Notepad.exe consumiendo memoria RAM

Hola!

Lo primero de todo agradecer la labor de este foro, es mi primer mensaje pero no es la primera vez que me es de ayuda para solucionar problemas con mis equipos. En cuanto al problema que describo en el título del tema, si finalizaba el proceso de momento no volvía aparecer, pero vistas las recomendaciones en temas similares me he decidido por seguir las instrucciones que se daban sobre ejecutar los siguientes programas:

  1. CCleaner
  2. Malwarebytes
  3. AdwCleaner
  4. Junkware Removal Tool
  5. Farbar Recovery Tool

Pegaré los informes a continuación como soléis solicitar por si aconsejáis alguna acción adicional, aunque parece que el problema ha desistido por el momento. A parte del elevado tiempo de análisis de Malwarebytes, lo único que me ha llamado la atención es que el AdwCleaner ha encontrado 3 amenazas pero ha “fallado” en la eliminación/cuarentena de una de ellas.

Gracias de antemano!!

Informe Malwarebytes


Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 29/4/20
Hora del análisis: 17:16
Archivo de registro: 70f8c8b2-8a2c-11ea-b789-88ae1df10708.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.875
Versión del paquete de actualización: 1.0.23154
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.778)
CPU: x64
Sistema de archivos: NTFS
Usuario: DAVID-PC\monic

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 780272
Amenazas detectadas: 12
Amenazas en cuarentena: 0
Tiempo transcurrido: 44 hr, 20 min, 14 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 2
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\FAD26F8, Sin acciones por parte del usuario, 5581, 781622, 1.0.23154, , ame, 

Archivo: 10
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\FAD26F8\4B7DDF9.AU3, Sin acciones por parte del usuario, 5581, 781622, 1.0.23154, , ame, 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43\0fdc092, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43\27-04-2020.log, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43\28-04-2020.log, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43\29-04-2020.log, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\284ef43\2a1895f, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\eaaehca.exe, Sin acciones por parte del usuario, 5581, 781622, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\fad26f8\pe.bin, Sin acciones por parte del usuario, 5581, 781622, , , , 
Generic.Malware/Suspicious, C:\INS\TOTALCMD\TOTAL COMMANDER V7.50 FINAL ML (ESPAñOL),\KEYGEN & PATCH\KEYGEN.EXE, Sin acciones por parte del usuario, 0, 392686, 1.0.23154, , shuriken, 
Generic.Malware/Suspicious, C:\INS\TOTALCMD\KEYGEN.EXE, Sin acciones por parte del usuario, 0, 392686, 1.0.23154, , shuriken, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Informe AdwCleaner


# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build:    04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    05-01-2020
# Duration: 00:00:02
# OS:       Windows 10 Home
# Cleaned:  2
# Failed:   1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Conduit
Deleted       HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Not Deleted   http://startsear.info

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1510 octets] - [01/05/2020 15:09:01]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Informe JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64 
Ran by David (Administrator) on 01/05/2020 at 15:19:12.36
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2 

Successfully deleted: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 
Successfully deleted: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 



Registry: 1 

Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19 (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/05/2020 at 15:34:28.05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Informe FRST (parte 1)


Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 30-04-2020
Ejecutado por David (administrador) sobre DAVID-PC (TOSHIBA Satellite L670) (01-05-2020 15:44:19)
Ejecutado desde C:\Users\David\Desktop
Perfiles cargados: David (Perfiles disponibles: David & monic)
Platform: Windows 10 Home Versión 1903 18362.778 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(GoPro, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [BoxSync] => C:\Program Files\Box\Box Sync\BoxSync.exe [5995648 2018-03-02] (Box, Inc. -> Box, Inc.)
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-12] (GoPro, Inc. -> )
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388936 2020-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6856192 2020-04-28] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3477640 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Run: [Spotify] => C:\Users\David\AppData\Roaming\Spotify\Spotify.exe [22932200 2020-04-13] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Run: [com.squirrel.slack.slack] => C:\Users\David\AppData\Local\slack\slack.exe [306704 2020-04-12] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\David\AppData\Local\Microsoft\Teams\Update.exe [2347880 2020-04-28] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla e Inicio rápido de OneNote 2007.lnk [2020-04-24]
ShortcutTarget: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restricción ? <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {052CD03D-4C41-4341-8409-A428A4C2287F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {0C7F54C6-B762-48DD-ACC3-A855A63A9FEA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {50509A1A-D1F2-45F3-9372-5ABA4E99A62E} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2020-02-26] () [Archivo no firmado]
Task: {60B8244E-0C48-4E43-ACD4-A6ACE7D440D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-24] (Google Inc -> Google Inc.)
Task: {89D19035-4667-46DB-9536-A292B84A805B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-15] (Adobe Inc. -> Adobe)
Task: {BDFB5F47-2BA1-4B88-89AD-6A6A45A68D6F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C123BD36-0765-4A0C-B5E5-E8EB6BB08BE2} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_pepper.exe [1454136 2020-04-15] (Adobe Inc. -> Adobe)
Task: {D8F73268-8C4C-43D2-9B2E-BE2C7C4BE3B5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D9611F91-A367-43EF-BAFA-6D6BA15204BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F6D9EA3C-1BE5-47CF-A613-92FE1A5E5210} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-24] (Google Inc -> Google Inc.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 212.166.211.2 212.166.132.96
Tcpip\..\Interfaces\{5b7cef12-c905-415c-93fa-2be41e626d08}: [DhcpNameServer] 212.166.211.2 212.166.132.96
Tcpip\..\Interfaces\{7de37a57-34de-40a8-9ae6-af7a53f6ad46}: [DhcpNameServer] 212.166.211.2 212.166.132.96

Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Edge: 
======
DownloadDir: C:\Users\David\Downloads

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2018-03-25] [Heredado] [no firmado]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-3401005357-1298351030-3058841220-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\David\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-10] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-3401005357-1298351030-3058841220-1000: SkypeForBusinessPlugin-16.2 -> C:\Users\David\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3401005357-1298351030-3058841220-1000: SkypeForBusinessPlugin64-16.2 -> C:\Users\David\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default [2020-05-01]
CHR Notifications: Default -> hxxps://app.houseparty.com; hxxps://app.slack.com; hxxps://web.whatsapp.com; hxxps://www.facebook.com
CHR StartupUrls: Default -> "hxxp://startsear.info"
CHR Extension: (Presentaciones) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-24]
CHR Extension: (Documentos) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-24]
CHR Extension: (Google Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-24]
CHR Extension: (StraTistiX with aRPEe Score for Strava) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\bilbbbdgdimchenccmooakpfomfajepd [2018-04-06]
CHR Extension: (Llamadas de Skype) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2018-03-24]
CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-24]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-07]
CHR Extension: (Houseparty) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjkkodhikogdenlfobgbhkggogejidim [2020-03-18]
CHR Extension: (Elevate for Strava) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhiaggccakkgdfcadnklkbljcgicpckn [2020-03-12]
CHR Extension: (Dropbox para Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-10-28]
CHR Extension: (Adobe Acrobat) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-12]
CHR Extension: (Chrome Remote Desktop) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-03-20]
CHR Extension: (Hojas de cálculo) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-24]
CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-19]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (Slinky Classic) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfjhlpgahgkpncekpdkgfoeppikldble [2018-03-25]
CHR Extension: (AllCast Receiver) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjbljnpdahefgnopeohlaeohgkiidnoe [2020-04-01]
CHR Extension: (Google Keep: notas y listas) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2020-04-30]
CHR Extension: (Chrome Remote Desktop) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2020-03-20]
CHR Extension: (Player para ver Movistar+) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2020-01-27]
CHR Extension: (Hangouts de Google) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2020-03-16]
CHR Extension: (Google Maps) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-03-24]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Outlook.com) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2018-03-24]
CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-29]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [255472 2015-12-20] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36680 2018-03-02] (Box, Inc. -> Box, Inc.)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\83.0.4103.2\remoting_host.exe [72176 2020-04-03] (Google LLC -> Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-04-28] (Dropbox, Inc -> Dropbox, Inc.)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-12] (GoPro, Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-29] (Malwarebytes Inc -> Malwarebytes)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [190496 2010-03-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11453784 2019-10-10] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21648880 2015-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674288 2015-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 Andbus; C:\WINDOWS\System32\drivers\lgandbus64.sys [19456 2013-06-04] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-04-29] (Malwarebytes Corporation -> Malwarebytes)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2016-06-13] (Sony Mobile Communications AB -> Sony Mobile Communications)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Chicony Electronics Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-04-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-04-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-05-01] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [124560 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039bus; C:\WINDOWS\System32\drivers\s1039bus.sys [127600 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [54424 2015-08-06] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Apple, Inc.) [Archivo no firmado]
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-25] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Informe FRST (parte 2)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-01 15:44 - 2020-05-01 15:45 - 000025719 _____ C:\Users\David\Desktop\FRST.txt
2020-05-01 15:44 - 2020-05-01 15:44 - 000000000 ____D C:\Users\David\Desktop\FRST-OlderVersion
2020-05-01 15:43 - 2020-05-01 15:45 - 000000000 ____D C:\FRST
2020-05-01 15:34 - 2020-05-01 15:34 - 000000986 _____ C:\Users\David\Desktop\JRT.txt
2020-05-01 15:32 - 2020-05-01 15:34 - 000000000 ____D C:\Users\David\AppData\LocalLow\IGDump
2020-05-01 15:16 - 2020-05-01 15:16 - 000001642 _____ C:\Users\David\Desktop\AdwCleaner[C00].txt
2020-05-01 15:13 - 2020-05-01 15:13 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-05-01 15:12 - 2020-05-01 15:12 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-05-01 15:12 - 2020-05-01 15:12 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-05-01 15:12 - 2020-05-01 15:12 - 000124560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-05-01 15:06 - 2020-05-01 15:10 - 000000000 ____D C:\AdwCleaner
2020-05-01 14:32 - 2020-05-01 14:32 - 000003108 _____ C:\Users\David\Desktop\MB_analisis_v2.txt
2020-05-01 14:28 - 2020-05-01 14:28 - 000003203 _____ C:\Users\David\Desktop\MB_analisis.txt
2020-05-01 10:09 - 2020-05-01 10:09 - 000000000 ____D C:\Users\monic\AppData\Local\mbamtray
2020-04-29 17:12 - 2020-04-29 17:12 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-04-29 17:12 - 2020-04-29 17:12 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-04-29 17:12 - 2020-04-29 17:12 - 000000000 ____D C:\Users\David\AppData\Local\mbamtray
2020-04-29 17:12 - 2020-04-29 17:12 - 000000000 ____D C:\Users\David\AppData\Local\mbam
2020-04-29 17:12 - 2020-04-29 17:11 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-04-29 17:11 - 2020-04-29 17:11 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-04-29 17:11 - 2020-04-29 17:11 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-29 17:08 - 2020-04-29 17:08 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-29 17:05 - 2020-04-29 17:05 - 000267464 _____ C:\Users\David\Desktop\RegistroCCleaner_cc_20200429_170432.reg
2020-04-29 16:57 - 2020-04-29 16:58 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-04-29 16:57 - 2020-04-29 16:57 - 000002874 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-04-29 16:57 - 2020-04-29 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-29 16:57 - 2020-04-29 16:57 - 000000000 ____D C:\Program Files\CCleaner
2020-04-29 15:54 - 2020-04-29 15:54 - 000866508 _____ C:\Users\David\Desktop\MB_manual.pdf
2020-04-29 15:54 - 2020-04-29 15:54 - 000499142 _____ C:\Users\David\Desktop\AdwCleaner_manual.pdf
2020-04-29 15:54 - 2020-04-29 15:54 - 000359189 _____ C:\Users\David\Desktop\FRST_manual.pdf
2020-04-29 15:53 - 2020-04-29 15:53 - 000504438 _____ C:\Users\David\Desktop\CCleaner_manual.pdf
2020-04-29 15:52 - 2020-04-29 15:52 - 001064431 _____ C:\Users\David\Desktop\Notepad-exe_general.pdf
2020-04-29 15:43 - 2020-05-01 15:44 - 002283520 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe
2020-04-29 15:42 - 2020-04-29 15:42 - 022267336 _____ (Piriform Software Ltd) C:\Users\David\Desktop\ccsetup565.exe
2020-04-29 15:42 - 2020-04-29 15:42 - 008196784 _____ (Malwarebytes) C:\Users\David\Desktop\adwcleaner_8.0.4.exe
2020-04-29 15:42 - 2020-04-29 15:42 - 001980016 _____ (Malwarebytes) C:\Users\David\Desktop\MBSetup.exe
2020-04-29 15:40 - 2020-04-29 15:40 - 001790024 _____ (Malwarebytes) C:\Users\David\Desktop\JRT.exe
2020-04-29 08:34 - 2020-04-29 08:34 - 000001132 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent.lnk
2020-04-29 07:49 - 2020-04-29 07:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-04-28 21:55 - 2020-04-28 21:55 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-04-28 21:55 - 2020-04-28 21:55 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-04-28 21:55 - 2020-04-28 21:55 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-04-28 21:55 - 2020-04-28 21:55 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-04-27 20:45 - 2020-04-27 20:45 - 000000000 ____D C:\ProgramData\Intel
2020-04-27 10:25 - 2020-04-27 15:13 - 000036494 _____ C:\Users\David\Desktop\Curva_PSD.xlsx
2020-04-26 10:25 - 2020-04-26 10:25 - 000707978 _____ C:\Users\monic\Downloads\Resumen actividades PII - ADAPTACION.pdf
2020-04-25 19:20 - 2020-04-25 19:20 - 000000000 ____D C:\Users\monic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-04-25 19:19 - 2020-04-25 19:20 - 000000000 ____D C:\Users\monic\AppData\Roaming\Zoom
2020-04-25 11:19 - 2020-04-25 11:19 - 000885840 _____ C:\Users\monic\Downloads\Dialnet-DisenoYEvaluacionDeUnProcesoDeFormacionEnHabilidad-6736095.pdf
2020-04-25 10:31 - 2020-04-25 10:32 - 000000000 ____D C:\Users\David\Desktop\NewMix
2020-04-24 13:29 - 2020-04-24 13:30 - 055391303 _____ C:\Users\monic\Downloads\Alinares_TFM.pdf
2020-04-24 13:29 - 2020-04-24 13:29 - 000328533 _____ C:\Users\monic\Downloads\Dialnet-FormulacionQuimicaInorganicaEnEducacionSecundariaP-2750865.pdf
2020-04-24 12:55 - 2020-04-24 12:55 - 000219702 _____ C:\Users\monic\Downloads\Dialnet-EstrategiasDidacticasParaLaSolucionCooperativaDeCo-1034535.pdf
2020-04-23 11:16 - 2020-04-23 11:16 - 000000000 ____D C:\Users\monic\AppData\Roaming\MPC-HC
2020-04-22 15:27 - 2020-04-22 15:27 - 005659087 _____ C:\Users\David\Desktop\Forerunner735XT_OM_ES.pdf
2020-04-21 07:48 - 2020-04-21 07:49 - 000000000 ____D C:\Users\David\Desktop\Realtek
2020-04-20 20:20 - 2020-04-20 20:43 - 297075269 _____ C:\Users\monic\Desktop\Fotos_Laura.zip
2020-04-20 16:14 - 2020-04-20 16:14 - 001382192 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-04-20 16:14 - 2020-04-20 16:14 - 000873424 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-04-20 16:14 - 2020-04-20 16:14 - 000158664 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-04-20 16:14 - 2020-04-20 16:14 - 000075504 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-04-20 16:13 - 2020-04-20 16:14 - 003121088 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-04-20 16:13 - 2020-04-20 16:13 - 003410288 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-04-20 16:13 - 2020-04-20 16:13 - 000986960 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 003677128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-04-20 16:12 - 2020-04-20 16:12 - 003509168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 003205576 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 001353288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000691648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000392832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000343672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000220352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000192936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000116504 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-04-20 16:12 - 2020-04-20 16:12 - 000093872 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-04-20 16:11 - 2020-04-20 16:11 - 015692268 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-04-20 16:11 - 2020-04-20 16:11 - 002922952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-04-20 16:11 - 2020-04-20 16:11 - 000327240 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-04-20 16:11 - 2020-04-20 16:11 - 000327240 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-04-20 16:08 - 2020-04-20 16:08 - 000122288 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-04-19 20:27 - 2020-04-20 16:19 - 000000000 ____D C:\WINDOWS\LastGood
2020-04-19 12:47 - 2020-04-19 12:47 - 000080339 _____ C:\Users\monic\Downloads\2383-4842-1-PB.pdf
2020-04-18 20:18 - 2020-04-18 20:18 - 000054593 _____ C:\Users\monic\Downloads\Coevaluacióna_MartaBilbao.pdf
2020-04-18 18:56 - 2020-04-18 18:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-04-18 18:55 - 2020-04-20 16:12 - 006129096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-04-18 18:55 - 2020-04-20 16:12 - 000023656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-04-18 18:55 - 2020-04-20 16:11 - 003615384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-04-18 18:53 - 2017-06-29 18:54 - 004059960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2020-04-18 18:53 - 2017-06-29 18:53 - 001616680 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2020-04-18 18:53 - 2017-06-29 18:53 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2020-04-18 18:53 - 2017-06-29 18:52 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2020-04-18 18:53 - 2017-06-29 18:52 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2020-04-18 08:44 - 2020-04-18 08:44 - 000149141 _____ C:\Users\monic\Downloads\CoevaluaciónaMonicaTorres.pdf
2020-04-16 19:26 - 2020-04-16 19:26 - 001598202 _____ C:\Users\monic\Downloads\activity_5284082_2020-04-16_18_05_53.tcx
2020-04-16 18:01 - 2020-04-16 18:01 - 000000000 ____D C:\Users\monic\Documents\Ingles
2020-04-16 17:32 - 2020-04-20 21:35 - 000000000 ____D C:\Users\monic\Desktop\Fotos_buenas
2020-04-16 14:26 - 2020-04-28 15:45 - 000002368 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-04-15 10:08 - 2020-04-15 10:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-04-15 10:08 - 2020-04-15 10:08 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-04-15 10:08 - 2020-04-15 10:08 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-04-15 10:07 - 2020-04-15 10:07 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-04-15 10:07 - 2020-04-15 10:07 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-04-15 10:07 - 2020-04-15 10:07 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-04-15 10:07 - 2020-04-15 10:07 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-04-15 10:07 - 2020-04-15 10:07 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-04-15 10:07 - 2020-04-15 10:07 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-15 10:07 - 2020-04-15 10:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-04-15 10:06 - 2020-04-15 10:06 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-04-15 10:06 - 2020-04-15 10:06 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-04-15 10:06 - 2020-04-15 10:06 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-04-15 10:06 - 2020-04-15 10:06 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-04-15 10:06 - 2020-04-15 10:06 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-04-15 10:06 - 2020-04-15 10:06 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-04-15 10:05 - 2020-04-15 10:05 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-04-15 10:05 - 2020-04-15 10:05 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-04-15 10:05 - 2020-04-15 10:05 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-04-15 09:22 - 2020-04-15 09:23 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-15 09:21 - 2020-04-15 09:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-13 20:42 - 2020-04-20 07:46 - 000010244 _____ C:\Users\David\Desktop\Compras.xlsx
2020-04-12 11:18 - 2020-04-12 11:18 - 000760974 _____ C:\Users\monic\Downloads\AS02108.pdf
2020-04-12 10:58 - 2020-04-12 10:58 - 001255660 _____ C:\Users\monic\Downloads\FORMULA INORG 4º ESO.pdf
2020-04-10 21:40 - 2020-04-10 21:39 - 000001931 _____ C:\Users\David\Desktop\Start Zoom.lnk
2020-04-10 21:39 - 2020-04-10 21:39 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-04-09 09:32 - 2020-04-19 20:20 - 000000000 ____D C:\Users\David\AppData\Local\ElevatedDiagnostics
2020-04-06 16:35 - 2020-04-06 16:35 - 000000000 ____D C:\ProgramData\ATI
2020-04-05 11:09 - 2020-04-18 11:43 - 000001456 _____ C:\Users\monic\Desktop\Practicum II.lnk
2020-04-05 11:08 - 2020-04-11 11:01 - 000001438 _____ C:\Users\monic\Desktop\Innovación.lnk
2020-04-05 11:07 - 2020-04-11 13:13 - 000001573 _____ C:\Users\monic\Desktop\Habilidades comunicativas.lnk
2020-04-05 11:07 - 2020-04-05 11:12 - 000001400 _____ C:\Users\monic\Desktop\Diseño.lnk
2020-04-02 21:38 - 2020-04-08 17:54 - 000000000 ____D C:\Users\David\Documents\Rouvy
2020-04-02 21:38 - 2020-04-02 21:38 - 000000000 ____D C:\Users\David\AppData\Local\VirtualTraining
2020-04-02 21:16 - 2020-04-02 21:16 - 000003280 _____ C:\WINDOWS\system32\Tasks\klcp_update
2020-04-02 21:15 - 2020-04-02 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2020-04-02 21:15 - 2020-04-02 21:15 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2020-04-02 21:14 - 2020-04-02 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rouvy
2020-04-02 21:12 - 2020-04-02 21:12 - 000000000 ____D C:\Program Files (x86)\VirtualTraining
2020-04-02 20:46 - 2020-04-25 15:14 - 000000000 ____D C:\Users\David\AppData\Roaming\goldencheetah.org
2020-04-02 20:46 - 2020-04-25 15:14 - 000000000 ____D C:\Users\David\AppData\Local\GoldenCheetah
2020-04-02 20:44 - 2020-04-02 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R
2020-04-02 20:43 - 2020-04-02 20:43 - 000000000 ____D C:\Program Files\R
2020-04-02 20:41 - 2020-04-02 20:41 - 099529584 _____ (VirtualTraining) C:\Users\David\Desktop\setup_rouvy.exe
2020-04-02 20:35 - 2020-04-02 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Golden Cheetah
2020-04-02 20:35 - 2020-04-02 20:45 - 000000000 ____D C:\Program Files\Golden Cheetah
2020-04-02 13:59 - 2020-04-30 16:40 - 000000000 ____D C:\Users\David\AppData\Roaming\Slack
2020-04-02 13:59 - 2020-04-12 20:10 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2020-04-02 13:58 - 2020-04-12 20:10 - 000000000 ____D C:\Users\David\AppData\Local\slack
2020-04-01 15:35 - 2020-04-01 15:35 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft Teams
2020-04-01 15:34 - 2020-04-16 14:26 - 000000000 ____D C:\Users\David\AppData\Local\SquirrelTemp
2020-04-01 11:04 - 2020-04-01 11:04 - 037451656 _____ C:\Users\David\Desktop\RUIZA 1.mp4
2020-04-01 11:03 - 2020-04-01 11:03 - 109787223 _____ C:\Users\David\Desktop\ruiza.MP4

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-01 15:37 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-01 15:12 - 2018-06-14 23:43 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-01 15:11 - 2019-09-09 03:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-01 15:10 - 2019-03-19 06:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-05-01 15:02 - 2019-09-09 02:58 - 000447512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-01 15:01 - 2019-09-09 02:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-01 10:13 - 2019-11-22 20:43 - 000000000 ___RD C:\Users\monic\Google Drive
2020-05-01 02:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-30 19:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-30 19:14 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-04-30 17:24 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-04-30 06:50 - 2018-03-24 18:31 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-29 17:12 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-04-29 17:02 - 2019-07-29 17:43 - 000000000 ___DC C:\WINDOWS\Panther
2020-04-29 17:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-04-29 17:02 - 2018-03-29 12:23 - 000000000 ____D C:\Users\David\AppData\Roaming\uTorrent
2020-04-29 11:58 - 2018-12-16 12:10 - 000000000 ____D C:\Users\David\AppData\Roaming\vlc
2020-04-29 08:36 - 2018-05-19 09:18 - 000000000 ____D C:\Users\David\AppData\LocalLow\uTorrent
2020-04-29 08:32 - 2019-04-05 20:54 - 000000000 ____D C:\Users\David\AppData\Local\BitTorrentHelper
2020-04-29 08:32 - 2015-01-30 19:04 - 000000000 ____D C:\uTorrent
2020-04-29 07:54 - 2018-03-24 18:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-04-28 19:18 - 2020-03-13 21:14 - 000000000 ____D C:\Users\David\Documents\Grabaciones de sonido
2020-04-27 20:27 - 2020-03-22 12:05 - 000000000 ____D C:\Users\David\Desktop\Videos cuarentena
2020-04-25 15:12 - 2015-01-28 21:41 - 000000000 ___RD C:\Users\David\Dropbox
2020-04-23 11:04 - 2019-10-17 20:24 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3401005357-1298351030-3058841220-1014
2020-04-23 11:04 - 2019-10-17 20:24 - 000000000 ___RD C:\Users\monic\OneDrive
2020-04-23 11:04 - 2019-10-17 20:17 - 000002401 _____ C:\Users\monic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-22 10:28 - 2018-03-25 18:23 - 000000000 ____D C:\Users\David\AppData\Local\Spotify
2020-04-22 10:28 - 2018-03-25 18:22 - 000000000 ____D C:\Users\David\AppData\Roaming\Spotify
2020-04-21 22:10 - 2020-03-28 10:51 - 000000000 ____D C:\Users\monic\Documents\Libros
2020-04-20 16:18 - 2018-03-24 17:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-04-20 15:50 - 2019-09-09 03:37 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3401005357-1298351030-3058841220-1000
2020-04-20 15:50 - 2019-09-09 03:12 - 000002401 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 15:50 - 2015-08-07 07:25 - 000000000 ___RD C:\Users\David\OneDrive
2020-04-20 08:16 - 2018-03-24 17:57 - 000000000 ____D C:\Program Files\Realtek
2020-04-19 20:29 - 2018-04-17 23:24 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-04-19 20:29 - 2018-04-17 23:24 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-04-16 07:58 - 2018-03-24 18:29 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-15 15:37 - 2019-09-09 03:37 - 000004612 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-04-15 15:37 - 2019-09-09 03:37 - 000004430 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-04-15 15:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-04-15 15:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-04-15 13:48 - 2019-09-09 03:24 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-15 13:48 - 2019-03-19 13:59 - 000789814 _____ C:\WINDOWS\system32\perfh00A.dat
2020-04-15 13:48 - 2019-03-19 13:59 - 000156068 _____ C:\WINDOWS\system32\perfc00A.dat
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-15 13:37 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-15 10:18 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-13 20:26 - 2019-11-22 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-04-10 21:40 - 2020-03-25 18:22 - 000000000 ____D C:\Users\David\AppData\Roaming\Zoom
2020-04-09 17:24 - 2015-01-30 19:05 - 000000683 _____ C:\Users\David\Desktop\Musica.lnk
2020-04-07 18:04 - 2020-02-19 20:31 - 000001400 _____ C:\Users\monic\Desktop\Física.lnk
2020-04-07 08:55 - 2020-03-03 20:26 - 000000000 ____D C:\Users\monic\AppData\Roaming\vlc
2020-04-06 09:38 - 2020-02-04 10:57 - 000000000 ____D C:\Users\monic\Documents\Documentos importantes
2020-04-05 11:10 - 2019-10-17 20:38 - 000000000 ___RD C:\Users\monic\Dropbox
2020-04-02 07:46 - 2018-03-25 01:38 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-04-01 17:11 - 2018-03-24 18:36 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
2020-04-01 11:16 - 2019-05-22 19:16 - 000092832 _____ C:\Users\David\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-01 08:01 - 2018-07-10 22:25 - 000000000 ____D C:\ProgramData\Packages
2020-04-01 08:01 - 2018-06-30 13:41 - 000000000 ____D C:\Users\David\AppData\Local\PlaceholderTileLogoFolder
2020-04-01 08:01 - 2018-03-24 18:15 - 000000000 ____D C:\Users\David\AppData\Local\Packages

==================== Archivos en la raíz de algunos directorios ========

2018-03-25 13:46 - 2018-03-25 13:46 - 000007597 _____ () C:\Users\David\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Informe FRST - Addition


Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 30-04-2020
Ejecutado por David (01-05-2020 15:46:35)
Ejecutado desde C:\Users\David\Desktop
Windows 10 Home Versión 1903 18362.778 (X64) (2019-09-09 01:38:31)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-3401005357-1298351030-3058841220-500 - Administrator - Disabled)
David (S-1-5-21-3401005357-1298351030-3058841220-1000 - Administrator - Enabled) => C:\Users\David
DefaultAccount (S-1-5-21-3401005357-1298351030-3058841220-503 - Limited - Disabled)
Invitado (S-1-5-21-3401005357-1298351030-3058841220-501 - Limited - Disabled)
monic (S-1-5-21-3401005357-1298351030-3058841220-1014 - Administrator - Enabled) => C:\Users\monic
WDAGUtilityAccount (S-1-5-21-3401005357-1298351030-3058841220-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\uTorrent) (Version: 3.5.5.45628 - BitTorrent Inc.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.363 - Adobe)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
Box Sync (HKLM\...\{C9F786DC-0EBD-4232-A50A-F184FB25908E}) (Version: 4.0.7900.0 - Box, Inc.)
Box Sync (HKLM-x32\...\{7a31e654-f419-48e9-8dad-aa87dd7294f1}) (Version: 4.0.7886.0 - Box Inc.) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.72.1082 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Chrome Remote Desktop Host (HKLM-x32\...\{654C49EB-D47E-4319-B719-DEEC73787B51}) (Version: 83.0.4103.2 - Google Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 96.4.172 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
Golden Cheetah v3.5 (64bit) (HKLM-x32\...\Golden Cheetah) (Version: v3.5 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
GoPro (HKLM\...\{1E92618C-EB66-4C4C-9F45-93EC6EF53273}) (Version: 0.1.2733 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.)
GoPro Studio (HKLM-x32\...\{99502BF0-655A-425D-8754-9EEC557D3D73}) (Version: 5.9.2733 - GoPro, Inc.) Hidden
K-Lite Codec Pack 15.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.0 - KLCP)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft OneDrive (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Teams) (Version: 1.3.00.9267 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Polar FlowSync versión 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
R for Windows 3.5.2 (HKLM\...\R for Windows 3.5.2_is1) (Version: 3.5.2 - R Core Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8351 - Realtek Semiconductor Corp.)
Rouvy Workouts (HKLM-x32\...\Rouvy) (Version: 7.0.0.0 - VirtualTraining)
Skype Meetings App (HKLM-x32\...\{BC1D9E47-8927-4AA1-A891-7763BC2475B7}) (Version: 16.2.0.511 - Microsoft Corporation)
Slack (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\slack) (Version: 4.4.2 - Slack Technologies Inc.)
Spotify (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\Spotify) (Version: 1.1.30.658.gf13cde74 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.36216 - TeamViewer)
TomTom MyDrive Connect 4.2.5.3770 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3770 - TomTom)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
VFW_Codec32 (HKLM-x32\...\{4275850F-4E2E-4F60-9E73-8BD8F70891D3}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{7010885D-3378-4C9B-B330-88271728EDE5}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Wondershare Filmora9(Build 9.2.9) (HKLM\...\Wondershare Filmora9_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Zoom (HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.4282.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Tacx Desktop app -> C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.11.15.0_x64__zcjydbysk4fhm [2020-04-01] (Tacx)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3401005357-1298351030-3058841220-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\David\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3401005357-1298351030-3058841220-1000_Classes\CLSID\{3E3AD4BD-346A-460A-80E8-90699B75C00B}\InprocServer32 -> C:\Users\David\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\GatewayActiveX-x64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3401005357-1298351030-3058841220-1000_Classes\CLSID\{4A8FCD9F-623C-4283-96F0-10F41846A98A} -> [Box Sync] => C:\Users\David\Desktop\Box Sync [2018-03-25 22:48]
CustomCLSID: HKU\S-1-5-21-3401005357-1298351030-3058841220-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\David\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3401005357-1298351030-3058841220-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\David\Dropbox [2015-01-28 21:41]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    BoxSyncFileLocked] -> {06395f73-8d75-3c47-ac2f-93524a83ce03} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ShellIconOverlayIdentifiers: [    BoxSyncFileLockedByOther] -> {072d2f45-ddf0-35bd-a911-38b853695def} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ShellIconOverlayIdentifiers: [    BoxSyncNotSynced] -> {88092007-0d01-3d32-a4b4-56f7e19a1c49} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ShellIconOverlayIdentifiers: [    BoxSyncProblem] -> {507a0531-fd10-3efc-8eb8-64e35606e542} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ShellIconOverlayIdentifiers: [    BoxSyncSynced] -> {b9b9e487-7684-373f-a7a2-6b04c8d772a8} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [BoxContextMenuClient] -> {53792c99-3144-3699-8968-fa4278ad3c1e} => C:\Program Files\Box\Box Sync\ContextMenuClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-29] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [BoxContextMenuClient] -> {53792c99-3144-3699-8968-fa4278ad3c1e} => C:\Program Files\Box\Box Sync\ContextMenuClient.DLL [2018-03-02] (Box, Inc. -> Box, Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-29] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.CFHD] => C:\WINDOWS\system32\CFHD.dll [1334784 2016-05-12] (CineForm Inc.) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\SysWOW64\CFHD.dll [1119744 2016-05-12] (CineForm Inc.) [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\David\Dropbox\Carpetas compartidas\Fascia - Simulación daño\Abaqus\344_T2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Dropbox\Carpetas compartidas\Fascia - Simulación daño\Abaqus\344_L2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_T2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_T1\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_SS2(lll)\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_SS1(=)\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_L2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\358_Completa\35814_L1\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_T2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_T1\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_SS3(lll)\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_SS2(lll)\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_SS1(=)\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_L2\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\Desktop\Box Sync\Universidad\Grado\TFG\344_Completa\34414_L1\Fortran Build Environment for applications running on Intel(R) 64.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /E:ON /V:ON /K ""C:\Program Files (x86)\Intel\Compiler\11.1\065\bin\ifortvars.bat" intel64"
ShortcutWithArgument: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\AllCast Receiver.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=hjbljnpdahefgnopeohlaeohgkiidnoe
ShortcutWithArgument: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Chrome Remote Desktop.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep_ notas y listas.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Hangouts de Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl

==================== Módulos cargados (Lista blanca) =============

2012-09-23 20:44 - 2012-09-23 20:44 - 000010240 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2018-05-05 13:58 - 2018-04-30 14:00 - 000075776 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\David\Desktop\Videos cuarentena:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\monic\Documents\TFM:com.dropbox.attributes [168]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-03-24 17:24 - 2018-03-24 17:19 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\David\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\-music-vinyl-fresh-new-hd-wallpaper--.jpg
DNS Servers: 212.166.211.2 - 212.166.132.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "BoxSync"
HKLM\...\StartupApproved\Run: => "GoPro Tray App"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\StartupFolder: => "Recorte de pantalla e Inicio rápido de OneNote 2007.lnk"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "Polar FlowSync"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\...\StartupApproved\Run: => "com.squirrel.slack.slack"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{F76E4428-EA27-4DC4-A844-E51A69D1CEFD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{31A907FA-6FEA-424E-8D70-92879B1AA416}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C94C6716-F98F-4B2E-8B18-E1F448BBFA70}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9281927D-53E0-432C-A8C5-5C2521B0EBFC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4EA7E624-DE32-4C2D-974B-FA567FFF803D}] => (Allow) LPort=5354
FirewallRules: [{3C7AF089-66DF-4AAA-9E3E-EEE84AE62707}] => (Allow) LPort=5354
FirewallRules: [{716AA049-CA4D-4035-B2EB-057F69DF9651}] => (Allow) LPort=5354
FirewallRules: [{0579D999-6920-4891-8E69-1157DA212B8D}] => (Allow) LPort=5354
FirewallRules: [{B10E47C7-2AF3-4BC0-9697-02D00849A508}] => (Allow) LPort=5354
FirewallRules: [{B9B54384-D29B-4644-8878-6BF6F62AF671}] => (Allow) LPort=5354
FirewallRules: [{450185FD-7023-47F8-8023-97844EE99C95}] => (Allow) LPort=5354
FirewallRules: [{8518225F-06B8-4F33-9485-F989AD9B51A2}] => (Allow) LPort=5354
FirewallRules: [{36274361-6166-474C-A39B-63B0AAA09A74}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [TCP Query User{67E904A7-8C50-47AC-BC84-9DABA4C1842F}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{FC19157B-3612-41E4-83C8-78FDA83ACFF4}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AD0F2C7B-E201-4190-ADDA-5A416E20460D}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{FBD00482-2C70-4A4E-A236-651FB00B67E8}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{03DF169D-439E-41C3-9268-0FAC0100B40D}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{B049D6A8-82B5-4704-88F3-64EF5EC877D0}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B80E7BE5-49FC-447B-ADA2-E0DB77BDA334}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe (GoPro, Inc. -> )
FirewallRules: [{EF594AE9-B918-456A-BCBC-61F7FBE33899}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro, Inc. -> )
FirewallRules: [{4F6972BD-FF46-4FCA-8A32-6AB5A00AB513}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro, Inc. -> )
FirewallRules: [{3EE85B69-E440-4DD0-9638-C899A55F31AB}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro, Inc. -> )
FirewallRules: [{5778BB72-88FE-4544-9120-D5901BF05C00}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{ED85E3EA-FD75-4C72-AB0B-3CA544823372}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{04DA2B8B-1EA7-4678-AAB4-00030DA98180}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{89F82C22-FB9B-4741-B7DD-C2900C12A766}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{2E7887E7-A41E-435D-B159-22A95B046D1B}C:\users\david\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe] => (Allow) C:\users\david\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{0778F6AB-2AD8-4E67-B762-5260B17BAE8A}C:\users\david\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe] => (Allow) C:\users\david\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B3B4907-05B7-4C60-B9CA-6E7542765C1B}] => (Allow) C:\Users\David\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{21BCFFB3-E002-4E12-9420-6C67D9908677}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\83.0.4103.2\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{21D571B1-E106-44E0-8E3E-AE962990859E}C:\users\david\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\david\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{436FA2A3-4F4F-46D4-B833-3F91FF6B90B0}C:\users\david\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\david\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{290F9DF9-DEB0-4DBC-9938-23EDA1A766BD}] => (Allow) C:\Users\monic\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{814814D2-3517-4E8F-8D1F-901F6197AE03}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{30AD012D-E621-4EE6-A840-FC1BE1BC6876}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

23-04-2020 21:55:02 Punto de control programado
01-05-2020 15:19:20 JRT Pre-Junkware Removal

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (05/01/2020 03:43:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.18362.752, marca de tiempo: 0x5e7049d9
Nombre del módulo con errores: CortanaApi.dll, versión: 10.0.18362.752, marca de tiempo: 0x5e70487b
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000023971
Identificador del proceso con errores: 0x234c
Hora de inicio de la aplicación con errores: 0x01d61fba873ec919
Ruta de acceso de la aplicación con errores: C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
Identificador del informe: 6822dceb-a704-4d8c-904c-75e87f3994a2
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (05/01/2020 03:26:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4404,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (05/01/2020 03:10:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (05/01/2020 03:10:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (05/01/2020 02:59:47 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (05/01/2020 02:57:59 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (05/01/2020 02:55:46 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (05/01/2020 02:55:46 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed


Errores del sistema:
=============
Error: (05/01/2020 03:10:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (05/01/2020 03:10:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (05/01/2020 03:10:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (05/01/2020 03:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio GoPro Device Detection Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (05/01/2020 03:10:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Instalador de módulos de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (05/01/2020 03:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (05/01/2020 03:10:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio DbxSvc terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 5000 milisegundos: Reiniciar el servicio.

Error: (05/01/2020 03:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio SynTPEnh Caller Service se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2020-04-29 14:53:17.588
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {77476ABC-F673-42E2-930D-EF398F3A2C13}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-29 13:27:50.488
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {EE9135AB-FA50-4402-BCDD-DC9932E403AB}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-29 10:03:40.163
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4BCF125A-8585-4CCC-842B-AEA9C35613EF}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-27 21:33:45.959
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {C3241A7A-7438-4F57-A1A2-FCF9528BE3FA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-04-27 14:12:12.299
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {FA4FC6E0-2AEA-4141-BAA5-429517333762}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-03-11 11:18:03.371
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.311.535.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16800.2
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-11 11:18:03.371
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.311.535.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16800.2
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-11 11:18:03.370
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.311.535.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16800.2
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-11 11:18:03.361
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.311.535.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16800.2
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-11 11:18:03.360
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.311.535.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16800.2
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2019-12-09 12:22:31.829
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Microsoft signing level requirements.

Date: 2019-12-09 12:22:31.776
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: TOSHIBA 1.80 10/07/10
Placa base: TOSHIBA NALAA
Procesador: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Porcentaje de memoria en uso: 48%
RAM física total: 6002.67 MB
RAM física disponible: 3098.8 MB
Virtual total: 8178.67 MB
Virtual disponible: 5429.55 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:464.81 GB) (Free:193.08 GB) NTFS

\\?\Volume{79ee5243-a70e-11e4-a88d-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{0a885f11-0000-0000-0000-e03974000000}\ () (Fixed) (Total:0.86 GB) (Free:0.32 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0A885F11)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=877 MB) - (Type=27)

==================== Final de Addition.txt =======================

Reviso todo y te dare respuesta

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente las casillas Registry Backup, las demás NO

  • Pulsar en Run.

Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:
C:\ProgramData\Intel
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR StartupUrls: Default -> "hxxp://startsear.info"
AlternateDataStreams: C:\Users\David\Desktop\Videos cuarentena:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\monic\Documents\TFM:com.dropbox.attributes [168]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Ejecutas Frst.exe.

  • Presionas el botón Corregir y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema

Tambien te recomiendo actualizar a la version 1909 de Windows…entrando en windows update desde configuración - buscar actualizaciones. debería salir esa actualziacion

Hola Miguel! Pego el contenido del fixlog

Para darte más feed-back sobre el problema a parte del informe tendría que esperar unos días yo creo, de momento el proceso no se arranca con los nuevos inicios/reinicios del equipo. No puedo decir mucho más por el momento aunque creo que ya es bastante buena señal.


Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 30-04-2020
Ejecutado por David (01-05-2020 16:22:44) Run:1
Ejecutado desde C:\Users\David\Desktop
Perfiles cargados: David (Perfiles disponibles: David & monic)
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
Start
CreateRestorePoint:
CloseProcesses:
C:\ProgramData\Intel
GroupPolicy: Restricción ? <==== ATENCIÓN
CHR StartupUrls: Default -> "hxxp://startsear.info"
AlternateDataStreams: C:\Users\David\Desktop\Videos cuarentena:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\monic\Documents\TFM:com.dropbox.attributes [168]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
C:\ProgramData\Intel => movido correctamente
C:\WINDOWS\system32\GroupPolicy\Machine => movido correctamente
C:\WINDOWS\system32\GroupPolicy\GPT.ini => movido correctamente
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => movido correctamente
"Chrome StartupUrls" => eliminado correctamente
C:\Users\David\Desktop\Videos cuarentena => ":com.dropbox.attrs" ADS eliminado correctamente
C:\Users\monic\Documents\TFM => ":com.dropbox.attributes" ADS eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3401005357-1298351030-3058841220-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Wi-Fi mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 9 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.

Adaptador de LAN inal mbrica Wi-Fi:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 9:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::1009:8f23:2af0:8099%9
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.33
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

Adaptador de Ethernet Conexi¢n de red Bluetooth:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

{0A69636A-6221-4E30-BAB9-B1FFD9893AFD} canceled.
{5DD625FA-FAE8-4CA1-99B5-05619DBBE75D} canceled.
{8CEDE8C9-AE54-4434-9EE1-40247A0B91CB} canceled.
3 out of 3 jobs canceled.

========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15927646 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 3448528 B
Edge => 152657 B
Chrome => 323111509 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 12824 B
Users => 12824 B
ProgramData => 12824 B
Public => 12824 B
systemprofile => 12824 B
systemprofile32 => 12824 B
LocalService => 39942 B
NetworkService => 4454434 B
David => 97979618 B
monic => 269303669 B

RecycleBin => 0 B
EmptyTemp: => 691.4 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 16:24:18 ====

Todo en listo…

Como va el pc?

Justo estaba editando el mensaje anterior cuando has respondido, cito lo que te añadía.

El proceso y la infección esta solucionado sin problema…es una infección ya conocida.

Prueba 24 horas y me dices

La verdad que tiene muy buena pinta, sigue yendo tan fluido como antes del problema (o como cuando eliminaba el proceso), así que perfecto. Muchas gracias por tu ayuda Miguel!

Si sigue así el último paso sería desinstalar las herramientas, ¿no? Tengo las instrucciones tuyas de otro hilo que seguí para ejecutar los softwares, las pego por si acaso y confirmas si puedes. Gracias de nuevo.

"Para eliminar las herramientas usadas en la desinfección, realizas:

  • Descargas y Ejecutas >> Delfix , en tu escritorio.
  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)
  • Marca solamente la casilla Remove disinfection tools
  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente."

Exactamente…eso es…muy bien

Saludos

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.