Hola, buenos dias. Este es mi primer tema y espero que sena muchos mas.
Tengo un problema con el notepad.exe que ya e visto que le pasa a mas gente, cuando dejo de usar el PC me consume 2Gb de memoria RAM pero me gustaría una guia de como hacerlo me podeis ayudar a soluccionar esto, si voy al administrador de tareas finaliza el proceso pero es un rollo estar así cada vez, en que consiste este virus o como me puedo infectar el PC
Muchas gracias Un saludo
Buenas @byXusco y Bienvenido al Foro.!!!
Para revisar tu máquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado. 
Desactiva temporalmente el Antivirus 
Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.
Vamos a descargar en TU ESCRITORIO(y NO en otro lugar 
) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :
Malwarebytes’ Anti-Malware + Manual. 
revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente.
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. 
Como saber si Mi Windows es de 32 o 64 Bits ?.
Ejecutas las herramientas de una en una y en el orden indicado :
CCleaner.-
Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).
Malwarebytes.-
Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
Realiza un Análisis Personalizado.
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
En el apartado del programa Historial de detecciones 
encontrarás el informe de MBAM, que debes copiar y pegar en tu próxima respuesta, para poder analizarlo.
AdwCleaner.-
Ejecuta Adwcleaner.exe.
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt
Junkware Removal Tool.-
Ejecuta JRT.exe.
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
Si en algún momento te pide Reiniciar hazlo.
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
Copia y pega el contenido de JRT.txt en tu próxima respuesta.
Farbar Recovery Scan Tool.-
Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer/Responsabilidad, pulsamos Sí/Yes
En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Poner los informes en tu próxima respuesta de :
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(más de 64.000 caracteres aprox.).
Y nos cuentas como funciona tu equipo en relación al problema planteado.
Saludos Javier.
Hola Buenas noches lamento la tardanza
en primer lugar te adjunto malwarebytes
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 24/1/20
Hora del análisis: 20:23
Archivo de registro: 00b9909c-3edf-11ea-b21d-00d861562d04.json
-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.793
Versión del paquete de actualización: 1.0.18204
Licencia: Gratis
-Información del sistema-
SO: Windows 10 (Build 18362.592)
CPU: x64
Sistema de archivos: NTFS
Usuario: JESUS-PC1\Jes\u00c3\u00bas
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 285869
Amenazas detectadas: 61
Amenazas en cuarentena: 61
Tiempo transcurrido: 0 min, 56 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 3
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Se eliminará al reiniciar, 199, 236865, , , ,
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Se eliminará al reiniciar, 199, 236865, , , ,
PUP.Optional.Conduit, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Se eliminará al reiniciar, 199, 236865, 1.0.18204, , ame,
Valor del registro: 4
PUP.Optional.Conduit, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Se eliminará al reiniciar, 199, 236865, 1.0.18204, , ame,
PUP.Optional.Conduit, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, Se eliminará al reiniciar, 199, 236865, 1.0.18204, , ame,
Trojan.Agent.AutoIt.Generic, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|4790E282, Se eliminará al reiniciar, 5615, 783345, 1.0.18204, , ame,
Trojan.Agent.AutoIt.Generic, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|996516B6, Se eliminará al reiniciar, 5615, 783345, 1.0.18204, , ame,
Datos del registro: 1
PUP.Optional.Conduit, HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Se reemplazará al reiniciar, 199, 293058, 1.0.18204, , ame,
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 2
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\e5afb86, Se eliminará al reiniciar, 5615, 781622, 1.0.18204, , ame,
Archivo: 51
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\E5AFB86\252DCBC.AU3, Se eliminará al reiniciar, 5615, 783345, , , ,
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\E5AFB86\GGEAAEI.EXE, Se eliminará al reiniciar, 5615, 783345, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\01-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\01-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\02-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\02-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\03-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\03-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\04-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\04-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\05-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\05-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\06-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\06-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\07-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\07-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\08-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\08-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\09-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\09-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\10-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\10-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\11-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\11-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\12-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\12-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\13-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\13-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\14-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\14-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\15-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\15-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\16-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\16-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\17-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\17-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\18-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\18-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\19-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\20-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\20-12-2019.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\21-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\22-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\23-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\24-01-2020.log, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\8211948, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\aac970b\b05ff82, Se eliminará al reiniciar, 5615, 781622, , , ,
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\e5afb86\pe.bin, Se eliminará al reiniciar, 5615, 781622, , , ,
PUP.Optional.GameHack, C:\PROGRAM FILES\CHEAT ENGINE 7.0\STANDALONEPHASE1.DAT, Se eliminará al reiniciar, 7925, 393793, 1.0.18204, , ame,
HackTool.Agent.KMS, E:\ESCRITORIO\KMSPICO 10.2.0 FINAL + PORTABLE\KMSPICO PORTABLE\KMSELDI.EXE, Se eliminará al reiniciar, 7631, 700614, 1.0.18204, FE127395B1E1F2D763AB8611, dds, 00559830
PUP.Optional.InstallCore, E:\DESCARGAS\CHEATENGINE70.EXE, Se eliminará al reiniciar, 480, 500846, 1.0.18204, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)en segundo lugar Adwcleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-24-2020
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1325 octets] - [16/12/2019 18:41:59]
AdwCleaner[C00].txt - [1513 octets] - [16/12/2019 18:42:53]
AdwCleaner[S01].txt - [1849 octets] - [24/01/2020 20:26:36]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
ahora JRT
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by Jes£s (Administrator) on 24/01/2020 at 20:32:08,63
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24/01/2020 at 20:33:04,12
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
y ahora FRST
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 22-01-2020 01
Ejecutado por Jesús (administrador) sobre JESUS-PC1 (Micro-Star International Co., Ltd. MS-7B51) (24-01-2020 20:34:58)
Ejecutado desde E:\Descargas
Perfiles cargados: Jesús (Perfiles disponibles: Jesús)
Platform: Windows 10 Pro Versión 1903 18362.592 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel Corporation) [Archivo no firmado] C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [817232 2018-11-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1262776 2018-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26255032 2019-01-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Jesús\AppData\Local\Microsoft\Teams\Update.exe [1790704 2019-11-30] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\Run: [Steam] => E:\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\Run: [utweb] => "C:\Users\Jesús\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-22] (Google LLC -> Google LLC)
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {063142BC-8E05-40A5-BC59-2539AF719FD9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2350400 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {0E457869-F26C-49B6-BEFB-0D8581FEBC54} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {103274AC-DEC3-4536-A520-FC9EE07858A4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301928 2019-10-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {231D7BED-DB2A-4F28-8EB4-37BE1E56650C} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2018-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {2670AA16-02F7-48CD-8F0A-3CB3CD763257} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [837344 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {26E77EEC-E0D7-416A-9905-ADB6A9BEE291} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654456 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27D09C88-77E1-4139-B54C-07796CC005FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B74D571-240A-4957-8B60-FE2D20F25352} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292336 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B2FD0A8-250C-4701-9559-CF76000E7064} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FB4EE90-4A6F-4EE7-A612-7E7D6ABA60BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-11] (Google Inc -> Google LLC)
Task: {556F5C95-B6D4-4815-B0BC-B1437A9FADEA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {5BCD927A-F4A7-430D-9B04-29EC2830E20B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D1E35DC-5AE6-47EB-92BB-95A70DFE15FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {5EA39743-24E4-44BD-8002-6755DC16E44A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71919FEA-B971-4B35-B2DB-1E222CB298AF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [149840 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {93CD2BEC-AA24-4B51-A3A5-F8D4DC037AF5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27405160 2020-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {97B348F5-CC25-4F27-8D99-13AEC550210F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27405160 2020-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A794076-6DAC-4C9C-978C-AA2E2A702110} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0D9F749-86B2-4976-A9E0-54001958F7FC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2FEE15D-68AA-4F79-9208-623FAA52DA39} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3845FDA-2E53-420C-A29E-846B8EFFB854} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168120 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5607273-C44E-4E0C-9326-EAA9CCD07A44} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D798F966-DF69-45FC-B00B-3D9FB6B30205} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-11] (Google Inc -> Google LLC)
Task: {D87E6E3C-C1AD-4A46-BC7C-242ED4B0E7A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DE9D776A-FBD9-40E6-832A-7D8ADD434FB6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECFB2D58-1662-41F7-9A8E-1F89625B8926} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168120 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {F051418E-876F-48DB-BF37-5F9E7D1B46D4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F0F977AF-CE85-40D0-91FF-83663DE1C206} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\..\Interfaces\{de2135c8-a46b-4a01-8b2b-6b42da61b7ea}: [NameServer] 8.8.8.8,8.8.4.4
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: bskuvze4.default
FF ProfilePath: C:\Users\Jesús\AppData\Roaming\Mozilla\Firefox\Profiles\bskuvze4.default [2020-01-07]
FF NewTab: Mozilla\Firefox\Profiles\bskuvze4.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-01-06 11:06:18&bName=&bitmask=0600
FF ProfilePath: C:\Users\Jesús\AppData\Roaming\Mozilla\Firefox\Profiles\j6mgy1r4.default-release [2020-01-24]
FF NewTab: Mozilla\Firefox\Profiles\j6mgy1r4.default-release -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-01-06 11:06:18&bName=&bitmask=0600
FF Notifications: Mozilla\Firefox\Profiles\j6mgy1r4.default-release -> hxxps://web.whatsapp.com
FF Extension: (uBlock Origin) - C:\Users\Jesús\AppData\Roaming\Mozilla\Firefox\Profiles\j6mgy1r4.default-release\Extensions\[email protected] [2019-11-25]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default [2020-01-18]
CHR Extension: (Presentaciones) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-11]
CHR Extension: (Documentos) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-11]
CHR Extension: (Google Drive) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-11]
CHR Extension: (Gliffy Diagrams) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2019-10-23]
CHR Extension: (YouTube) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-11]
CHR Extension: (Hojas de cálculo) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-11]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-13]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Jesús\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-13]
CHR HKU\S-1-5-21-2920413751-429932178-2089041241-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-07-30] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11629936 2020-01-02] (Microsoft Corporation -> Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [775904 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-05-02] (Intel Corporation) [Archivo no firmado]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [705760 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-10-18] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [1925816 2018-09-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2191032 2018-12-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [817232 2018-11-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VBoxSDS; E:\VirtualBox\VBoxSDS.exe [694016 2019-07-12] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\nvlddmkm.sys [22377560 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [237584 2019-07-12] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-07-12] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-01-24 20:34 - 2020-01-24 20:35 - 000000000 ____D C:\FRST
2020-01-24 20:21 - 2020-01-24 20:21 - 000000000 ____D C:\Program Files\Malwarebytes
2020-01-23 19:45 - 2020-01-24 20:24 - 000000000 ____D C:\Program Files\Cheat Engine 7.0
2020-01-23 19:45 - 2020-01-23 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.0
2020-01-22 18:11 - 2020-01-24 20:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-17 22:57 - 2020-01-17 22:57 - 025900032 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 022627840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 019849216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 018020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 009928208 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 008012800 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 007754752 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 007016448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 006520480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 005913600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 002870784 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 002801152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 002494464 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 002473976 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001985928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001655880 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001399096 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 001330952 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001106944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 001051664 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 001020032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000852480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000851456 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000678712 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000671232 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000571392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 000542496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000432256 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000363840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000162696 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000127520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-17 22:57 - 2020-01-17 22:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\lstelemetry.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDScan.sys
2020-01-17 22:57 - 2020-01-17 22:57 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-01-17 22:57 - 2020-01-17 22:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 22:55 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-01-17 22:55 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-01-14 23:29 - 2020-01-14 23:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Ages Medieval
2020-01-14 23:24 - 2020-01-14 23:24 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\Kalypso Media
2020-01-12 00:20 - 2020-01-12 00:21 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\DarkSoulsIII
2020-01-11 23:49 - 2020-01-11 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2020-01-07 00:06 - 2020-01-23 21:17 - 000000000 ____D C:\Users\Jesús\AppData\LocalLow\uTorrent
2020-01-07 00:05 - 2020-01-07 00:05 - 000001865 _____ C:\Users\Jesús\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2020-01-02 17:25 - 2020-01-02 17:25 - 000000000 ____D C:\Users\Jesús\AppData\Local\Electronic Arts
2020-01-02 13:30 - 2020-01-02 13:30 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\GameSparks
2020-01-02 12:33 - 2020-01-02 12:38 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\Apple Computer
2020-01-02 12:33 - 2020-01-02 12:37 - 000000000 ____D C:\Program Files (x86)\Tenorshare ReiBoot
2020-01-02 12:33 - 2020-01-02 12:33 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\Tenorshare
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-01-24 20:33 - 2019-07-12 19:19 - 000000000 ____D C:\Users\Jesús\AppData\Local\CrashDumps
2020-01-24 20:33 - 2019-07-11 16:56 - 001774234 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-24 20:33 - 2019-03-19 12:59 - 000788768 _____ C:\Windows\system32\perfh00A.dat
2020-01-24 20:33 - 2019-03-19 12:59 - 000156058 _____ C:\Windows\system32\perfc00A.dat
2020-01-24 20:33 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2020-01-24 20:32 - 2019-07-11 21:56 - 000000000 ____D C:\Users\Jesús\AppData\LocalLow\Mozilla
2020-01-24 20:32 - 2019-07-11 17:15 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-24 20:29 - 2019-07-13 10:29 - 000007000 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-01-24 20:29 - 2019-07-12 22:56 - 000005836 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-01-24 20:29 - 2019-07-12 22:56 - 000005339 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-01-24 20:28 - 2019-03-19 05:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-01-24 20:27 - 2019-07-11 22:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-24 20:27 - 2019-07-11 21:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-24 20:27 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-24 20:27 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-01-24 20:26 - 2019-12-16 18:41 - 000000000 ____D C:\AdwCleaner
2020-01-24 20:26 - 2019-07-20 23:50 - 000010761 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-01-24 20:22 - 2019-12-14 19:17 - 000000000 ____D C:\Users\Jesús\AppData\Local\cache
2020-01-24 19:51 - 2019-07-11 22:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-23 22:09 - 2019-07-19 23:49 - 000009888 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-01-23 21:17 - 2019-07-18 20:23 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\uTorrent
2020-01-23 20:03 - 2019-07-18 20:24 - 000000000 ____D C:\Users\Jesús\AppData\Local\BitTorrentHelper
2020-01-22 22:51 - 2019-07-11 21:56 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-22 22:17 - 2019-07-12 22:56 - 000009875 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-01-22 21:51 - 2019-07-11 17:04 - 000000000 ____D C:\Users\Jesús\AppData\Local\PlaceholderTileLogoFolder
2020-01-22 19:34 - 2019-07-11 21:55 - 000000000 ____D C:\Users\Jesús\AppData\Local\D3DSCache
2020-01-22 18:19 - 2019-07-11 17:01 - 000000000 ____D C:\Users\Jesús
2020-01-22 18:15 - 2019-07-11 21:56 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-22 17:49 - 2019-07-14 22:54 - 000008744 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-01-21 21:17 - 2019-07-13 21:04 - 000009872 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-01-20 22:02 - 2019-11-29 18:47 - 000000000 ____D C:\Program Files\Microsoft Office
2020-01-20 22:02 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-01-19 21:11 - 2019-07-11 17:02 - 000000000 ____D C:\Users\Jesús\AppData\Local\Packages
2020-01-18 23:41 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-18 23:41 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2020-01-18 13:53 - 2019-07-11 22:51 - 000449312 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-18 00:43 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2020-01-18 00:43 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2020-01-18 00:43 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-01-18 00:43 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2020-01-17 23:00 - 2019-07-12 22:54 - 000000000 ____D C:\Windows\system32\MRT
2020-01-17 22:59 - 2019-07-12 22:54 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-17 22:59 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2020-01-16 23:31 - 2019-07-19 17:39 - 000009758 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-01-13 23:15 - 2019-07-31 15:30 - 000009360 _____ C:\ProgramData\DisplaySessionContainer20.log_backup1
2020-01-13 21:13 - 2019-07-30 23:05 - 000011616 _____ C:\ProgramData\DisplaySessionContainer19.log_backup1
2020-01-13 16:55 - 2019-07-30 15:53 - 000009873 _____ C:\ProgramData\DisplaySessionContainer18.log_backup1
2020-01-12 23:42 - 2019-07-29 22:33 - 000009847 _____ C:\ProgramData\DisplaySessionContainer17.log_backup1
2020-01-12 20:38 - 2019-07-29 17:17 - 000009847 _____ C:\ProgramData\DisplaySessionContainer16.log_backup1
2020-01-12 14:08 - 2019-07-29 13:34 - 000009873 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
2020-01-12 01:18 - 2019-07-28 22:24 - 000009474 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
2020-01-12 00:20 - 2019-07-12 20:01 - 000000000 ____D C:\Windows\SysWOW64\directx
2020-01-10 23:57 - 2019-07-24 22:31 - 000009847 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2020-01-10 19:24 - 2019-07-23 23:34 - 000009874 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
2020-01-09 23:31 - 2019-07-23 18:46 - 000009466 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2020-01-09 23:21 - 2019-12-05 22:45 - 000000000 ____D C:\ProgramData\Origin
2020-01-09 21:03 - 2019-07-23 00:03 - 000009478 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-01-09 16:02 - 2019-07-22 16:20 - 000009875 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-01-09 15:49 - 2019-07-11 17:02 - 000000000 ____D C:\Users\Jesús\AppData\Local\VirtualStore
2020-01-07 22:10 - 2019-07-11 17:04 - 000003366 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2920413751-429932178-2089041241-1001
2020-01-07 22:10 - 2019-07-11 17:01 - 000002397 _____ C:\Users\Jesús\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-02 17:25 - 2019-07-23 14:43 - 000000000 ____D C:\Users\Jesús\AppData\Roaming\The Creative Assembly
2020-01-01 22:50 - 2019-07-22 01:03 - 000008187 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
==================== Archivos en la raíz de algunos directorios ========
2019-07-19 15:30 - 2019-07-19 15:30 - 000007608 _____ () C:\Users\Jesús\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================por ultimo Additions
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 22-01-2020 01
Ejecutado por Jesús (24-01-2020 20:35:37)
Ejecutado desde E:\Descargas
Windows 10 Pro Versión 1903 18362.592 (X64) (2019-07-11 21:53:21)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-2920413751-429932178-2089041241-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2920413751-429932178-2089041241-503 - Limited - Disabled)
Invitado (S-1-5-21-2920413751-429932178-2089041241-501 - Limited - Disabled)
Jesús (S-1-5-21-2920413751-429932178-2089041241-1001 - Administrator - Enabled) => C:\Users\Jesús
WDAGUtilityAccount (S-1-5-21-2920413751-429932178-2089041241-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\uTorrent) (Version: 3.5.5.45505 - BitTorrent Inc.)
Actualización de NVIDIA 38.0.2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.2.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
ASUS PCE-N15 WLAN Card Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.0.1.8 - )
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Dark Souls 3 (HKLM-x32\...\Dark Souls 3_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Grand Ages Medieval MULTi7 - ElAmigos versión 1.1.2 (HKLM-x32\...\{623D8992-8E24-4FC4-A1E0-100B4443ACAF}_is1) (Version: 1.1.2 - Kalypso Media Digital)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1842.12.0.1168 - Intel Corporation)
Intel(R) Network Connections 23.2.0.1006 (HKLM\...\PROSetDX) (Version: 23.2.0.1006 - Intel)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.11929.20562 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 72.0.2 (x64 es-ES)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0 - Mozilla)
MSI Kombustor 3.5.2.1 (64-bit) (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.53 - MSI)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.17 - MSI)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.48 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.1.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.1.57 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20562 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20562 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.11929.20562 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 6.0.10 (HKLM\...\{6A145EBB-FA61-4F90-BDE1-2308B1C26C0F}) (Version: 6.0.10 - Oracle Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{c30dc778-ac13-4f91-9045-fea2331ceb2e}) (Version: 10.1.17711.8088 - Intel(R) Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Packages:
=========
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-18] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa [2019-12-17] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-11] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-13] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-20] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-27] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-10-01] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.156.0_x64__dt26b99r8h8gj [2019-07-11] (Realtek Semiconductor Corp)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-2920413751-429932178-2089041241-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2920413751-429932178-2089041241-1001_Classes\CLSID\{04271989-C4D2-BEBD-8DC4-1F3F6258DDC6} -> [OneDrive - tooctrler] => E:\OneDriveVip\OneDrive - tooctrler [2019-12-11 15:49]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\nvshext.dll [2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\Jesús\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Gliffy Diagrams.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad
==================== Módulos cargados (Lista blanca) =============
2019-07-11 21:48 - 2005-07-18 12:43 - 000160256 _____ () [Archivo no firmado] C:\Program Files (x86)\MSI\Live Update\unrar.dll
==================== Alternate Data Streams (Lista blanca) ========
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
AlternateDataStreams: C:\Users\Jesús\Datos de programa:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jesús\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Modo Seguro (Lista blanca) ==================
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\sharepoint.com -> hxxps://tooctrler-files.sharepoint.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 ____N C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\Control Panel\Desktop\\Wallpaper -> E:\Escritorio\mountains-1920x1080-triangle-evening-geometric-4k-17151.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "MSIRegister"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-2920413751-429932178-2089041241-1001\...\StartupApproved\Run: => "4790e282"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{59F26B7D-2378-4D0B-AE63-BD41B155A473}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{15A0F645-BD7C-48D8-8E49-1EBA8B8409D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8F7AB877-A040-450A-B739-3FFA84F56508}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe Ningún archivo
FirewallRules: [{7975FAAA-B680-4502-A6B1-B600ADD71BD4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe Ningún archivo
FirewallRules: [{C20E8771-32D7-4EE3-924A-9893BC22DBA4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe Ningún archivo
FirewallRules: [{EC513560-B9CD-456B-8AC1-36BD3B62517A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe Ningún archivo
FirewallRules: [{DFAB5D58-A0BB-4D92-8591-3FA20E541D08}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4E3A6812-57E2-494D-9A13-74EAE7019E42}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3A0FEE4E-DFE9-4312-ADEF-DE5E3876F260}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{23A12092-B07A-4704-8494-D5A9654E8F79}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DAD7995B-A98E-446C-9AE8-AB1CDF5A2A2A}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{9FD21833-7035-43B6-81D9-B6799F9C2315}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{773C80A1-212E-40CD-91B6-1E2D1E8BEE1A}] => (Allow) D:\Games\GTA\GTA5.exe Ningún archivo
FirewallRules: [{BD9D3DF7-2D6F-4A1B-97C8-21037605731A}] => (Allow) D:\Games\GTA\GTA5.exe Ningún archivo
FirewallRules: [{9D8464B6-2483-473F-A005-A95771CCD02A}] => (Allow) C:\Users\Jesús\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{4671F51A-3B14-4C10-BE29-0CE8D87FF09F}] => (Allow) C:\Users\Jesús\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9EE48763-D144-45A4-BA04-869EA26B4725}] => (Allow) E:\Steam\steamapps\common\Europa Universalis IV\eu4.exe Ningún archivo
FirewallRules: [{7C95A87D-C52C-40EC-BC76-5ABF5AD34E1A}] => (Allow) E:\Steam\steamapps\common\Europa Universalis IV\eu4.exe Ningún archivo
FirewallRules: [{B2CE5E7E-4190-4074-87E6-6D86F660941F}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1386FC9F-D868-4773-BADD-1E15C83B8AFD}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{EACD9803-D28A-4E2D-BEA1-761F9E8D8275}E:\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) E:\steam\steamapps\common\total war rome ii\rome2.exe Ningún archivo
FirewallRules: [UDP Query User{196FA11E-1E0D-40DB-B87D-C807A09E976F}E:\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) E:\steam\steamapps\common\total war rome ii\rome2.exe Ningún archivo
FirewallRules: [TCP Query User{3EB30324-4351-4A05-A4F2-5C8C11A9B2A5}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Ningún archivo
FirewallRules: [UDP Query User{BDF59312-A60B-477F-90CE-014C71B80F7D}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe Ningún archivo
FirewallRules: [{867FC259-98B6-46E7-A13F-9273AF556034}] => (Allow) E:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe Ningún archivo
FirewallRules: [{BC042C27-65C9-4D61-9848-F9DC949C0E52}] => (Allow) E:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe Ningún archivo
FirewallRules: [TCP Query User{6CC3540C-7621-424C-89C5-8AF8D258E90E}E:\descargas\medieval.kingdom.wars.-pivigames.blog\medieval.kingdom.wars.-pivigames.blog\dof.exe] => (Block) E:\descargas\medieval.kingdom.wars.-pivigames.blog\medieval.kingdom.wars.-pivigames.blog\dof.exe Ningún archivo
FirewallRules: [UDP Query User{48467DBC-43A6-42FB-AE12-4CB61D6248BC}E:\descargas\medieval.kingdom.wars.-pivigames.blog\medieval.kingdom.wars.-pivigames.blog\dof.exe] => (Block) E:\descargas\medieval.kingdom.wars.-pivigames.blog\medieval.kingdom.wars.-pivigames.blog\dof.exe Ningún archivo
FirewallRules: [TCP Query User{31C00687-42FF-4F1E-86B6-5BCA50F7BFE2}C:\java\bin\javaw.exe] => (Allow) C:\java\bin\javaw.exe Ningún archivo
FirewallRules: [UDP Query User{58A516BF-CB29-44EE-B60E-1DC424F08878}C:\java\bin\javaw.exe] => (Allow) C:\java\bin\javaw.exe Ningún archivo
FirewallRules: [{E89F8506-FBC8-443E-BEAA-02677E5BE523}] => (Allow) E:\Steam\steamapps\common\NBA 2K20\NBA2K20.exe (Take-Two Interactive Software, Inc. -> ) [Archivo no firmado]
FirewallRules: [{FD0A7FB3-7981-44C6-820D-4E6F881DB8FD}] => (Allow) E:\Steam\steamapps\common\NBA 2K20\NBA2K20.exe (Take-Two Interactive Software, Inc. -> ) [Archivo no firmado]
FirewallRules: [{666CD91F-5D49-4767-9731-ECEADDD2DCEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{621D4A1D-CDFC-4025-B718-B018F791EA76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EC44F7D3-C366-4758-96AF-A9F0CD981827}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D1E4BC12-572A-4EEB-8031-F64ABE0ECF02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DAC38E5E-9C83-405B-A3D4-5C4B9206BF87}] => (Allow) E:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe Ningún archivo
FirewallRules: [{819146EE-DDAF-4A0A-A451-2041D345B2A8}] => (Allow) E:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe Ningún archivo
FirewallRules: [{050D371F-0072-4C74-9C61-507A6C67CDE9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDB54DDA-E1D5-482E-B9FF-5F4E21168FD0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B29F2353-BC97-4B0B-9CBE-EC172ECA1AF2}E:\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) E:\steam\steamapps\common\total war rome ii\rome2.exe Ningún archivo
FirewallRules: [UDP Query User{69690029-A0CF-4C01-B1C5-A16929110EDF}E:\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) E:\steam\steamapps\common\total war rome ii\rome2.exe Ningún archivo
FirewallRules: [{3528CBB1-C699-418D-AEA1-E3A2F68C0E74}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe Ningún archivo
FirewallRules: [{2AF13551-5291-45D6-A639-ED0C7BB8FA8D}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe Ningún archivo
FirewallRules: [{83D4F01D-8645-4416-8CD8-E1492E83B867}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe Ningún archivo
FirewallRules: [{2729A694-7F87-44AD-AA19-0E35FF6910E2}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe Ningún archivo
FirewallRules: [{EB5C18EA-8150-437F-9E63-71C2124D9C3B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D612C468-1022-43D9-87DD-4F9D99450875}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1DBC8435-049A-41DF-BDE0-3F1B32F1D28B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{536E9C3D-E76E-4739-B19C-23EB93BDD4DD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1D1E55D1-374D-4A75-8E82-2D83DB94271B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D59F923D-F9C6-45B2-AD9E-8D279CFAA9C6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{920045A9-6DEE-4FBD-8317-756570DBBE9F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{819FFE10-41A8-4253-BA61-1BD6AC60FA2B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C8F9206F-CDAC-4ED0-893F-D1A4705AF30E}] => (Allow) E:\Steam\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive Ab (Publ) -> Paradox Interactive)
FirewallRules: [{6AFB6796-C95A-40B3-A228-8685676053DD}] => (Allow) E:\Steam\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive Ab (Publ) -> Paradox Interactive)
FirewallRules: [TCP Query User{EC141C9E-5C94-4119-A7D2-EB0F06876DF5}C:\users\jesús\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Block) C:\users\jesús\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{00B53F71-3AAF-409F-9F72-736CE438C738}C:\users\jesús\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Block) C:\users\jesús\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{0B4BCB9A-CB5D-49F7-A93F-191D410D4C75}E:\games\grand ages medieval\grandagesmedieval.exe] => (Block) E:\games\grand ages medieval\grandagesmedieval.exe Ningún archivo
FirewallRules: [UDP Query User{97418511-D417-4788-8607-F2457285AE2B}E:\games\grand ages medieval\grandagesmedieval.exe] => (Block) E:\games\grand ages medieval\grandagesmedieval.exe Ningún archivo
FirewallRules: [TCP Query User{3789C040-67D5-46C0-8914-B00191884EBF}D:\games\grand ages medieval\grandagesmedieval.exe] => (Block) D:\games\grand ages medieval\grandagesmedieval.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [UDP Query User{61EE7CA4-9EF6-434E-8FF0-2458DA0E5748}D:\games\grand ages medieval\grandagesmedieval.exe] => (Block) D:\games\grand ages medieval\grandagesmedieval.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{72D4CCB8-FD39-4646-B8FF-1D41521DFF14}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BB3BC0B-1AD0-4AE1-8ECB-B515B72E23B2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{21576984-155A-4CA6-9C3C-6AFE836330BC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1F277D03-B7CA-4AEC-B6EC-0186D28EC57E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Puntos de Restauración =========================
ATENCIÓN: Restaurar Sistema está deshabilitado (Total:111.16 GB) (Free:55.44 GB) (50%)
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (01/24/2020 08:33:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.18362.418, marca de tiempo: 0x5d995690
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.18362.387, marca de tiempo: 0x4361b720
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000006db8e
Identificador del proceso con errores: 0x2980
Hora de inicio de la aplicación con errores: 0x01d5d2ecd4d43ba2
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\ucrtbase.dll
Identificador del informe: 3abf2571-65b6-4411-8de4-e9595a4ddfa0
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI
Error: (01/24/2020 08:31:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.18362.418, marca de tiempo: 0x5d995690
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.18362.387, marca de tiempo: 0x4361b720
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000006db8e
Identificador del proceso con errores: 0x2234
Hora de inicio de la aplicación con errores: 0x01d5d2ec57ea4800
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\ucrtbase.dll
Identificador del informe: b09828d9-9eee-419b-9ea7-932ff27c6ff5
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI
Error: (01/24/2020 08:27:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/24/2020 08:27:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/24/2020 08:27:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (01/24/2020 06:46:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/24/2020 06:46:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=7
Error: (01/23/2020 10:07:41 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Errores del sistema:
=============
Error: (01/24/2020 08:32:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (01/24/2020 08:32:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (01/24/2020 08:29:16 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.
Error: (01/24/2020 08:29:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Realtek Audio Universal Service terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.
Error: (01/24/2020 08:29:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (01/24/2020 08:29:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (01/24/2020 08:27:30 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.
Error: (01/24/2020 08:27:28 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.
Windows Defender:
===================================
Date: 2020-01-07 00:24:41.986
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {308036A9-A15E-4192-B8EF-F7C924655639}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-01-06 19:15:02.330
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {2541EF89-CFF2-492E-9C56-20C466F66BC3}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-01-06 19:04:57.070
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4939A052-3060-413A-9BA3-96F823270445}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-01-05 22:38:54.460
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {663E1C53-F6C1-424A-BB30-678299A4A611}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2019-12-19 22:19:06.335
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {C2D0E5FB-11A9-4813-9258-EDCCE32EC4BC}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2019-11-23 23:15:16.021
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-22 20:57:49.765
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-22 20:55:52.615
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-22 20:55:05.370
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-13 17:55:22.341
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-08 21:32:05.447
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-11-01 00:35:05.546
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-10-31 22:53:34.979
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7b4c0e0f3e6ce7f4\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
==================== Información de la memoria ===========================
BIOS: American Megatrends Inc. 1.50 02/21/2019
Placa base: Micro-Star International Co., Ltd. MPG Z390 GAMING PLUS (MS-7B51)
Procesador: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Porcentaje de memoria en uso: 23%
RAM física total: 16318.54 MB
RAM física disponible: 12453.34 MB
Virtual total: 18750.54 MB
Virtual disponible: 13316.42 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:111.16 GB) (Free:55.44 GB) NTFS
Drive d: (SSD_M2) (Fixed) (Total:238.47 GB) (Free:208.77 GB) NTFS
Drive e: (Disc_Mec) (Fixed) (Total:931.5 GB) (Free:775.26 GB) NTFS
\\?\Volume{77195964-2269-4b64-bc1f-ac37e1a25c10}\ (Recuperación) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS
\\?\Volume{90f0f1de-a27c-45a1-ab0c-6abc34fcbaaa}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 6ABE5055)
Partition 1: (Not Active) - (Size=238.5 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================por ultimo te comento que el ccleaner no le pase porque tengo el equipo con un SSD y no quiero q tenga problemas
Un saludo y espero tu repsuesta Muchas gracias
Y que tipo de problemas va a tener un disco SSD por usar CCleaner o cualquier otra herramienta de limpieza de archivos basura y/o limpieza del registro de windows. 
Me lo puedes explicar…??
Y coméntanos también como sigue el problema planteado inicialmente…
Según tengo entendido ¿no existia un problema que al pasar el CCleaner te podia dañar o algo asi el disco? a ver no se si sera cierto pero no le pase por eso, que posiblemente me equivoque no se, en cuanto al problema no le e vuelto a ver en mi PC, igual ya se a quitado, tenia otra pregunta ¿este virus o lo que fuera como crees que se pudo meter en mi PC? y en caso de que siguiese ¿que debería hacer?
Un saludo
Hola.
CCleaner tuvo otros tipos de problemas hace YA algún tiempo, pero NUNCA NADA relativo a que pudiera dañar o afectar a los discos donde se utilice, es un software totalmente fiable en ese sentido y en otros muchos. 
La infección YA fue eliminada por la herramienta que te indique anteriormente(Malwarebytes). 
Esa infección se “colo” por algún archivo que descargaste y ejecutaste en TU PC o bien que habías descargado desde el programa “µTorrent”. 
Perfecto y ahora solo queda eliminar las herramientas usadas.
Para hacerlo descarga DelFix.exe en tu escritorio.
Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).
Marca todas las casillas, y pulsas en Run
Se abrirá el informe (DelFix.txt), puedes cerrarlo.
Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos.
Tema Solucionado.
Saludos, Javier.