Notepad.exe, otro afectado mas

Buenas tardes a todos y muchas gracias de antemano.

He estado leyendo numerosos casos como el mío, el notepad.exe me consume toda la memoria RAM. Me había pasado hace unas semanas e intenté eliminarlo por mi cuenta con la información extraída del foro pero ha vuelto a aparecer, por lo que entiendo que es necesario como ya se comentó personalizar la desinfección en cada caso.

El caso, he descargado FRST en escritorio y escaneado, os pego los reportes obtenidos para que me podáis ayudar con el proceso cuando os sea posible.

Muchas gracias.

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 28-12-2019
Ejecutado por Jaco (02-01-2020 19:48:30)
Ejecutado desde C:\Users\Jaco\Desktop
Windows 10 Pro Versión 1909 18363.535 (X64) (2019-08-29 20:26:19)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-3212725279-3875735351-1938983290-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3212725279-3875735351-1938983290-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3212725279-3875735351-1938983290-1003 - Limited - Enabled)
Invitado (S-1-5-21-3212725279-3875735351-1938983290-501 - Limited - Disabled)
Jaco (S-1-5-21-3212725279-3875735351-1938983290-1001 - Administrator - Enabled) => C:\Users\Jaco
WDAGUtilityAccount (S-1-5-21-3212725279-3875735351-1938983290-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_0) (Version: 21.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
AutoFirma (HKLM-x32\...\AutoFirma) (Version: 1.6.5 - Gobierno de España)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
Canon TS5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5100_series) (Version: 1.00 - Canon Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 87.4.138 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
FactuCont 5 (HKLM-x32\...\FactuCont 5) (Version:  - )
FonePaw Recuperación de Datos 1.7.0 (HKLM-x32\...\{23A4B7F6-D64E-4BDB-888E-EBE1B8972A4C}_is1) (Version: 1.7.0 - FonePaw)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Hofmann 12.0.0.11 (HKLM-x32\...\{FAF6DF16-51F8-4A8A-B3B2-D349A5FD491F}) (Version: 12.0.0 - Hofmann)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7263 - Intel Corporation)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Kodi (HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\Kodi) (Version:  - XBMC Foundation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.2 - Notepad++ Team)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PhotoME (HKLM-x32\...\PhotoME_is1) (Version: 0.79R17 - Jens Duttke)
Programa Saal Design (HKLM-x32\...\{CB151870-B711-E4E0-EDC2-19D7A047E986}) (Version: 4.1 - Saal Digital Fotoservice GmbH) Hidden
Programa Saal Design (HKLM-x32\...\ProgramaSaalDesign) (Version: 4.1 - Saal Digital Fotoservice GmbH)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
SketchUp 2019 (HKLM\...\{7EDDA955-6D4D-DB6C-C2C3-B757702C0FFE}) (Version: 19.3.253.135 - Trimble, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{567756E0-361F-4E88-AF74-8B0E4628E5BC}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-23] (Canon Inc.)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-14] (Microsoft Corporation)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-21] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.3842.0_x64__rz1tebttyb220 [2019-12-17] (Dolby Laboratories)
Dropbox para modo S -> C:\Program Files\WindowsApps\C27EB4BA.DROPBOX_22.4.3.0_x64__xbfy0k16fey96 [2019-09-27] (Dropbox Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa [2019-12-12] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_1.8.15.0_x64__t4vj0pshhgkwm [2019-10-08] (Telegram Messenger LLP)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001_Classes\CLSID\{04271989-C4D2-27E8-55A3-DCFE36CB3916} -> [OneDrive - Certa Servicios Periciales, S.L] => C:\Users\Jaco\OneDrive - Certa Servicios Periciales, S.L [2018-03-09 22:15]
CustomCLSID: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Jaco\Dropbox [2018-03-05 00:12]
CustomCLSID: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-12-04] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\igfxDTCM.dll [2019-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2017-09-06 17:11 - 2017-09-06 17:11 - 000125952 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-09-06 17:11 - 2017-09-06 17:11 - 000118272 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-09-06 17:11 - 2017-09-06 17:11 - 000086528 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-09-06 17:11 - 2017-09-06 17:11 - 000214528 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-09-06 17:11 - 2017-09-06 17:11 - 000117248 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2019-12-02 23:29 - 2019-12-02 23:29 - 000021504 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\Jaco\.DS_Store:AFP_AfpInfo [122]
AlternateDataStreams: C:\Users\Jaco\Desktop\MARTINA-13.jpg:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Jaco\Documents\.DS_Store:AFP_AfpInfo [122]

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\meteogalicia.gal -> hxxp://www.meteogalicia.gal
IE trusted site: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\sinexia.es -> hxxp://diversos.sinexia.es

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2015-07-10 12:04 - 2019-12-18 15:36 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\AutoFirma\AutoFirma
HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\Control Panel\Desktop\\Wallpaper -> c:\users\jaco\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\_mg_1680.jpg
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [UDP Query User{45904025-91F2-4139-B1DD-1E053A50C3B8}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45311.exe] => (Block) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45311.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{E2247CB8-1BE8-46E1-BBC9-4322E31C0266}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45311.exe] => (Block) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45311.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{56EFDFA8-EA6E-4B7C-BCE1-160D38DF4F6B}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45231.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45231.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{C0317462-2C4B-444F-BF97-06E379BDB0F1}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45231.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.5_45231.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{3B708554-C822-48F5-9F9F-E69E2C4DB9CD}C:\users\jaco\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{25D4D59F-319E-42EB-8439-3C5CDAE5E8F6}C:\users\jaco\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{6DBD946C-5934-4E83-ABBA-25542CA70B81}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{AEC06911-4C88-4C78-BC6A-91ADFFE2B0B0}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{4ACDA701-3E17-4986-9BBE-49B6F2005E82}C:\program files\autofirma\autofirma\jre\bin\javaw.exe] => (Allow) C:\program files\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [UDP Query User{7C2A0E3A-AF61-4540-A7FD-B69B1DA145B5}C:\program files\autofirma\autofirma\jre\bin\javaw.exe] => (Allow) C:\program files\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [TCP Query User{6BDC0377-334F-4E53-AFB9-920764C56381}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.4_44632.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.4_44632.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{08F330C6-F2DD-4950-A916-B1412FDEE9DF}C:\users\jaco\appdata\roaming\utorrent\updates\3.5.4_44632.exe] => (Allow) C:\users\jaco\appdata\roaming\utorrent\updates\3.5.4_44632.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{2194E9CE-B95A-4FF0-9059-CD5A1CF9C239}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{9045028A-D3D0-4961-BD7B-E718775FC989}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{CB0D43AC-1122-4EC7-BE59-67833E732F9F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{22432CA4-E449-4D96-9450-E71F6AD7E25C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F4A0E7A-883B-46E2-99D8-729BF55C84B6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3AFA3B81-0B2D-4DC7-8A6B-8631E6E747AB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{026D7444-92C2-43A2-AD9F-85C3E43E8774}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1931932A-E86C-4661-943D-DA14CFE8A0E1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{141DFEE5-3B40-4D13-84C4-D703E488A6F3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{535C01CC-50EC-4134-82D4-2281344F6374}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60A50071-8314-425A-84FA-805FD75564F2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{A5C0480D-99E3-479D-AB3C-526AB8AAD536}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

18-12-2019 15:52:33 End of disinfection
22-12-2019 12:20:10 SketchUp 2019 instalado(s)
31-12-2019 21:09:06 Punto de control programado
02-01-2020 19:09:49 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Teclado PS/2 estándar
Description: Teclado PS/2 estándar
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Teclados estándar)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Mouse PS/2 de Microsoft
Description: Mouse PS/2 de Microsoft
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (01/02/2020 07:13:35 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5020,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 06:27:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4920,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 06:20:29 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5216,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 06:05:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2016,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 05:27:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 04:29:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6528,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 04:10:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11776,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/02/2020 03:32:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4260,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Errores del sistema:
=============
Error: (01/02/2020 07:41:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio cphs se cerró con el siguiente error: 
Identificador no válido

Error: (01/02/2020 07:41:23 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/02/2020 07:41:20 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio camsvc con argumentos "No disponible" para ejecutar el servidor:
Windows.Internal.CapabilityAccess.CapabilityAccess

Error: (01/02/2020 07:41:06 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/02/2020 07:41:01 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/02/2020 07:40:55 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/02/2020 07:40:49 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/02/2020 07:40:43 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QOB28A0)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}


Windows Defender:
===================================
Date: 2020-01-02 18:15:00.788
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_D:\uTorrent\Windows 10 (Multiple Editions) SPANISH\MICROSOFT.WINDOWS.10.PRO-CORE.RTM.10240.X64.OEMRET.SPANISH.DVD-WZT\KMSAuto Lite Portable TEST5+\KMSAuto.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-QOB28A0\Jaco
Nombre de proceso: C:\Users\Jaco\Downloads\esetonlinescanner_esn.exe
Versión de inteligencia de seguridad: AV: 1.307.1571.0, AS: 1.307.1571.0, NIS: 1.307.1571.0
Versión de motor: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-02 18:00:12.220
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS.E!MSR&threatid=2147743252&enterprise=0
Nombre: HackTool:Win32/AutoKMS.E!MSR
Id.: 2147743252
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_D:\Software\Office 2010 Castellano-Multilenguaje Full.mundomanuales\Office Toolkit 2010 [activa cualquier edicion 2010]\ActivadorOffice 2010 Toolkit.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-QOB28A0\Jaco
Nombre de proceso: C:\Users\Jaco\Downloads\esetonlinescanner_esn.exe
Versión de inteligencia de seguridad: AV: 1.307.1571.0, AS: 1.307.1571.0, NIS: 1.307.1571.0
Versión de motor: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-02 17:58:06.323
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Patcher&threatid=2147659947&enterprise=0
Nombre: HackTool:Win32/Patcher
Id.: 2147659947
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_D:\Software\ADOBE ACROBAT DC.2018-PVP\Patch (PainteR)\amtemu.v0.9.2.win-painter\amtemu.v0.9.2-painter.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-QOB28A0\Jaco
Nombre de proceso: C:\Users\Jaco\Downloads\esetonlinescanner_esn.exe
Versión de inteligencia de seguridad: AV: 1.307.1571.0, AS: 1.307.1571.0, NIS: 1.307.1571.0
Versión de motor: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2019-12-18 16:05:45.538
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1BB4FB83-724A-4311-8F73-0324D0C0254F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-12-18 15:15:52.127
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4EDFDD67-490C-4E09-9F47-4F64EDFF10C9}
Tipo de examen: Antimalware
Parámetros de examen: Examen personalizado
Usuario: DESKTOP-QOB28A0\Jaco

Date: 2020-01-02 19:36:06.694
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.307.1571.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16600.7
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2020-01-02 19:26:05.278
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-12-19 01:08:53.946
Description: 
Antivirus de Windows Defender encontró un error al intentar cargar la inteligencia de seguridad e intentará revertir a una versión que sepa que es correcta.
Inteligencia de seguridad intentada: Actual
Código de error: 0x80070003
Descripción del error: El sistema no puede encontrar la ruta especificada. 
Versión de inteligencia de seguridad: 0.0.0.0;0.0.0.0
Versión del motor: 0.0.0.0

CodeIntegrity:
===================================

Date: 2020-01-02 19:42:23.920
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\AdobePDF.dll that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 19:20:02.891
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\spool\drivers\x64\3\ADUIGP.DLL that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 19:20:02.819
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\spool\drivers\x64\3\ADUIGP.DLL that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 19:20:02.798
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\spool\drivers\x64\3\ADUIGP.DLL that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 19:20:02.026
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\AdobePDF.dll that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 19:04:33.949
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\AdobePDF.dll that did not meet the Unchecked signing level requirements.

Date: 2020-01-02 09:30:09.986
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\AdobePDF.dll that did not meet the Unchecked signing level requirements.

Date: 2019-12-19 01:09:34.069
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\AdobePDF.dll that did not meet the Unchecked signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. A.30 04/05/2017
Placa base: MSI B250I PRO (MS-7A67)
Procesador: Intel(R) Pentium(R) CPU G4600 @ 3.60GHz
Porcentaje de memoria en uso: 56%
RAM física total: 8085.03 MB
RAM física disponible: 3525.35 MB
Virtual total: 10901.03 MB
Virtual disponible: 6215.98 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:231.82 GB) (Free:98.6 GB) NTFS
Drive d: (Disco local) (Fixed) (Total:1765.35 GB) (Free:143.81 GB) NTFS

\\?\Volume{5cc03e19-88f6-4338-862b-9631edb8cd14}\ () (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{f94e8231-6924-4cef-bd02-d596144521e2}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{4e67eec6-7e9e-40bc-b9d6-b6f8a432863e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0005418E)
Partition 1: (Active) - (Size=1765.4 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 30313BF2)

Partition: GPT.

==================== Final de Addition.txt =======================

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 28-12-2019
Ejecutado por Jaco (administrador) sobre DESKTOP-QOB28A0 (MSI MS-7A67) (02-01-2020 19:47:28)
Ejecutado desde C:\Users\Jaco\Desktop
Perfiles cargados: Jaco (Perfiles disponibles: Jaco)
Platform: Windows 10 Pro Versión 1909 18363.535 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Edge
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\IntelCpHDCPSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaco\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20356.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20356.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6268224 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5011504 2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\Run: [14e03465] => C:\ProgramData\Intel\Wireless\1db1683\jcfedff.exe [943784 2020-01-02] (AutoIt Consulting Ltd -> AutoIt Team)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-18] (Google LLC -> Google LLC)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {045D8584-7450-4456-9E48-15BD1F374AEE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-07] (Google Inc -> Google Inc.)
Task: {13B80AD5-8138-418C-B3B0-AC6A697E60C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2E124DF5-E95D-449B-9031-DC22886C0F3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {32F5BA4A-54F8-4DF4-B2F2-6653D88BFF70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37872F9A-3C1A-4C86-AA07-107305ED84F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {61F818D2-F450-4D74-AE9E-EA139AC23466} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {88FC8ABB-E743-47B7-8D26-1CE740B5D674} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AFF9F46B-8826-4766-8D19-996988CAE60D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {B4CA5459-B433-4A38-B9BE-0D184E7213FC} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-QOB28A0-Jaco => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {B9FC7A95-0C83-4A9B-B9AF-A4D49F3C8A94} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {EBD2C7CC-3D63-4F8F-8944-EE2794612CFE} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F243EAED-7CB8-4AC3-AD9C-0E7E39994843} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-07] (Google Inc -> Google Inc.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\..\Interfaces\{26dfbfee-a0e4-44c0-b0b9-a40deebabdde}: [NameServer] 80.58.61.254,80.58.61.250
Tcpip\..\Interfaces\{f8241cbc-4f70-4f81-b061-43c0e84fe849}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sx-expert.sinexia.es/fralogin.asp?windowopen=1
SearchScopes: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001 -> DefaultScope {0E91B01F-4528-4421-ACB4-C04F459FFD0F} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3212725279-3875735351-1938983290-1001 -> {0E91B01F-4528-4421-ACB4-C04F459FFD0F} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Edge: 
======
DownloadDir: C:\Users\Jaco\Downloads

FireFox:
========
FF DefaultProfile: cy1k5hww.default
FF ProfilePath: C:\Users\Jaco\AppData\Roaming\Mozilla\Firefox\Profiles\cy1k5hww.default [2019-12-18]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR Notifications: Default -> hxxps://www.iberiaexpress.com
CHR Profile: C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default [2020-01-02]
CHR Extension: (Presentaciones) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-07]
CHR Extension: (Documentos) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-07]
CHR Extension: (Google Drive) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-07]
CHR Extension: (YouTube) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-25]
CHR Extension: (Hojas de cálculo) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-02]
CHR Extension: (Player para ver Movistar+) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-17]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Jaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-12]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [153736 2017-03-02] (Canon Inc. -> CANON INC.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-02 19:47 - 2020-01-02 19:47 - 000024371 _____ C:\Users\Jaco\Desktop\FRST.txt
2020-01-02 19:47 - 2020-01-02 19:47 - 000000000 ____D C:\FRST
2020-01-02 19:45 - 2020-01-02 19:45 - 002272256 _____ (Farbar) C:\Users\Jaco\Downloads\FRST64.exe
2020-01-02 19:45 - 2020-01-02 19:45 - 002272256 _____ (Farbar) C:\Users\Jaco\Desktop\FRST64.exe
2020-01-02 19:42 - 2020-01-02 19:42 - 000000000 ___HD C:\OneDriveTemp
2020-01-02 19:26 - 2020-01-02 19:41 - 000248186 _____ C:\WINDOWS\ntbtlog.txt
2020-01-02 19:26 - 2020-01-02 19:26 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-01-02 18:42 - 2020-01-02 18:42 - 000019373 _____ C:\Users\Jaco\Downloads\fichero (35).EML
2020-01-02 16:25 - 2020-01-02 19:26 - 000000669 _____ C:\Users\Jaco\Desktop\ESET Online Scanner.lnk
2020-01-02 16:25 - 2020-01-02 16:25 - 000000813 _____ C:\Users\Jaco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-01-02 16:25 - 2020-01-02 16:25 - 000000000 ____D C:\Users\Jaco\AppData\Local\ESET
2020-01-02 16:24 - 2020-01-02 16:24 - 008162616 _____ (ESET spol. s r.o.) C:\Users\Jaco\Downloads\esetonlinescanner_esn.exe
2020-01-02 16:24 - 2020-01-02 16:24 - 001580504 _____ C:\Users\Jaco\Downloads\eset_internet_security_live_installer.exe
2020-01-02 03:57 - 2020-01-02 03:57 - 000001478 _____ C:\Users\Public\Desktop\FonePaw Recuperación de Datos.lnk
2020-01-02 03:57 - 2020-01-02 03:57 - 000001478 _____ C:\ProgramData\Desktop\FonePaw Recuperación de Datos.lnk
2020-01-02 03:57 - 2020-01-02 03:57 - 000000000 ____D C:\Users\Jaco\AppData\Local\FonePaw
2020-01-02 03:57 - 2020-01-02 03:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FonePaw
2020-01-02 03:57 - 2020-01-02 03:57 - 000000000 ____D C:\ProgramData\FonePaw
2020-01-02 03:57 - 2020-01-02 03:57 - 000000000 ____D C:\Program Files (x86)\FonePaw
2020-01-02 03:56 - 2020-01-02 03:56 - 010733088 _____ (FonePaw ) C:\Users\Jaco\Downloads\data-recovery.exe
2020-01-02 03:19 - 2020-01-02 03:19 - 000323072 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-02T031949.978.PDF
2020-01-02 03:18 - 2020-01-02 03:18 - 001358130 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-02T031800.902.PDF
2020-01-02 03:13 - 2020-01-02 03:13 - 000020663 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-02T031326.397.PDF
2020-01-02 03:07 - 2020-01-02 04:02 - 000000000 ____D C:\Users\Jaco\AppData\LocalLow\uTorrent
2020-01-01 23:54 - 2020-01-01 23:54 - 000131368 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-01T235429.238.PDF
2020-01-01 23:52 - 2020-01-01 23:52 - 000131368 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-01T235220.308.PDF
2020-01-01 23:43 - 2020-01-01 23:43 - 000305441 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-01T234326.122.PDF
2020-01-01 23:32 - 2020-01-01 23:32 - 000031105 _____ C:\Users\Jaco\Downloads\fichero - 2020-01-01T233218.652.PDF
2019-12-31 19:50 - 2019-12-31 19:50 - 000000000 ____D C:\Users\Jaco\Desktop\SESION NAVIDAD 2019
2019-12-31 19:48 - 2019-12-31 19:49 - 128812584 _____ C:\Users\Jaco\Desktop\wetransfer-2db561.zip
2019-12-31 01:11 - 2019-12-31 01:11 - 000142285 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-31T011138.311.PDF
2019-12-30 18:57 - 2019-12-30 18:57 - 000135247 _____ C:\Users\Jaco\Downloads\fichero (34).EML
2019-12-30 18:56 - 2019-12-30 18:56 - 005008355 _____ C:\Users\Jaco\Downloads\fichero (33).EML
2019-12-30 17:33 - 2019-12-30 17:33 - 000083530 _____ C:\Users\Jaco\Downloads\36033A039000620001DL.pdf
2019-12-30 16:45 - 2019-12-30 16:45 - 005001477 _____ C:\Users\Jaco\Downloads\fichero (32).EML
2019-12-30 16:44 - 2019-12-30 16:45 - 000024462 _____ C:\Users\Jaco\Downloads\fichero (24).HTML
2019-12-30 16:17 - 2019-12-30 16:17 - 000002205 _____ C:\Users\Jaco\Downloads\mail (1).pdf
2019-12-30 00:51 - 2019-12-30 00:51 - 000043715 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-30T005147.506.PDF
2019-12-30 00:17 - 2019-12-30 00:17 - 000125522 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-30T001754.235.PDF
2019-12-29 21:38 - 2019-12-29 21:38 - 000203461 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-29T213839.484.PDF
2019-12-27 17:14 - 2019-12-27 17:14 - 000188928 _____ C:\Users\Jaco\Downloads\rv-z93846961.msg
2019-12-27 17:14 - 2019-12-27 17:14 - 000160256 _____ C:\Users\Jaco\Downloads\z93846961.msg
2019-12-27 00:38 - 2019-12-27 00:38 - 001714262 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-27T003830.988.PDF
2019-12-26 23:33 - 2019-12-26 23:33 - 000259572 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-26T233304.955.PDF
2019-12-26 22:50 - 2019-12-26 22:50 - 000394842 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-26T225020.031.PDF
2019-12-26 22:48 - 2019-12-26 22:48 - 000045029 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-26T224841.781.PDF
2019-12-26 22:48 - 2019-12-26 22:48 - 000031057 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-26T224857.678.PDF
2019-12-26 03:57 - 2019-12-26 03:57 - 000218308 _____ C:\Users\Jaco\Downloads\documento (1).xlsx
2019-12-26 03:42 - 2019-12-26 03:42 - 000030964 _____ C:\Users\Jaco\Downloads\resultadoPDF (2).pdf
2019-12-25 03:19 - 2013-01-01 01:09 - 2256949417 _____ C:\Users\Jaco\Desktop\GOPR8688.MP4
2019-12-24 00:37 - 2019-12-24 00:37 - 000026750 _____ C:\Users\Jaco\Downloads\fichero (23).HTML
2019-12-24 00:35 - 2019-12-24 00:35 - 000193196 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-24T003541.689.PDF
2019-12-24 00:34 - 2019-12-24 00:34 - 000193196 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-24T003443.135.PDF
2019-12-23 23:36 - 2019-12-23 23:36 - 000198381 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-23T233604.620.PDF
2019-12-23 18:00 - 2019-12-23 18:00 - 000202665 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-23T180000.302.PDF
2019-12-23 17:59 - 2019-12-23 17:59 - 000026747 _____ C:\Users\Jaco\Downloads\fichero (22).HTML
2019-12-23 04:31 - 2019-12-23 04:31 - 000020706 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-23T043120.393.PDF
2019-12-23 04:23 - 2019-12-23 04:23 - 000321442 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-23T042342.917.PDF
2019-12-23 04:00 - 2019-12-23 04:00 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\Trimble Connect for SketchUp
2019-12-22 17:06 - 2019-12-22 17:06 - 000174184 _____ C:\Users\Jaco\Downloads\REGULAMENTO AGRUPACIÓN MUNICIPAL VOLUNTARIOS DE PROTECCIÓN CIVIL (BOP 16-05-2012).pdf
2019-12-22 16:59 - 2019-12-22 16:59 - 000157525 _____ C:\Users\Jaco\Downloads\ORDENANZA DE SERVIZOS DO CONCELLO DE MOS (BOP 07-03-2012).pdf
2019-12-22 16:53 - 2019-12-22 16:53 - 000200908 _____ C:\Users\Jaco\Downloads\fis23.pdf
2019-12-22 12:49 - 2019-12-22 12:49 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\SketchUp
2019-12-22 12:49 - 2019-12-22 12:49 - 000000000 ____D C:\Users\Jaco\AppData\Local\SketchUp
2019-12-22 12:49 - 2019-12-22 12:49 - 000000000 ____D C:\ProgramData\Reprise
2019-12-22 12:20 - 2019-12-22 12:20 - 000002235 _____ C:\Users\Public\Desktop\Style Builder 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000002235 _____ C:\ProgramData\Desktop\Style Builder 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000002149 _____ C:\Users\Public\Desktop\LayOut 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000002149 _____ C:\ProgramData\Desktop\LayOut 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000002060 _____ C:\Users\Public\Desktop\SketchUp 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000002060 _____ C:\ProgramData\Desktop\SketchUp 2019.lnk
2019-12-22 12:20 - 2019-12-22 12:20 - 000000000 ____D C:\ProgramData\SketchUp
2019-12-22 12:20 - 2019-12-22 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2019
2019-12-22 12:20 - 2019-12-22 12:20 - 000000000 ____D C:\Program Files\SketchUp
2019-12-22 12:19 - 2019-12-22 12:19 - 199469416 _____ (Trimble Inc.) C:\Users\Jaco\Downloads\SketchUpPro-2019-es.exe
2019-12-21 17:40 - 2019-12-21 17:40 - 000252914 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-21T174011.577.PDF
2019-12-21 17:39 - 2019-12-21 17:39 - 000018159 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-21T173944.687.PDF
2019-12-21 13:30 - 2019-12-21 13:30 - 000080099 _____ C:\Users\Jaco\Downloads\36033A041001150001DL.pdf
2019-12-21 10:48 - 2019-12-21 10:48 - 000063051 _____ C:\Users\Jaco\Downloads\B30104400000000001BQ.pdf
2019-12-20 18:32 - 2019-12-20 18:32 - 000203414 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-20T183237.238.PDF
2019-12-20 18:31 - 2019-12-20 18:31 - 000407630 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-20T183109.069.PDF
2019-12-20 17:39 - 2019-12-20 17:39 - 000020346 _____ C:\Users\Jaco\Desktop\vigocampus.pdf
2019-12-20 17:38 - 2019-12-20 17:38 - 000020346 _____ C:\Users\Jaco\Downloads\resultadoPDF (1).pdf
2019-12-20 17:37 - 2019-12-20 17:37 - 000017248 _____ C:\Users\Jaco\Downloads\resultadoPDF.pdf
2019-12-20 16:54 - 2019-12-20 17:08 - 000000000 ____D C:\Users\Jaco\Desktop\Felipe Frioya
2019-12-20 00:23 - 2019-12-20 00:23 - 000087550 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-20T002336.725.PDF
2019-12-20 00:06 - 2019-12-20 00:06 - 000087550 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-20T000649.634.PDF
2019-12-19 23:57 - 2019-12-19 23:57 - 000329419 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-19T235736.454.PDF
2019-12-19 22:32 - 2019-12-19 22:32 - 000001919 _____ C:\Users\Jaco\Desktop\new 2.txt
2019-12-18 19:48 - 2019-12-18 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-12-18 15:56 - 2019-12-18 15:56 - 000057087 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-18T155603.723.PDF
2019-12-18 15:52 - 2019-12-18 15:52 - 000003654 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2019-12-18 15:45 - 2019-12-18 15:45 - 008237744 ____N (Malwarebytes) C:\Users\Jaco\Downloads\adwcleaner_8.0.1.exe
2019-12-18 15:34 - 2019-12-18 15:34 - 000000983 _____ C:\Users\Jaco\Downloads\fixlist.txt
2019-12-18 15:33 - 2019-12-18 15:33 - 000000252 _____ C:\Users\Jaco\Desktop\DelFix.txt
2019-12-18 15:32 - 2019-12-18 15:52 - 000000890 _____ C:\DelFix.txt
2019-12-18 15:17 - 2019-12-18 15:17 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-12-18 15:17 - 2019-12-18 15:17 - 000001143 _____ C:\ProgramData\Desktop\VLC media player.lnk
2019-12-18 15:17 - 2019-12-18 15:17 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2019-12-18 15:16 - 2019-12-18 15:16 - 024581800 _____ (Piriform Software Ltd) C:\Users\Jaco\Downloads\cctrialsetup.exe
2019-12-18 15:12 - 2019-12-18 15:12 - 000000000 ____D C:\Users\Jaco\AppData\Local\mbamtray
2019-12-18 15:12 - 2019-12-18 15:12 - 000000000 ____D C:\Users\Jaco\AppData\Local\mbam
2019-12-18 15:12 - 2019-12-18 15:12 - 000000000 ____D C:\Users\Jaco\AppData\Local\cache
2019-12-18 15:09 - 2019-12-18 15:09 - 001883976 _____ (Malwarebytes) C:\Users\Jaco\Downloads\MBSetup-009996.009996-consumer.exe
2019-12-17 23:01 - 2019-12-17 23:01 - 000001548 _____ C:\Users\Jaco\Downloads\fichero (31).EML
2019-12-17 20:30 - 2019-12-17 20:30 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-12-17 19:28 - 2019-12-17 19:28 - 000221159 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-17T192838.749.PDF
2019-12-17 19:22 - 2019-12-17 19:22 - 000019373 _____ C:\Users\Jaco\Downloads\fichero (30).EML
2019-12-16 21:45 - 2019-12-16 21:45 - 000015279 _____ C:\Users\Jaco\Downloads\1576437213-Ad Adtra [1080p][Castellano][wWw.EliteTorrent.TV].torrent
2019-12-16 21:44 - 2019-12-16 21:44 - 000018465 _____ C:\Users\Jaco\Downloads\1576437457-El Irlandes [1080p][Castellano][wWw.EliteTorrent.TV].torrent
2019-12-16 21:44 - 2019-12-16 21:44 - 000011813 _____ C:\Users\Jaco\Downloads\1576437554-Historias de Miedo para contar [1080p][Castellano][wWw.EliteTorrent.TV].torrent
2019-12-16 21:43 - 2019-12-16 21:43 - 000017968 _____ C:\Users\Jaco\Downloads\1576437577-It Capitulo 2 [1080p][Castellano][wWw.EliteTorrent.TV].torrent
2019-12-16 21:42 - 2019-12-16 21:42 - 000020282 _____ C:\Users\Jaco\Downloads\1576437696-Once Upon a Time Hollywood [1080p][Castellano][wWw.EliteTorrent.TV].torrent
2019-12-16 02:49 - 2019-12-16 02:49 - 000191652 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T024956.562.PDF
2019-12-16 02:49 - 2019-12-16 02:49 - 000189387 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T024906.177.PDF
2019-12-16 02:46 - 2019-12-16 02:46 - 000191656 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T024617.964.PDF
2019-12-16 02:42 - 2019-12-16 02:42 - 000472576 _____ C:\Users\Jaco\Downloads\fichero (3).MSG
2019-12-16 02:39 - 2019-12-16 02:39 - 000191652 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T023937.662.PDF
2019-12-16 02:38 - 2019-12-16 02:38 - 000020551 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T023831.882.PDF
2019-12-16 02:31 - 2019-12-16 02:31 - 000332489 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T023150.052.PDF
2019-12-16 02:30 - 2019-12-16 02:30 - 000016160 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T023055.133.PDF
2019-12-16 02:17 - 2019-12-16 02:17 - 000190692 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021709.031.PDF
2019-12-16 02:15 - 2019-12-16 02:15 - 000191657 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021557.164.PDF
2019-12-16 02:11 - 2019-12-16 02:11 - 000053765 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021116.923.PDF
2019-12-16 02:10 - 2019-12-16 02:10 - 000068317 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021015.905.PDF
2019-12-16 02:10 - 2019-12-16 02:10 - 000053734 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021046.732.PDF
2019-12-16 02:10 - 2019-12-16 02:10 - 000050844 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-16T021051.191.PDF
2019-12-16 02:09 - 2019-12-16 02:09 - 001284692 _____ C:\Users\Jaco\Downloads\fichero (29).EML
2019-12-16 02:09 - 2019-12-16 02:09 - 000025245 _____ C:\Users\Jaco\Downloads\fichero (21).HTML
2019-12-15 18:53 - 2019-12-15 18:53 - 000020551 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-15T185342.956.PDF
2019-12-15 18:52 - 2019-12-15 18:52 - 000189387 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-15T185203.867.PDF
2019-12-15 18:49 - 2019-12-15 18:50 - 000978432 _____ C:\Users\Jaco\Downloads\reclamacion.msg
2019-12-15 11:59 - 2019-12-15 11:59 - 000509166 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-15T115922.436.PDF
2019-12-15 11:47 - 2019-12-15 11:47 - 000031057 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-15T114737.462.PDF
2019-12-15 11:46 - 2019-12-15 11:46 - 000148822 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-15T114657.765.PDF
2019-12-13 12:26 - 2019-12-13 12:26 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 002494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 002188816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 001539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 001496080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-12-13 12:26 - 2019-12-13 12:26 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-12-13 12:26 - 2019-12-13 12:26 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-12-13 12:26 - 2019-12-13 12:26 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 006516648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 002147328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 002082208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-12-13 12:25 - 2019-12-13 12:25 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001656600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001512528 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001399312 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-12-13 12:25 - 2019-12-13 12:25 - 001261464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001054864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 001006904 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000986936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000842552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000674280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000593128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000511000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000422712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-12-13 12:25 - 2019-12-13 12:25 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000127272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-12-13 12:25 - 2019-12-13 12:25 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-12-13 12:25 - 2019-12-13 12:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-12-12 22:16 - 2019-12-12 22:16 - 003238466 _____ C:\Users\Jaco\Downloads\fichero (28).EML
2019-12-11 03:57 - 2019-12-11 03:57 - 000078430 _____ C:\Users\Jaco\Downloads\36033A056004200001DX.pdf
2019-12-10 09:34 - 2019-12-10 09:34 - 001991817 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-10T093445.353.PDF
2019-12-09 18:11 - 2019-12-09 18:11 - 000167615 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T181113.781.PDF
2019-12-09 18:10 - 2019-12-09 18:10 - 003757785 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T181027.535.PDF
2019-12-09 18:07 - 2019-12-09 18:07 - 000305441 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T180716.909.PDF
2019-12-09 18:02 - 2019-12-09 18:02 - 000031105 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T180249.547.PDF
2019-12-09 15:48 - 2019-12-09 15:48 - 000085551 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T154859.678.PDF
2019-12-09 15:47 - 2019-12-09 15:47 - 001128649 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-09T154753.506.PDF
2019-12-09 03:12 - 2019-12-09 03:12 - 001156861 _____ C:\Users\Jaco\Downloads\las CRA ante la LSP.pdf
2019-12-08 13:15 - 2019-12-08 13:15 - 000013867 _____ C:\Users\Jaco\Downloads\copia-de-listado-maquinaria-franquicia-alta-sept-2019.xlsx
2019-12-08 13:14 - 2019-12-08 13:14 - 000081530 _____ C:\Users\Jaco\Downloads\declaracion-accidente-da (2).xlsx
2019-12-08 11:59 - 2019-12-08 12:04 - 000000000 ____D C:\Users\Jaco\Desktop\cheetos
2019-12-07 01:24 - 2019-12-07 01:24 - 000059274 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T012414.150.PDF
2019-12-07 01:02 - 2019-12-07 01:02 - 001316450 _____ C:\Users\Jaco\Downloads\fichero (27).EML
2019-12-07 01:02 - 2019-12-07 01:02 - 000087550 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T010237.700.PDF
2019-12-07 01:01 - 2019-12-07 01:01 - 000071397 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T010133.727.PDF
2019-12-07 01:00 - 2019-12-07 01:00 - 000242268 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T010006.303.PDF
2019-12-07 01:00 - 2019-12-07 01:00 - 000059274 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T010043.173.PDF
2019-12-07 00:54 - 2019-12-07 00:54 - 000249819 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T005431.920.PDF
2019-12-07 00:52 - 2019-12-07 00:52 - 000084027 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T005218.896.PDF
2019-12-07 00:50 - 2019-12-07 00:50 - 000489871 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T005005.324.PDF
2019-12-07 00:50 - 2019-12-07 00:50 - 000129793 _____ C:\Users\Jaco\Downloads\fichero - 2019-12-07T005051.996.PDF
2019-12-06 10:23 - 2019-10-01 18:19 - 001082672 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 001082672 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000940344 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000940344 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000853552 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-12-06 10:23 - 2019-10-01 18:19 - 000853552 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-12-06 10:23 - 2019-10-01 18:19 - 000711216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-12-06 10:23 - 2019-10-01 18:19 - 000711216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-12-06 10:23 - 2019-10-01 18:19 - 000212672 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000184352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000168992 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000141832 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000136712 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000121352 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-12-06 10:23 - 2019-10-01 18:19 - 000108040 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-12-06 10:23 - 2019-10-01 18:18 - 000284472 _____ C:\WINDOWS\system32\igfxCPL.cpl
2019-12-04 18:54 - 2019-12-04 18:54 - 009791167 _____ C:\Users\Jaco\Downloads\CAT_FAAC_2015 SIN PRECIOS.pdf
2019-12-04 16:40 - 2019-12-04 16:40 - 000853463 _____ C:\Users\Jaco\Downloads\fichero (26).EML
2019-12-03 19:18 - 2019-12-03 19:18 - 000069866 _____ C:\Users\Jaco\Downloads\36055A026007510001IO.pdf
2019-12-03 09:17 - 2019-12-03 09:17 - 000646144 _____ C:\Users\Jaco\Downloads\rv-z93850291-ref-11973679-cmp-49 (1).msg
2019-12-03 09:17 - 2019-12-03 09:17 - 000324096 _____ C:\Users\Jaco\Downloads\rv-siniestro-n-ref-mm-2019-00032-media-markt-vigo-z93847671 (2).msg
2019-12-03 09:16 - 2019-12-03 09:16 - 000324096 _____ C:\Users\Jaco\Downloads\rv-siniestro-n-ref-mm-2019-00032-media-markt-vigo-z93847671 (1).msg
2019-12-03 09:16 - 2019-12-03 09:16 - 000321536 _____ C:\Users\Jaco\Downloads\rv-siniestro-n-ref-mm-2019-00031-media-markt-vigo-z93846961 (1).msg
2019-12-03 00:43 - 2019-12-03 00:43 - 000853463 _____ C:\Users\Jaco\Downloads\fichero (25).EML

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-02 19:42 - 2018-03-09 22:15 - 000000000 ___RD C:\Users\Jaco\OneDrive - Certa Servicios Periciales, S.L
2020-01-02 19:41 - 2019-08-29 21:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-02 19:41 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-02 19:41 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-02 19:41 - 2018-03-04 21:48 - 000000000 __SHD C:\Users\Jaco\IntelGraphicsProfiles
2020-01-02 19:32 - 2019-08-29 21:28 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-02 19:32 - 2019-03-19 12:59 - 000788560 _____ C:\WINDOWS\system32\perfh00A.dat
2020-01-02 19:32 - 2019-03-19 12:59 - 000155850 _____ C:\WINDOWS\system32\perfc00A.dat
2020-01-02 19:32 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-02 19:19 - 2018-03-07 01:57 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-02 19:15 - 2019-10-03 12:38 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-01-02 19:15 - 2019-10-03 12:38 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-01-02 19:09 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-02 18:42 - 2018-03-17 00:51 - 000000000 ____D C:\Users\Jaco\Documents\Archivos de Outlook
2020-01-02 16:05 - 2019-08-29 21:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-02 04:02 - 2018-03-05 01:36 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\uTorrent
2020-01-02 03:43 - 2019-09-02 11:04 - 000000000 ____D C:\Users\Jaco\Downloads\Telegram Desktop
2019-12-25 03:23 - 2018-12-16 13:25 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\vlc
2019-12-24 00:00 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-12-23 23:55 - 2018-03-05 00:12 - 000000000 ____D C:\Users\Jaco\AppData\Local\PlaceholderTileLogoFolder
2019-12-23 23:55 - 2018-03-04 21:44 - 000000000 ____D C:\Users\Jaco\AppData\Local\Packages
2019-12-23 04:55 - 2018-03-05 01:53 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2019-12-21 22:56 - 2019-06-01 09:43 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\Kodi
2019-12-21 22:52 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-21 17:43 - 2018-03-07 03:08 - 000000000 ____D C:\Users\Jaco\AppData\LocalLow\Temp
2019-12-19 03:52 - 2019-08-29 20:13 - 000000000 ____D C:\Users\Jaco
2019-12-18 19:48 - 2018-03-05 00:09 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-18 15:54 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-12-18 15:17 - 2019-12-01 15:29 - 000000000 ____D C:\WINDOWS\Minidump
2019-12-18 15:17 - 2019-08-29 03:06 - 000000000 ___DC C:\WINDOWS\Panther
2019-12-18 15:17 - 2018-04-12 01:36 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\Notepad++
2019-12-18 15:17 - 2018-04-12 01:36 - 000000000 ____D C:\Program Files\Notepad++
2019-12-18 15:17 - 2018-03-05 02:02 - 000000000 ____D C:\Users\Jaco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-18 15:17 - 2018-03-05 02:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-18 15:17 - 2018-03-05 02:02 - 000000000 ____D C:\Program Files\WinRAR
2019-12-15 11:44 - 2019-08-29 21:26 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-15 11:44 - 2019-08-29 21:26 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-13 22:19 - 2019-08-29 21:19 - 000458064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-12-13 22:19 - 2018-03-04 23:56 - 000000000 ___RD C:\Users\Jaco\3D Objects
2019-12-13 22:19 - 2018-03-04 21:44 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-12-13 22:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-12-13 22:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-12-13 22:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-12-13 13:36 - 2018-03-04 22:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-12-13 13:03 - 2018-03-04 22:30 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-12-12 23:37 - 2018-03-05 01:53 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2019-12-08 22:03 - 2018-03-05 02:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-12-06 10:24 - 2018-03-27 14:31 - 000000000 ____D C:\ProgramData\Intel
2019-12-06 10:24 - 2018-03-04 21:48 - 000000000 ____D C:\Program Files\Intel

==================== Archivos en la raíz de algunos directorios ========

2018-08-13 17:07 - 2019-09-01 18:55 - 000000034 _____ () C:\Users\Jaco\AppData\Roaming\AdobeWLCMCache.dat
2018-12-16 13:14 - 2018-12-16 13:15 - 000005632 _____ () C:\Users\Jaco\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-28 23:32 - 2018-09-28 23:32 - 000000000 _____ () C:\Users\Jaco\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Hola

Cuando revise todo,te respondo

Saludos

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

• Para hacerlo descarga Delfix en tu escritorio.

• Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

• Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:

Start
CloseProcesses:

HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\Run: [14e03465] => C:\ProgramData\Intel\Wireless\1db1683\jcfedff.exe [943784 2020-01-02] (AutoIt Consulting Ltd -> AutoIt Team)
C:\ProgramData\Intel
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
AlternateDataStreams: C:\Users\Jaco\.DS_Store:AFP_AfpInfo [122]
AlternateDataStreams: C:\Users\Jaco\Desktop\MARTINA-13.jpg:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Jaco\Documents\.DS_Store:AFP_AfpInfo [122]


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

• Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows.

• Ejecutas Frst.exe.

• Presionas el botón Reparar y aguardas a que termine.

• La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema

Seguidos los pasos que me indicaste, y tras probar un rato el Pc con el bloc de notas ejecutado, no ha vuelto a aparecer el fallo hasta el momento. Muchísimas gracias!

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 28-12-2019
Ejecutado por Jaco (02-01-2020 22:50:27) Run:1
Ejecutado desde C:\Users\Jaco\Desktop
Perfiles cargados: Jaco (Perfiles disponibles: Jaco)
Modo de Inicio: Safe Mode (minimal)
==============================================

fixlist contenido:
*****************
Start
CloseProcesses:

HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\...\Run: [14e03465] => C:\ProgramData\Intel\Wireless\1db1683\jcfedff.exe [943784 2020-01-02] (AutoIt Consulting Ltd -> AutoIt Team)
C:\ProgramData\Intel
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
AlternateDataStreams: C:\Users\Jaco\.DS_Store:AFP_AfpInfo [122]
AlternateDataStreams: C:\Users\Jaco\Desktop\MARTINA-13.jpg:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Jaco\Documents\.DS_Store:AFP_AfpInfo [122]


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
*****************

Procesos cerrados correctamente.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
"HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\Software\Microsoft\Windows\CurrentVersion\Run\\14e03465" => eliminado correctamente
C:\ProgramData\Intel => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => no encontrado
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => eliminado correctamente
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
C:\Users\Jaco\.DS_Store => ":AFP_AfpInfo" ADS eliminado correctamente
C:\Users\Jaco\Desktop\MARTINA-13.jpg => ":com.dropbox.attributes" ADS eliminado correctamente
C:\Users\Jaco\Documents\.DS_Store => ":AFP_AfpInfo" ADS eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3212725279-3875735351-1938983290-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores



========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 293159789 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2287083 B
Edge => 1772713 B
Chrome => 490498833 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 55164 B
Jaco => 33851584 B

RecycleBin => 3381353 B
EmptyTemp: => 796.8 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 22:50:49 ====

Parece que todo está bien.

Para eliminar las herramientas usadas en la desinfección, realizas:

• Descargas y Ejecutas >> Delfix, en tu escritorio.

• Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)

• Marca solamente la casilla Remove disinfection tools

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.

Me alegro de haberte podido ayudar!

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.