] Verify complete
2024-08-04 15:39:40, Info                  CSI    00000060 [SR] Verifying 100 components
2024-08-04 15:39:40, Info                  CSI    00000061 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:41, Info                  CSI    00000062 [SR] Verify complete
2024-08-04 15:39:41, Info                  CSI    00000063 [SR] Verifying 100 components
2024-08-04 15:39:41, Info                  CSI    00000064 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:41, Info                  CSI    00000065 [SR] Verify complete
2024-08-04 15:39:41, Info                  CSI    00000066 [SR] Verifying 100 components
2024-08-04 15:39:41, Info                  CSI    00000067 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:42, Info                  CSI    00000068 [SR] Verify complete
2024-08-04 15:39:42, Info                  CSI    00000069 [SR] Verifying 100 components
2024-08-04 15:39:42, Info                  CSI    0000006a [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:43, Info                  CSI    0000006b [SR] Verify complete
2024-08-04 15:39:43, Info                  CSI    0000006c [SR] Verifying 100 components
2024-08-04 15:39:43, Info                  CSI    0000006d [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:44, Info                  CSI    0000006e [SR] Verify complete
2024-08-04 15:39:44, Info                  CSI    0000006f [SR] Verifying 100 components
2024-08-04 15:39:44, Info                  CSI    00000070 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:44, Info                  CSI    00000071 [SR] Verify complete
2024-08-04 15:39:44, Info                  CSI    00000072 [SR] Verifying 100 components
2024-08-04 15:39:44, Info                  CSI    00000073 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:45, Info                  CSI    00000074 [SR] Verify complete
2024-08-04 15:39:45, Info                  CSI    00000075 [SR] Verifying 100 components
2024-08-04 15:39:45, Info                  CSI    00000076 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:46, Info                  CSI    00000077 [SR] Verify complete
2024-08-04 15:39:46, Info                  CSI    00000078 [SR] Verifying 100 components
2024-08-04 15:39:46, Info                  CSI    00000079 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:46, Info                  CSI    0000007a [SR] Verify complete
2024-08-04 15:39:46, Info                  CSI    0000007b [SR] Verifying 100 components
2024-08-04 15:39:46, Info                  CSI    0000007c [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:47, Info                  CSI    0000007d [SR] Verify complete
2024-08-04 15:39:47, Info                  CSI    0000007e [SR] Verifying 100 components
2024-08-04 15:39:47, Info                  CSI    0000007f [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:48, Info                  CSI    00000080 [SR] Verify complete
2024-08-04 15:39:48, Info                  CSI    00000081 [SR] Verifying 100 components
2024-08-04 15:39:48, Info                  CSI    00000082 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:49, Info                  CSI    00000083 [SR] Verify complete
2024-08-04 15:39:49, Info                  CSI    00000084 [SR] Verifying 100 components
2024-08-04 15:39:49, Info                  CSI    00000085 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:50, Info                  CSI    00000086 [SR] Verify complete
2024-08-04 15:39:50, Info                  CSI    00000087 [SR] Verifying 100 components
2024-08-04 15:39:50, Info                  CSI    00000088 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:52, Info                  CSI    0000008a [SR] Verify complete
2024-08-04 15:39:52, Info                  CSI    0000008b [SR] Verifying 100 components
2024-08-04 15:39:52, Info                  CSI    0000008c [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:53, Info                  CSI    0000008e [SR] Verify complete
2024-08-04 15:39:53, Info                  CSI    0000008f [SR] Verifying 100 components
2024-08-04 15:39:53, Info                  CSI    00000090 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:54, Info                  CSI    00000091 [SR] Verify complete
2024-08-04 15:39:54, Info                  CSI    00000092 [SR] Verifying 100 components
2024-08-04 15:39:54, Info                  CSI    00000093 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:55, Info                  CSI    00000094 [SR] Verify complete
2024-08-04 15:39:55, Info                  CSI    00000095 [SR] Verifying 100 components
2024-08-04 15:39:55, Info                  CSI    00000096 [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:57, Info                  CSI    00000098 [SR] Verify complete
2024-08-04 15:39:57, Info                  CSI    00000099 [SR] Verifying 100 components
2024-08-04 15:39:57, Info                  CSI    0000009a [SR] Beginning Verify and Repair transaction
2024-08-04 15:39:59, Info                  CSI    0000009b [SR] Verify complete
2024-08-04 15:39:59, Info                  CSI    0000009c [SR] Verifying 100 components
2024-08-04 15:39:59, Info                  CSI    0000009d [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:01, Info                  CSI    0000009f [SR] Verify complete
2024-08-04 15:40:02, Info                  CSI    000000a0 [SR] Verifying 100 components
2024-08-04 15:40:02, Info                  CSI    000000a1 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:03, Info                  CSI    000000a4 [SR] Verify complete
2024-08-04 15:40:03, Info                  CSI    000000a5 [SR] Verifying 100 components
2024-08-04 15:40:03, Info                  CSI    000000a6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:04, Info                  CSI    000000a7 [SR] Verify complete
2024-08-04 15:40:04, Info                  CSI    000000a8 [SR] Verifying 100 components
2024-08-04 15:40:04, Info                  CSI    000000a9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:05, Info                  CSI    000000ab [SR] Verify complete
2024-08-04 15:40:05, Info                  CSI    000000ac [SR] Verifying 100 components
2024-08-04 15:40:05, Info                  CSI    000000ad [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:06, Info                  CSI    000000ae [SR] Verify complete
2024-08-04 15:40:06, Info                  CSI    000000af [SR] Verifying 100 components
2024-08-04 15:40:06, Info                  CSI    000000b0 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:07, Info                  CSI    000000b1 [SR] Verify complete
2024-08-04 15:40:07, Info                  CSI    000000b2 [SR] Verifying 100 components
2024-08-04 15:40:07, Info                  CSI    000000b3 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:07, Info                  CSI    000000b4 [SR] Verify complete
2024-08-04 15:40:08, Info                  CSI    000000b5 [SR] Verifying 100 components
2024-08-04 15:40:08, Info                  CSI    000000b6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:09, Info                  CSI    000000b8 [SR] Verify complete
2024-08-04 15:40:09, Info                  CSI    000000b9 [SR] Verifying 100 components
2024-08-04 15:40:09, Info                  CSI    000000ba [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:10, Info                  CSI    000000bc [SR] Verify complete
2024-08-04 15:40:10, Info                  CSI    000000bd [SR] Verifying 100 components
2024-08-04 15:40:10, Info                  CSI    000000be [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:12, Info                  CSI    000000c0 [SR] Verify complete
2024-08-04 15:40:12, Info                  CSI    000000c1 [SR] Verifying 100 components
2024-08-04 15:40:12, Info                  CSI    000000c2 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:14, Info                  CSI    000000c4 [SR] Verify complete
2024-08-04 15:40:14, Info                  CSI    000000c5 [SR] Verifying 100 components
2024-08-04 15:40:14, Info                  CSI    000000c6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:15, Info                  CSI    000000c7 [SR] Verify complete
2024-08-04 15:40:15, Info                  CSI    000000c8 [SR] Verifying 100 components
2024-08-04 15:40:15, Info                  CSI    000000c9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:16, Info                  CSI    000000ca [SR] Verify complete
2024-08-04 15:40:16, Info                  CSI    000000cb [SR] Verifying 100 components
2024-08-04 15:40:16, Info                  CSI    000000cc [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:16, Info                  CSI    000000cd [SR] Verify complete
2024-08-04 15:40:17, Info                  CSI    000000ce [SR] Verifying 100 components
2024-08-04 15:40:17, Info                  CSI    000000cf [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:17, Info                  CSI    000000d0 [SR] Verify complete
2024-08-04 15:40:17, Info                  CSI    000000d1 [SR] Verifying 100 components
2024-08-04 15:40:17, Info                  CSI    000000d2 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:18, Info                  CSI    000000d3 [SR] Verify complete
2024-08-04 15:40:18, Info                  CSI    000000d4 [SR] Verifying 100 components
2024-08-04 15:40:18, Info                  CSI    000000d5 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:20, Info                  CSI    000000d7 [SR] Verify complete
2024-08-04 15:40:20, Info                  CSI    000000d8 [SR] Verifying 100 components
2024-08-04 15:40:20, Info                  CSI    000000d9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:21, Info                  CSI    000000da [SR] Verify complete
2024-08-04 15:40:21, Info                  CSI    000000db [SR] Verifying 100 components
2024-08-04 15:40:21, Info                  CSI    000000dc [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:22, Info                  CSI    000000de [SR] Verify complete
2024-08-04 15:40:23, Info                  CSI    000000df [SR] Verifying 100 components
2024-08-04 15:40:23, Info                  CSI    000000e0 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:25, Info                  CSI    000000e3 [SR] Verify complete
2024-08-04 15:40:26, Info                  CSI    000000e4 [SR] Verifying 100 components
2024-08-04 15:40:26, Info                  CSI    000000e5 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:27, Info                  CSI    000000e6 [SR] Verify complete
2024-08-04 15:40:27, Info                  CSI    000000e7 [SR] Verifying 100 components
2024-08-04 15:40:27, Info                  CSI    000000e8 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:28, Info                  CSI    000000e9 [SR] Verify complete
2024-08-04 15:40:28, Info                  CSI    000000ea [SR] Verifying 100 components
2024-08-04 15:40:28, Info                  CSI    000000eb [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:29, Info                  CSI    000000ec [SR] Verify complete
2024-08-04 15:40:29, Info                  CSI    000000ed [SR] Verifying 100 components
2024-08-04 15:40:29, Info                  CSI    000000ee [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:31, Info                  CSI    000000f0 [SR] Verify complete
2024-08-04 15:40:31, Info                  CSI    000000f1 [SR] Verifying 100 components
2024-08-04 15:40:31, Info                  CSI    000000f2 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:32, Info                  CSI    000000f4 [SR] Verify complete
2024-08-04 15:40:32, Info                  CSI    000000f5 [SR] Verifying 100 components
2024-08-04 15:40:32, Info                  CSI    000000f6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:34, Info                  CSI    000000f7 [SR] Verify complete
2024-08-04 15:40:34, Info                  CSI    000000f8 [SR] Verifying 100 components
2024-08-04 15:40:34, Info                  CSI    000000f9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:35, Info                  CSI    000000fa [SR] Verify complete
2024-08-04 15:40:35, Info                  CSI    000000fb [SR] Verifying 100 components
2024-08-04 15:40:35, Info                  CSI    000000fc [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:38, Info                  CSI    000000ff [SR] Verify complete
2024-08-04 15:40:38, Info                  CSI    00000100 [SR] Verifying 100 components
2024-08-04 15:40:38, Info                  CSI    00000101 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:39, Info                  CSI    00000102 [SR] Verify complete
2024-08-04 15:40:39, Info                  CSI    00000103 [SR] Verifying 100 components
2024-08-04 15:40:39, Info                  CSI    00000104 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:40, Info                  CSI    00000105 [SR] Verify complete
2024-08-04 15:40:40, Info                  CSI    00000106 [SR] Verifying 100 components
2024-08-04 15:40:40, Info                  CSI    00000107 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:40, Info                  CSI    00000108 [SR] Verify complete
2024-08-04 15:40:41, Info                  CSI    00000109 [SR] Verifying 100 components
2024-08-04 15:40:41, Info                  CSI    0000010a [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:41, Info                  CSI    0000010b [SR] Verify complete
2024-08-04 15:40:42, Info                  CSI    0000010c [SR] Verifying 100 components
2024-08-04 15:40:42, Info                  CSI    0000010d [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:42, Info                  CSI    0000010e [SR] Verify complete
2024-08-04 15:40:42, Info                  CSI    0000010f [SR] Verifying 100 components
2024-08-04 15:40:42, Info                  CSI    00000110 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:44, Info                  CSI    00000111 [SR] Verify complete
2024-08-04 15:40:44, Info                  CSI    00000112 [SR] Verifying 100 components
2024-08-04 15:40:44, Info                  CSI    00000113 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:44, Info                  CSI    00000114 [SR] Verify complete
2024-08-04 15:40:44, Info                  CSI    00000115 [SR] Verifying 100 components
2024-08-04 15:40:44, Info                  CSI    00000116 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:45, Info                  CSI    00000117 [SR] Verify complete
2024-08-04 15:40:45, Info                  CSI    00000118 [SR] Verifying 100 components
2024-08-04 15:40:45, Info                  CSI    00000119 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:46, Info                  CSI    0000011a [SR] Verify complete
2024-08-04 15:40:46, Info                  CSI    0000011b [SR] Verifying 100 components
2024-08-04 15:40:46, Info                  CSI    0000011c [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:47, Info                  CSI    0000011d [SR] Verify complete
2024-08-04 15:40:47, Info                  CSI    0000011e [SR] Verifying 100 components
2024-08-04 15:40:47, Info                  CSI    0000011f [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:48, Info                  CSI    00000120 [SR] Verify complete
2024-08-04 15:40:48, Info                  CSI    00000121 [SR] Verifying 100 components
2024-08-04 15:40:48, Info                  CSI    00000122 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:49, Info                  CSI    00000123 [SR] Verify complete
2024-08-04 15:40:49, Info                  CSI    00000124 [SR] Verifying 100 components
2024-08-04 15:40:49, Info                  CSI    00000125 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:50, Info                  CSI    00000126 [SR] Verify complete
2024-08-04 15:40:50, Info                  CSI    00000127 [SR] Verifying 100 components
2024-08-04 15:40:50, Info                  CSI    00000128 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:50, Info                  CSI    00000129 [SR] Verify complete
2024-08-04 15:40:51, Info                  CSI    0000012a [SR] Verifying 100 components
2024-08-04 15:40:51, Info                  CSI    0000012b [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:52, Info                  CSI    0000012d [SR] Verify complete
2024-08-04 15:40:52, Info                  CSI    0000012e [SR] Verifying 100 components
2024-08-04 15:40:52, Info                  CSI    0000012f [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:53, Info                  CSI    00000130 [SR] Verify complete
2024-08-04 15:40:53, Info                  CSI    00000131 [SR] Verifying 100 components
2024-08-04 15:40:53, Info                  CSI    00000132 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:54, Info                  CSI    00000133 [SR] Verify complete
2024-08-04 15:40:54, Info                  CSI    00000134 [SR] Verifying 100 components
2024-08-04 15:40:54, Info                  CSI    00000135 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:55, Info                  CSI    00000136 [SR] Verify complete
2024-08-04 15:40:55, Info                  CSI    00000137 [SR] Verifying 100 components
2024-08-04 15:40:55, Info                  CSI    00000138 [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:56, Info                  CSI    00000139 [SR] Verify complete
2024-08-04 15:40:56, Info                  CSI    0000013a [SR] Verifying 100 components
2024-08-04 15:40:56, Info                  CSI    0000013b [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:57, Info                  CSI    0000013c [SR] Verify complete
2024-08-04 15:40:57, Info                  CSI    0000013d [SR] Verifying 100 components
2024-08-04 15:40:57, Info                  CSI    0000013e [SR] Beginning Verify and Repair transaction
2024-08-04 15:40:58, Info                  CSI    0000013f [SR] Verify complete
2024-08-04 15:40:58, Info                  CSI    00000140 [SR] Verifying 100 components
2024-08-04 15:40:58, Info                  CSI    00000141 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:01, Info                  CSI    00000144 [SR] Verify complete
2024-08-04 15:41:01, Info                  CSI    00000145 [SR] Verifying 100 components
2024-08-04 15:41:01, Info                  CSI    00000146 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:04, Info                  CSI    00000149 [SR] Verify complete
2024-08-04 15:41:04, Info                  CSI    0000014a [SR] Verifying 100 components
2024-08-04 15:41:04, Info                  CSI    0000014b [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:05, Info                  CSI    0000014c [SR] Verify complete
2024-08-04 15:41:05, Info                  CSI    0000014d [SR] Verifying 100 components
2024-08-04 15:41:05, Info                  CSI    0000014e [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:06, Info                  CSI    0000014f [SR] Verify complete
2024-08-04 15:41:06, Info                  CSI    00000150 [SR] Verifying 100 components
2024-08-04 15:41:06, Info                  CSI    00000151 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:07, Info                  CSI    00000153 [SR] Verify complete
2024-08-04 15:41:07, Info                  CSI    00000154 [SR] Verifying 100 components
2024-08-04 15:41:07, Info                  CSI    00000155 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:09, Info                  CSI    00000158 [SR] Verify complete
2024-08-04 15:41:09, Info                  CSI    00000159 [SR] Verifying 100 components
2024-08-04 15:41:09, Info                  CSI    0000015a [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:10, Info                  CSI    0000015b [SR] Verify complete
2024-08-04 15:41:10, Info                  CSI    0000015c [SR] Verifying 100 components
2024-08-04 15:41:10, Info                  CSI    0000015d [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:11, Info                  CSI    0000015e [SR] Verify complete
2024-08-04 15:41:12, Info                  CSI    0000015f [SR] Verifying 100 components
2024-08-04 15:41:12, Info                  CSI    00000160 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:12, Info                  CSI    00000161 [SR] Verify complete
2024-08-04 15:41:13, Info                  CSI    00000162 [SR] Verifying 100 components
2024-08-04 15:41:13, Info                  CSI    00000163 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:13, Info                  CSI    00000164 [SR] Verify complete
2024-08-04 15:41:14, Info                  CSI    00000165 [SR] Verifying 100 components
2024-08-04 15:41:14, Info                  CSI    00000166 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:15, Info                  CSI    00000167 [SR] Verify complete
2024-08-04 15:41:15, Info                  CSI    00000168 [SR] Verifying 100 components
2024-08-04 15:41:15, Info                  CSI    00000169 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:16, Info                  CSI    0000016a [SR] Verify complete
2024-08-04 15:41:16, Info                  CSI    0000016b [SR] Verifying 100 components
2024-08-04 15:41:16, Info                  CSI    0000016c [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:18, Info                  CSI    0000016d [SR] Verify complete
2024-08-04 15:41:18, Info                  CSI    0000016e [SR] Verifying 100 components
2024-08-04 15:41:18, Info                  CSI    0000016f [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:18, Info                  CSI    00000170 [SR] Verify complete
2024-08-04 15:41:18, Info                  CSI    00000171 [SR] Verifying 100 components
2024-08-04 15:41:18, Info                  CSI    00000172 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:19, Info                  CSI    00000173 [SR] Verify complete
2024-08-04 15:41:19, Info                  CSI    00000174 [SR] Verifying 100 components
2024-08-04 15:41:19, Info                  CSI    00000175 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:20, Info                  CSI    00000176 [SR] Verify complete
2024-08-04 15:41:20, Info                  CSI    00000177 [SR] Verifying 100 components
2024-08-04 15:41:20, Info                  CSI    00000178 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:21, Info                  CSI    00000179 [SR] Verify complete
2024-08-04 15:41:21, Info                  CSI    0000017a [SR] Verifying 100 components
2024-08-04 15:41:21, Info                  CSI    0000017b [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:22, Info                  CSI    0000017c [SR] Verify complete
2024-08-04 15:41:22, Info                  CSI    0000017d [SR] Verifying 100 components
2024-08-04 15:41:22, Info                  CSI    0000017e [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:22, Info                  CSI    0000017f [SR] Verify complete
2024-08-04 15:41:23, Info                  CSI    00000180 [SR] Verifying 100 components
2024-08-04 15:41:23, Info                  CSI    00000181 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:24, Info                  CSI    00000182 [SR] Verify complete
2024-08-04 15:41:24, Info                  CSI    00000183 [SR] Verifying 100 components
2024-08-04 15:41:24, Info                  CSI    00000184 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:25, Info                  CSI    00000185 [SR] Verify complete
2024-08-04 15:41:25, Info                  CSI    00000186 [SR] Verifying 100 components
2024-08-04 15:41:25, Info                  CSI    00000187 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:26, Info                  CSI    00000188 [SR] Verify complete
2024-08-04 15:41:26, Info                  CSI    00000189 [SR] Verifying 100 components
2024-08-04 15:41:26, Info                  CSI    0000018a [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:27, Info                  CSI    0000018b [SR] Verify complete
2024-08-04 15:41:27, Info                  CSI    0000018c [SR] Verifying 100 components
2024-08-04 15:41:27, Info                  CSI    0000018d [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:27, Info                  CSI    0000018e [SR] Verify complete
2024-08-04 15:41:27, Info                  CSI    0000018f [SR] Verifying 100 components
2024-08-04 15:41:27, Info                  CSI    00000190 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:28, Info                  CSI    00000191 [SR] Verify complete
2024-08-04 15:41:28, Info                  CSI    00000192 [SR] Verifying 100 components
2024-08-04 15:41:28, Info                  CSI    00000193 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:29, Info                  CSI    00000194 [SR] Verify complete
2024-08-04 15:41:29, Info                  CSI    00000195 [SR] Verifying 100 components
2024-08-04 15:41:29, Info                  CSI    00000196 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:29, Info                  CSI    00000197 [SR] Verify complete
2024-08-04 15:41:30, Info                  CSI    00000198 [SR] Verifying 100 components
2024-08-04 15:41:30, Info                  CSI    00000199 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:31, Info                  CSI    0000019b [SR] Verify complete
2024-08-04 15:41:31, Info                  CSI    0000019c [SR] Verifying 100 components
2024-08-04 15:41:31, Info                  CSI    0000019d [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:32, Info                  CSI    0000019e [SR] Verify complete
2024-08-04 15:41:32, Info                  CSI    0000019f [SR] Verifying 100 components
2024-08-04 15:41:32, Info                  CSI    000001a0 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:32, Info                  CSI    000001a1 [SR] Verify complete
2024-08-04 15:41:32, Info                  CSI    000001a2 [SR] Verifying 100 components
2024-08-04 15:41:32, Info                  CSI    000001a3 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:33, Info                  CSI    000001a4 [SR] Verify complete
2024-08-04 15:41:33, Info                  CSI    000001a5 [SR] Verifying 100 components
2024-08-04 15:41:33, Info                  CSI    000001a6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:34, Info                  CSI    000001a7 [SR] Verify complete
2024-08-04 15:41:34, Info                  CSI    000001a8 [SR] Verifying 100 components
2024-08-04 15:41:34, Info                  CSI    000001a9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:35, Info                  CSI    000001aa [SR] Verify complete
2024-08-04 15:41:35, Info                  CSI    000001ab [SR] Verifying 100 components
2024-08-04 15:41:35, Info                  CSI    000001ac [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:35, Info                  CSI    000001ad [SR] Verify complete
2024-08-04 15:41:35, Info                  CSI    000001ae [SR] Verifying 100 components
2024-08-04 15:41:35, Info                  CSI    000001af [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:36, Info                  CSI    000001b0 [SR] Verify complete
2024-08-04 15:41:36, Info                  CSI    000001b1 [SR] Verifying 100 components
2024-08-04 15:41:36, Info                  CSI    000001b2 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:37, Info                  CSI    000001b3 [SR] Verify complete
2024-08-04 15:41:37, Info                  CSI    000001b4 [SR] Verifying 100 components
2024-08-04 15:41:37, Info                  CSI    000001b5 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:38, Info                  CSI    000001b6 [SR] Verify complete
2024-08-04 15:41:38, Info                  CSI    000001b7 [SR] Verifying 100 components
2024-08-04 15:41:38, Info                  CSI    000001b8 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:39, Info                  CSI    000001b9 [SR] Verify complete
2024-08-04 15:41:39, Info                  CSI    000001ba [SR] Verifying 100 components
2024-08-04 15:41:39, Info                  CSI    000001bb [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:46, Info                  CSI    000001bf [SR] Verify complete
2024-08-04 15:41:46, Info                  CSI    000001c0 [SR] Verifying 100 components
2024-08-04 15:41:46, Info                  CSI    000001c1 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:47, Info                  CSI    000001c3 [SR] Verify complete
2024-08-04 15:41:48, Info                  CSI    000001c4 [SR] Verifying 100 components
2024-08-04 15:41:48, Info                  CSI    000001c5 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:49, Info                  CSI    000001c6 [SR] Verify complete
2024-08-04 15:41:49, Info                  CSI    000001c7 [SR] Verifying 100 components
2024-08-04 15:41:49, Info                  CSI    000001c8 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:49, Info                  CSI    000001c9 [SR] Verify complete
2024-08-04 15:41:49, Info                  CSI    000001ca [SR] Verifying 100 components
2024-08-04 15:41:49, Info                  CSI    000001cb [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:50, Info                  CSI    000001cc [SR] Verify complete
2024-08-04 15:41:50, Info                  CSI    000001cd [SR] Verifying 100 components
2024-08-04 15:41:50, Info                  CSI    000001ce [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:51, Info                  CSI    000001cf [SR] Verify complete
2024-08-04 15:41:51, Info                  CSI    000001d0 [SR] Verifying 100 components
2024-08-04 15:41:51, Info                  CSI    000001d1 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:51, Info                  CSI    000001d2 [SR] Verify complete
2024-08-04 15:41:52, Info                  CSI    000001d3 [SR] Verifying 100 components
2024-08-04 15:41:52, Info                  CSI    000001d4 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:53, Info                  CSI    000001d5 [SR] Verify complete
2024-08-04 15:41:53, Info                  CSI    000001d6 [SR] Verifying 100 components
2024-08-04 15:41:53, Info                  CSI    000001d7 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:53, Info                  CSI    000001d8 [SR] Verify complete
2024-08-04 15:41:53, Info                  CSI    000001d9 [SR] Verifying 100 components
2024-08-04 15:41:53, Info                  CSI    000001da [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:54, Info                  CSI    000001db [SR] Verify complete
2024-08-04 15:41:54, Info                  CSI    000001dc [SR] Verifying 100 components
2024-08-04 15:41:54, Info                  CSI    000001dd [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:55, Info                  CSI    000001de [SR] Verify complete
2024-08-04 15:41:55, Info                  CSI    000001df [SR] Verifying 100 components
2024-08-04 15:41:55, Info                  CSI    000001e0 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:56, Info                  CSI    000001e1 [SR] Verify complete
2024-08-04 15:41:56, Info                  CSI    000001e2 [SR] Verifying 100 components
2024-08-04 15:41:56, Info                  CSI    000001e3 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:57, Info                  CSI    000001e4 [SR] Verify complete
2024-08-04 15:41:57, Info                  CSI    000001e5 [SR] Verifying 100 components
2024-08-04 15:41:57, Info                  CSI    000001e6 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:58, Info                  CSI    000001e7 [SR] Verify complete
2024-08-04 15:41:58, Info                  CSI    000001e8 [SR] Verifying 100 components
2024-08-04 15:41:58, Info                  CSI    000001e9 [SR] Beginning Verify and Repair transaction
2024-08-04 15:41:59, Info                  CSI    000001ea [SR] Verify complete
2024-08-04 15:41:59, Info                  CSI    000001eb [SR] Verifying 100 components
2024-08-04 15:41:59, Info                  CSI    000001ec [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:00, Info                  CSI    000001ed [SR] Verify complete
2024-08-04 15:42:00, Info                  CSI    000001ee [SR] Verifying 100 components
2024-08-04 15:42:00, Info                  CSI    000001ef [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:00, Info                  CSI    000001f0 [SR] Verify complete
2024-08-04 15:42:01, Info                  CSI    000001f1 [SR] Verifying 100 components
2024-08-04 15:42:01, Info                  CSI    000001f2 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:01, Info                  CSI    000001f3 [SR] Verify complete
2024-08-04 15:42:01, Info                  CSI    000001f4 [SR] Verifying 100 components
2024-08-04 15:42:01, Info                  CSI    000001f5 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:02, Info                  CSI    000001f6 [SR] Verify complete
2024-08-04 15:42:02, Info                  CSI    000001f7 [SR] Verifying 100 components
2024-08-04 15:42:02, Info                  CSI    000001f8 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:02, Info                  CSI    000001f9 [SR] Verify complete
2024-08-04 15:42:02, Info                  CSI    000001fa [SR] Verifying 100 components
2024-08-04 15:42:02, Info                  CSI    000001fb [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:03, Info                  CSI    000001fc [SR] Verify complete
2024-08-04 15:42:03, Info                  CSI    000001fd [SR] Verifying 100 components
2024-08-04 15:42:03, Info                  CSI    000001fe [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:05, Info                  CSI    00000200 [SR] Verify complete
2024-08-04 15:42:05, Info                  CSI    00000201 [SR] Verifying 100 components
2024-08-04 15:42:05, Info                  CSI    00000202 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:05, Info                  CSI    00000203 [SR] Verify complete
2024-08-04 15:42:05, Info                  CSI    00000204 [SR] Verifying 100 components
2024-08-04 15:42:05, Info                  CSI    00000205 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:06, Info                  CSI    00000206 [SR] Verify complete
2024-08-04 15:42:06, Info                  CSI    00000207 [SR] Verifying 100 components
2024-08-04 15:42:06, Info                  CSI    00000208 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:07, Info                  CSI    00000209 [SR] Verify complete
2024-08-04 15:42:08, Info                  CSI    0000020a [SR] Verifying 100 components
2024-08-04 15:42:08, Info                  CSI    0000020b [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:09, Info                  CSI    0000020c [SR] Verify complete
2024-08-04 15:42:09, Info                  CSI    0000020d [SR] Verifying 100 components
2024-08-04 15:42:09, Info                  CSI    0000020e [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:10, Info                  CSI    0000020f [SR] Verify complete
2024-08-04 15:42:10, Info                  CSI    00000210 [SR] Verifying 100 components
2024-08-04 15:42:10, Info                  CSI    00000211 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:11, Info                  CSI    00000212 [SR] Verify complete
2024-08-04 15:42:11, Info                  CSI    00000213 [SR] Verifying 100 components
2024-08-04 15:42:11, Info                  CSI    00000214 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:12, Info                  CSI    00000215 [SR] Verify complete
2024-08-04 15:42:12, Info                  CSI    00000216 [SR] Verifying 100 components
2024-08-04 15:42:12, Info                  CSI    00000217 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:13, Info                  CSI    00000218 [SR] Verify complete
2024-08-04 15:42:13, Info                  CSI    00000219 [SR] Verifying 100 components
2024-08-04 15:42:13, Info                  CSI    0000021a [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:13, Info                  CSI    0000021b [SR] Verify complete
2024-08-04 15:42:14, Info                  CSI    0000021c [SR] Verifying 100 components
2024-08-04 15:42:14, Info                  CSI    0000021d [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:14, Info                  CSI    0000021e [SR] Verify complete
2024-08-04 15:42:14, Info                  CSI    0000021f [SR] Verifying 100 components
2024-08-04 15:42:14, Info                  CSI    00000220 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:15, Info                  CSI    00000221 [SR] Verify complete
2024-08-04 15:42:15, Info                  CSI    00000222 [SR] Verifying 100 components
2024-08-04 15:42:15, Info                  CSI    00000223 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:16, Info                  CSI    00000224 [SR] Verify complete
2024-08-04 15:42:16, Info                  CSI    00000225 [SR] Verifying 100 components
2024-08-04 15:42:16, Info                  CSI    00000226 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:17, Info                  CSI    00000227 [SR] Verify complete
2024-08-04 15:42:17, Info                  CSI    00000228 [SR] Verifying 100 components
2024-08-04 15:42:17, Info                  CSI    00000229 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:18, Info                  CSI    0000022a [SR] Verify complete
2024-08-04 15:42:18, Info                  CSI    0000022b [SR] Verifying 100 components
2024-08-04 15:42:18, Info                  CSI    0000022c [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:19, Info                  CSI    0000022d [SR] Verify complete
2024-08-04 15:42:19, Info                  CSI    0000022e [SR] Verifying 100 components
2024-08-04 15:42:19, Info                  CSI    0000022f [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:20, Info                  CSI    00000230 [SR] Verify complete
2024-08-04 15:42:20, Info                  CSI    00000231 [SR] Verifying 100 components
2024-08-04 15:42:20, Info                  CSI    00000232 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:21, Info                  CSI    00000233 [SR] Verify complete
2024-08-04 15:42:21, Info                  CSI    00000234 [SR] Verifying 100 components
2024-08-04 15:42:21, Info                  CSI    00000235 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:22, Info                  CSI    00000236 [SR] Verify complete
2024-08-04 15:42:22, Info                  CSI    00000237 [SR] Verifying 100 components
2024-08-04 15:42:22, Info                  CSI    00000238 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:23, Info                  CSI    00000239 [SR] Verify complete
2024-08-04 15:42:23, Info                  CSI    0000023a [SR] Verifying 100 components
2024-08-04 15:42:23, Info                  CSI    0000023b [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:24, Info                  CSI    0000023c [SR] Verify complete
2024-08-04 15:42:24, Info                  CSI    0000023d [SR] Verifying 100 components
2024-08-04 15:42:24, Info                  CSI    0000023e [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:25, Info                  CSI    0000023f [SR] Verify complete
2024-08-04 15:42:25, Info                  CSI    00000240 [SR] Verifying 100 components
2024-08-04 15:42:25, Info                  CSI    00000241 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:27, Info                  CSI    00000242 [SR] Verify complete
2024-08-04 15:42:27, Info                  CSI    00000243 [SR] Verifying 100 components
2024-08-04 15:42:27, Info                  CSI    00000244 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:28, Info                  CSI    00000245 [SR] Verify complete
2024-08-04 15:42:28, Info                  CSI    00000246 [SR] Verifying 100 components
2024-08-04 15:42:28, Info                  CSI    00000247 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:29, Info                  CSI    00000248 [SR] Verify complete
2024-08-04 15:42:29, Info                  CSI    00000249 [SR] Verifying 100 components
2024-08-04 15:42:29, Info                  CSI    0000024a [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:29, Info                  CSI    0000024b [SR] Verify complete
2024-08-04 15:42:29, Info                  CSI    0000024c [SR] Verifying 100 components
2024-08-04 15:42:29, Info                  CSI    0000024d [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:30, Info                  CSI    0000024e [SR] Verify complete
2024-08-04 15:42:30, Info                  CSI    0000024f [SR] Verifying 100 components
2024-08-04 15:42:30, Info                  CSI    00000250 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:31, Info                  CSI    00000251 [SR] Verify complete
2024-08-04 15:42:31, Info                  CSI    00000252 [SR] Verifying 100 components
2024-08-04 15:42:31, Info                  CSI    00000253 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:32, Info                  CSI    00000254 [SR] Verify complete
2024-08-04 15:42:32, Info                  CSI    00000255 [SR] Verifying 100 components
2024-08-04 15:42:32, Info                  CSI    00000256 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:32, Info                  CSI    00000258 [SR] Repairing file \??\C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\\mscormmc.dll from store
2024-08-04 15:42:33, Info                  CSI    00000259 [SR] Verify complete
2024-08-04 15:42:33, Info                  CSI    0000025a [SR] Verifying 100 components
2024-08-04 15:42:33, Info                  CSI    0000025b [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:34, Info                  CSI    0000025d [SR] Verify complete
2024-08-04 15:42:34, Info                  CSI    0000025e [SR] Verifying 100 components
2024-08-04 15:42:34, Info                  CSI    0000025f [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:35, Info                  CSI    00000260 [SR] Verify complete
2024-08-04 15:42:35, Info                  CSI    00000261 [SR] Verifying 30 components
2024-08-04 15:42:35, Info                  CSI    00000262 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:35, Info                  CSI    00000263 [SR] Verify complete
2024-08-04 15:42:35, Info                  CSI    00000264 [SR] Repairing 1 components
2024-08-04 15:42:35, Info                  CSI    00000265 [SR] Beginning Verify and Repair transaction
2024-08-04 15:42:35, Info                  CSI    00000267 [SR] Repairing file \??\C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\\mscormmc.dll from store
2024-08-04 15:42:35, Info                  CSI    00000268 [SR] Repair complete
2024-08-04 15:42:35, Info                  CSI    00000269 [SR] Committing transaction
2024-08-04 15:42:35, Info                  CSI    00000270 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired

Hola buenas ya estoy aquí de nuevo @Devora_Chico

Ya he leído TODO lo nuevo que has traído.

OK, lo imaginaba. Por eso hice el script que hice Todo correcto, pero tenemos que seguir. Aún no hemos finalizado.

Necesito logs frescos de FRST.

EN BUSCA / ELIMINACIÓN DE MALWARE

Desactivas tu antivirus Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad que tengas activado.

LO DESCARGAS EN TU ESCRITORIO MUY IMPORTANTE (y no en otro sitio).

Descargas Farbar Recovery Scan Tool MUY IMPORTANTE >> seleccionas la versión adecuada para la arquitectura correspondiente de tu Ordenador (32 o 64 bits). ¿Cómo saber si mi Windows es de 32 o 64 bits.?

Una vez descargado FRST, desconectas tu equipo de completamente de Internet (apagas el router) >> Super Importante. Acto seguido, cierras también cualquier otro programa que tengas abierto.

Farbar Recovery Scan Tool

1. Ejecutas el FRST.exe (Si utilizas Windows Vista/7/8 o 10, presionas clic derecho y seleccionas Ejecutar como Administrador).

2. Aparecerá una ventana con un mensaje de Disclaimer/Responsabilidad, presionas sobre Sí o Yes.

3. En la ventana principal del programa, presionas sobre Analizar/Scan y esperas a que finalice el análisis.

4. Aparecerán dos logs/reportes que serán: Frst.txt y Addition.txt, estos quedarán guardados en el escritorio.

Activas de nuevo tu antivirus y cualquier programa de seguridad que tengas activado. También conectas nuevamente tu equipo a Internet.

PRÓXIMA RESPUESTA

Pegas los reportes de FRST.txt y Addition.txt. Debes de poner ambos reportes todos enteros con absolutamente todo su contenido. Deberás de realizar varios mensajes si recibes un mensaje de error/advertencia indicando que es muy largo dicho reporte que formará el mensaje (más de 50.000 caracteres aprox.).

NOTA IMPORTANTE

Por Favor, mientras estemos desinfectando tu maquina o terminando de hacerlo:

• No realices pasos/acciones que NOSOTROS no te hayamos indicado.
• No descargues NADA de Internet y/o conectes dispositivos externos a tu equipo.
• No instales NADA (programas/software/complementos/extensiones del navegador…).
• No ejecutes otros programas de seguridad (Antivirus, Antimalware, ANTINADA…).
• No realices por tu cuenta otros procedimientos.
• Usa tu equipo EXCLUSIVAMENTE para desinfectarlo siguiendo nuestras indicaciones.

Muy Importante Coloca los diferentes reportes que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Salu2.

Excelente muchas gracias una vez mas! Adjunto los logs de FRST.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-08.2024
Ejecutado por 54351 (administrador) sobre LAPTOP-OPJN8V87 (LENOVO 81Y4) (05-08-2024 22:32:46)
Ejecutado desde C:\Users\54351\Desktop\FRST64.exe
Perfiles cargados: 54351
Plataforma: Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericTelemetryAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.U.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2429.10.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\54351\AppData\Local\Microsoft\OneDrive\24.146.0721.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1085224 2020-06-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248136 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.89\Installer\chrmstp.exe [2024-08-02] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-01-30]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {361E0832-58AA-49DB-BC57-267C6BCE9335} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {BAA0DDCF-01D1-472E-A872-EBD839A40F01} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93D88397-DACB-4C30-8EC5-77CF303D9EBF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6a2f848c-00df-4e12-86e3-037a85dee55d" --version "6.25.11131" --silent
Task: {BBE9451B-140B-4CEC-BDE4-C56E5EABB707} - System32\Tasks\CCleanerSkipUAC - 54351 => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A008D664-6865-4A6F-B16A-DB20B870404A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B2E104C7-EAEA-4772-AF0C-5CA6447BF284} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AD4C9554-E634-45A8-A115-0E0FEC0A6AAB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{9F0790C8-A043-45D1-B14D-4A9E649CD5D8} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {52053E6B-E763-42F6-B41D-BF292EC3252A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {AB357A27-347E-42BD-AEE7-B04ACFBBFD3D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {F5BF5AE0-1E8E-4620-90B5-6E4B6B514195} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {B5200FF1-5C0B-41B9-8087-BE07CD2F36E7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1a92303b-d0e1-4be9-8675-14df43337d24 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C860F386-DE39-4627-9DF2-17ED33028224} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1ebba27b-8684-44ad-b607-9cb0e4e5982d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {516CFDE8-8E54-4A72-A918-0036A5A0D9E8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\65fc8f9c-d51a-42a1-91f8-c9a71e83458c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {EEC44A5F-28E8-4AC5-B833-0317CA45923B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c19661d0-0ca6-4387-bb0e-0e2e33feaf07 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F14C749F-8A33-46D3-B751-7644CBF0A721} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f5d36206-8381-453a-9981-b91b8e2a4c47 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {2CBB4673-11BB-4436-9C69-85225E69970E} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {2F0824D8-4A31-4C05-8D97-FF0DEC23EF07} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
Task: {1A8157AE-0A7C-4083-B45A-274DCB8BACFF} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {17E05054-60AB-4F73-AEB9-E3E16F264691} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {78483B37-3FA8-4FF5-B98D-97E9252E7056} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {3A4B04AB-A48E-4ED6-B5D1-2EF19A1AF9A6} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {D91D57A8-A348-4838-B011-BB1D3905F999} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {588E1C2C-D2A5-4B9E-9118-5D0CC75DB927} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {217B6A89-5090-4427-ADE1-E3ECDCCDE277} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {B869B6A7-AB7E-47AE-B263-9FA5C7087C17} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {3A6BDFE6-2658-4015-9700-96976EEF76BA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {1C24E975-197A-4E00-A116-A2E49BE4E011} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {E206F6ED-1EB5-48FF-AED2-DC8D122BC561} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {85BA5717-35F3-43BE-873B-797B51FF251E} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {B4793484-AE42-4E22-BD7C-27374FC6BFBD} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {C739C671-9AC9-4BE7-A0A9-90FB652B565F} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\uninstall.exe [345448 2024-07-16] (Lenovo -> Lenovo)
Task: {6F08C731-C44E-46D9-BF69-FA681E3E9598} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {B668182F-0762-4575-9A92-8F3D8E4A672E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917808 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF2982B2-8D04-4F3E-87D9-70A10D072435} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9073E839-596D-48F7-8C67-CF74D38F095B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141248 2024-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {23185FCA-2FEA-4338-AD85-420AE01B05BF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F26D0FE4-FD35-4849-B11E-CBE267B94872} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {79CE8470-6736-4648-81B9-EBCCCDA82F7E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {494F5282-CE6A-4484-9C70-49AC5D1977BE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {AF5B39AC-7E85-4527-BB34-4121BB445113} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A069C1-0ABB-47C5-989B-E3FFFFF6D581} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CE86389-4BBD-4DAC-9D47-3162A6533D8E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F68CD87-205A-48B1-8C7A-88E107494659} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40E3B307-8B3A-4132-88A8-76D22695864C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D93267E0-F272-4C4B-8FC9-E249972C9DE9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\2456E6563737562756: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\3516C647F602C4F667562716: [DhcpDomain] Home
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\64C696160234869636F6F55374: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpNameServer] 186.56.20.66 186.56.20.67
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\75966696F5548545: [DhcpDomain] TL-WA850RE
Tcpip\..\Interfaces\{d6030f43-c98b-4834-996f-3b0b9d102e62}\964736F6D6F50727965647F6: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Profile: C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-18]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\54351\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-07-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default [2024-08-05]
CHR Extension: (uBlock Origin) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-08-01]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-23]
CHR Extension: (Marsala) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjlfmldcaheghnjjpgpoadjfppefjmkj [2021-08-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-19]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-08-04]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-08-04]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-04-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-04-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\54351\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-23]
CHR Profile: C:\Users\54351\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-17]
CHR HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3910472 2024-02-07] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9202656 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\204.4.5420\DropboxElevationService.exe [1659288 2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe [34664 2024-07-16] (Lenovo -> Lenovo)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8901528 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [119560 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [81424 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.U.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKslc2623c1f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FDA5197F-7A71-4391-B15C-0F2450CAE2C6}\MpKslDrv.sys [271648 2024-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [151152 2022-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [36552 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-08-05 22:32 - 2024-08-05 22:33 - 000036693 _____ C:\Users\54351\Desktop\FRST.txt
2024-08-05 08:56 - 2024-08-05 08:56 - 001863474 _____ C:\Users\54351\Desktop\nutrients-14-02568-v3.pdf
2024-08-04 17:57 - 2024-08-05 22:32 - 000000000 ____D C:\Users\54351\Desktop\Lolo
2024-08-04 15:42 - 2024-08-04 15:42 - 000769398 _____ C:\WINDOWS\system32\perfh00A.dat
2024-08-04 15:42 - 2024-08-04 15:42 - 000152964 _____ C:\WINDOWS\system32\perfc00A.dat
2024-08-04 15:30 - 2024-08-04 15:30 - 000000247 _____ C:\DelFix.txt
2024-08-04 15:30 - 2024-08-04 15:30 - 000000000 ____D C:\WINDOWS\ERUNT
2024-08-04 15:02 - 2024-08-04 15:02 - 004547925 _____ C:\Users\54351\Desktop\El proposito.pdf .pdf
2024-07-25 08:00 - 2024-07-25 08:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-07-23 12:21 - 2024-07-23 12:21 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-07-22 14:26 - 2024-08-05 22:33 - 000000000 ____D C:\FRST
2024-07-22 14:23 - 2024-08-04 15:32 - 002397184 _____ (Farbar) C:\Users\54351\Desktop\FRST64.exe
2024-07-22 09:41 - 2024-07-22 14:17 - 000001393 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-07-22 09:41 - 2024-07-22 09:41 - 000000000 ____D C:\Users\54351\AppData\Local\ESET
2024-07-21 11:48 - 2024-07-21 12:24 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\MMC
2024-07-21 11:29 - 2024-07-21 11:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-07-18 22:35 - 2024-08-05 22:31 - 000000000 ____D C:\Users\54351\AppData\Local\Malwarebytes
2024-07-18 22:35 - 2024-07-18 22:35 - 000002104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-07-18 22:34 - 2024-07-18 22:34 - 000000000 ____D C:\Program Files\Malwarebytes
2024-07-16 22:32 - 2024-07-16 22:32 - 000000000 ____D C:\ProgramData\Piriform
2024-07-16 22:31 - 2024-07-30 08:25 - 000000000 ____D C:\Program Files\CCleaner
2024-07-16 22:31 - 2024-07-24 07:33 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-16 22:31 - 2024-07-18 22:48 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-16 22:31 - 2024-07-16 22:31 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-16 22:31 - 2024-07-16 22:31 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - 54351
2024-07-16 22:31 - 2024-07-16 22:31 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-16 22:31 - 2024-07-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-11 07:54 - 2024-07-11 07:54 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-11 07:53 - 2024-07-11 07:53 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-10 20:02 - 2024-07-10 20:02 - 000000000 ____D C:\WINDOWS\Panther

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-08-05 22:32 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-05 22:30 - 2021-06-24 14:07 - 000000000 ____D C:\ProgramData\NVIDIA
2024-08-05 22:29 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Roaming\Dropbox
2024-08-05 22:29 - 2021-08-19 16:05 - 000000000 ____D C:\Users\54351\AppData\Local\Dropbox
2024-08-05 22:28 - 2021-08-19 15:42 - 000000000 __SHD C:\Users\54351\IntelGraphicsProfiles
2024-08-05 12:28 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-05 10:44 - 2021-08-21 21:06 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Word
2024-08-05 10:35 - 2022-11-16 17:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-05 08:42 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-04 18:02 - 2022-11-12 10:14 - 000000000 ____D C:\Users\54351\Desktop\Ver
2024-08-04 17:59 - 2021-11-22 11:17 - 000000000 ____D C:\Users\54351\AppData\Roaming\Canva
2024-08-04 15:42 - 2022-11-16 20:54 - 001711630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-04 15:42 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-08-04 15:35 - 2023-09-25 19:26 - 000000000 ____D C:\Program Files\TeamViewer
2024-08-04 15:35 - 2021-06-24 14:04 - 000000000 ___HD C:\Intel
2024-08-04 15:34 - 2022-11-16 17:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-04 15:34 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-08-04 15:34 - 2022-05-07 02:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-08-04 15:34 - 2020-05-06 15:33 - 000012288 ___SH C:\DumpStack.log.tmp
2024-08-04 15:33 - 2019-12-07 06:14 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-08-04 15:27 - 2022-01-30 20:41 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-08-02 16:09 - 2023-02-15 09:29 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-08-02 16:09 - 2023-02-13 17:46 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3373832111-2872085848-2811205463-1001
2024-08-02 16:09 - 2021-08-19 15:39 - 000002428 _____ C:\Users\54351\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-02 10:34 - 2023-01-16 09:04 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-08-02 10:34 - 2021-08-19 15:46 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-02 10:34 - 2021-08-19 15:46 - 000002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-08-02 10:34 - 2021-06-24 13:53 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-01 12:30 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-30 22:39 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\Packages
2024-07-30 07:46 - 2024-02-16 14:04 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-07-30 07:46 - 2022-10-21 17:15 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-07-30 07:46 - 2022-10-21 17:15 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-07-30 07:46 - 2021-11-20 10:23 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-07-30 07:46 - 2021-08-19 15:53 - 002799096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-07-30 07:46 - 2021-08-19 15:53 - 000755304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-07-30 07:46 - 2021-08-19 15:53 - 000222712 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-30 07:46 - 2021-08-19 15:53 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-07-30 07:34 - 2022-11-16 17:57 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-07-30 07:34 - 2022-10-13 11:31 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-30 07:34 - 2022-10-13 11:31 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-07-29 12:16 - 2022-11-16 17:57 - 000003636 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-29 12:16 - 2022-11-16 17:57 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-25 08:00 - 2021-08-19 16:05 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-07-23 08:12 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-22 14:38 - 2021-10-24 08:49 - 000000000 ____D C:\Users\54351\AppData\Local\CrashDumps
2024-07-22 11:09 - 2021-08-19 15:42 - 000000000 ____D C:\Users\54351\AppData\Local\VirtualStore
2024-07-21 16:43 - 2022-11-16 20:51 - 000000000 ____D C:\Users\54351\AppData\Local\D3DSCache
2024-07-21 11:26 - 2022-11-16 17:53 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Spelling
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\OCR
2024-07-18 23:06 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Globalization
2024-07-18 23:06 - 2022-05-07 02:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-18 22:58 - 2021-08-19 15:44 - 000000000 ____D C:\Users\54351\AppData\Local\PlaceholderTileLogoFolder
2024-07-18 22:48 - 2023-01-08 13:07 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-07-18 22:40 - 2023-09-02 12:30 - 000000000 ____D C:\Users\54351\AppData\Roaming\utorrent
2024-07-18 22:34 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-16 22:26 - 2021-08-27 09:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-07-16 22:26 - 2021-08-19 15:44 - 000000000 ____D C:\ProgramData\Packages
2024-07-16 18:36 - 2021-06-24 13:57 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-15 12:00 - 2021-08-19 15:52 - 000000000 ____D C:\Users\54351\AppData\Roaming\Microsoft\Excel
2024-07-11 10:25 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-11 09:46 - 2022-11-16 17:52 - 000474712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-11 09:45 - 2023-12-14 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-11 09:45 - 2023-10-12 14:45 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-11 09:45 - 2022-11-16 13:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-11 09:45 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-11 07:54 - 2022-11-16 17:57 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-10 20:02 - 2021-08-19 16:05 - 000000980 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2024-07-10 20:02 - 2021-08-19 16:05 - 000000976 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2024-07-10 18:35 - 2021-08-29 10:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 17:30 - 2021-08-29 10:18 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Aquí Addition.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 02-08.2024
Ejecutado por 54351 (05-08-2024 22:34:44)
Ejecutado desde C:\Users\54351\Desktop
Microsoft Windows 11 Home Single Language Versión 23H2 22631.3880 (X64) (2022-11-16 23:49:17)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

54351 (S-1-5-21-3373832111-2872085848-2811205463-1001 - Administrator - Enabled) => C:\Users\54351
Administrador (S-1-5-21-3373832111-2872085848-2811205463-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3373832111-2872085848-2811205463-503 - Limited - Disabled)
Invitado (S-1-5-21-3373832111-2872085848-2811205463-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3373832111-2872085848-2811205463-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Panda Dome (Disabled - Up to date) {8404BB29-B609-D604-AF5C-6806F0482FD3}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1034-1033-7760-BC15014EA700}) (Version: 24.002.20965 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.15 - AnyDesk Software GmbH)
Apowersoft Online Launcher version 1.8.2 (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.8.2 - APOWERSOFT LIMITED)
Canva (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.36.0 - Canva Pty Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 6.25 - Piriform)
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Dropbox (HKLM-x32\...\Dropbox) (Version: 204.4.5420 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.911.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.89 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{44C34709-F068-4CBC-8A71-515EDBC3B2A6}) (Version: 10.1.18383.8213 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.22.0 - Lenovo Group Ltd.)
Malwarebytes version 5.1.6.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.6.117 - Malwarebytes)
Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - en-us (HKLM\...\Access2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Access LTSC - es-es (HKLM\...\Access2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.86 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - en-us (HKLM\...\Standard2021Volume - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - es-es (HKLM\...\Standard2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\OneDriveSetup.exe) (Version: 24.146.0721.0002 - Microsoft Corporation)
Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Project Profesional 2021 - es-es (HKLM\...\ProjectPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visio LTSC Professional 2021 - es-es (HKLM\...\VisioPro2021Volume - es-es) (Version: 16.0.14332.20736 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28720 (HKLM\...\{CB4A0FDE-1126-4AE2-97C6-A243692C3D95}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28720 (HKLM\...\{DD1EC0FD-3F0A-4740-A05E-1DCD14A6B0D1}) (Version: 14.26.28720 - Microsoft Corporation) Hidden
NVIDIA Controlador de gráficos 462.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14332.20736 - Microsoft Corporation) Hidden
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{7DD06CA9-7719-4AA5-B778-BF08A8C72C6A}) (Version: 12.12.20 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.2.0 - Panda Security)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.55.3 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\ZoomUMX) (Version: 5.15.11 (21032) - Zoom Video Communications, Inc.)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-23] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5536.0_x64__8j3eq9eme6ctt [2024-07-18] (INTEL CORP) [Startup Task]
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-21] (Microsoft Corporation)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20602.609.0_x64__rz1tebttyb220 [2021-06-24] (Dolby Laboratories)
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2024-07-25] (Dropbox Inc.)
Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.19012.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation) [Startup Task]
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-07-05] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-23] (Apple Inc.) [Startup Task]
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-07-16] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-04-03] (LENOVO INC) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Microsoft Jenny (Natural) - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-US.Jenny.1_1.0.8.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.1293.0_x64__8wekyb3d8bbwe [2024-06-03] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-16] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24062.51.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-23] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
PDF X -> C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.3.0_x64__sbe4t8mqwq93a [2024-07-29] (NG PDF Lab) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2021-06-24] (Realtek Semiconductor Corp)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.16.0_x64__cw5n1h2txyewy [2024-07-18] (Microsoft Windows)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2429.10.0_x64__cv1g1gvanyjgm [2024-07-30] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-11] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-07-11] (Microsoft Windows)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3373832111-2872085848-2811205463-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\54351\Dropbox [2021-08-20 09:19]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\nvshext.dll [2021-08-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-18] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-11] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 06:14 - 2024-08-04 15:32 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\Control Panel\Desktop\\Wallpaper -> D:\Fotos Iphone\Ultimas fotos Iphone\Segunda mitad\PCCI2249.JPG
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 -> Netwtw10.sys
Ethernet 2: AnchorFree TAP-Windows Adapter V9 -> aftap0901.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys

NNSNAHSL: Network Activity Hook Server LightWeight Filter Driver

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKU\S-1-5-21-3373832111-2872085848-2811205463-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{B0D55BB3-6496-4A51-A700-2C92A81A8A05}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{B829EAFE-CA82-472E-8BB5-8D000F871C79}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EA57BF8E-5A42-4A2E-8D04-10E6FEC44566}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{B0BFC9BD-1EE2-4A55-B77D-574A3E84D983}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{D68C1475-DFA8-4CFF-B93B-9AE4CBBB6988}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{82263C7F-A229-4B5C-98FF-FD66C442195D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)

==================== Puntos de Restauración =========================

ATENCIÓN: Restaurar Sistema está deshabilitado (Total:118 GB) (Free:8.46 GB) (7%)

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Universal Device Client Device
Description: Universal Device Client Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (08/05/2024 10:29:10 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:29:10 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:29:10 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.

Error: (08/05/2024 10:29:10 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:29:08 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:35:21 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:35:21 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (08/05/2024 10:35:21 AM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Controlador no válido.


Errores del sistema:
=============
Error: (08/05/2024 10:34:25 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/05/2024 09:33:18 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OPJN8V87)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.


Windows Defender:
================
Date: 2024-05-17 18:11:39
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {646E15CA-6EF2-46E1-8187-1B199EE72DAA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-12 10:46:08
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {3A249362-43FA-45A0-83DC-098D5E6F1F65}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-11 08:22:53
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {5FE391F8-FC99-4D83-8D3B-D774EBC68174}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-10 08:56:56
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {7BFAF7FF-C78B-40AB-B5CC-565C416FE045}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-07-06 08:25:42
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {0ACA0DA9-61E5-4EEF-9AA4-F6D83D172EF4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

CodeIntegrity:
===============
Date: 2024-08-02 10:37:26
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 

Date: 2024-08-02 10:33:33
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\wscript.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 


==================== Información de la memoria =========================== 

BIOS: LENOVO EGCN34WW 05/18/2021
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i5-10300H CPU @ 2.50GHz
Porcentaje de memoria en uso: 65%
RAM física total: 8059.8 MB
RAM física disponible: 2805.1 MB
Virtual total: 12027.8 MB
Virtual disponible: 6263.11 MB

==================== Unidades ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:8.46 GB) (Model: SAMSUNG MZALQ128HBHQ-000L2) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:863.26 GB) (Model: WDC WD10SPZX-08Z10) NTFS

\\?\Volume{445d065c-579a-4e09-837d-eb754791adb0}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.06 GB) NTFS
\\?\Volume{ab06857b-4f8f-4155-a874-23bcacb42ed6}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 53F0087B)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: D0DC65C1)

Partition: GPT.

==================== Final de Addition.txt =======================