Buen Dia
Solicito su ayuda con mi portatil, es un lenovo con Windows 7, esta lento en Internet para navegar, abrir paginas en cualquier browser (Firefox, Chrome)…
Gracias
Realiza los siguientes pasos, , sin cambiar el orden
1) Descarga, instala y ejecuta Malwarebytes’ Anti-Malware.
-
Presiona clic en “Use Malewarebytes Free” (Usar Malewarebyte gratis).
-
Pulsa en el botón “Open Malewarebytes Free”.
- Presiona el botón “Scan” (Escaneo).
Una vez finalizado el escaneo aparecerá la siguiente pantalla:
-
Pulsa en “View report” (Ver informe).
-
Luego presionar el botón “Export” (Exportar). Elijes “Text file” (fichero de texto). Elijes un nombre y guardas ese archivo en el escritorio…
2) Descarga Adwcleaner en el escritorio.
-
Desactiva tu antivirus
Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad. -
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.
-
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
-
Si no encuentra nada, pulsamos “Omitir Reparación”
-
El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"
Puedes mirar su manual >> Manual de Adwcleaner
3) Descarga Ccleaner
Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.
Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.
Gracias por su ayuda. Aca estan los reportes.
------------------------------------------------------------------------------------------------------------------------------------------Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 1/2/20
Hora del análisis: 9:46
Archivo de registro: 76e32358-4512-11ea-90ab-00ff7da6a089.json
-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.810
Versión del paquete de actualización: 1.0.18538
Licencia: Gratis
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: Admin-PC\Admin
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 465114
Amenazas detectadas: 31
Amenazas en cuarentena: 0
Tiempo transcurrido: 9 min, 46 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 3
Rootkit.Agent, HKLM\SOFTWARE\MICROSOFT|MSVER1, Sin acciones por parte del usuario, 480, 678869, 1.0.18538, , ame,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, Sin acciones por parte del usuario, 6974, 676880, 1.0.18538, , ame,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, Sin acciones por parte del usuario, 6974, 676880, 1.0.18538, , ame,
Datos del registro: 1
Adware.SonicSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Sin acciones por parte del usuario, 13532, 693611, 1.0.18538, , ame,
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 4
PUP.Optional.Conduit, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 199, 454832, , , ,
Archivo: 23
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHA.DB, Sin acciones por parte del usuario, 3754, 709582, 1.0.18538, , ame,
Adware.Linkury, C:\USERS\ADMIN\APPDATA\LOCAL\installer.dat, Sin acciones por parte del usuario, 416, 715618, 1.0.18538, , ame,
Adware.Linkury, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\installer.dat, Sin acciones por parte del usuario, 416, 715618, 1.0.18538, , ame,
Adware.Linkury.Generic, C:\USERS\ADMIN\APPDATA\LOCAL\SHA.DB, Sin acciones por parte del usuario, 3754, 709581, 1.0.18538, , ame,
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHA.DB, Sin acciones por parte del usuario, 3754, 709582, 1.0.18538, , ame,
Generic.Malware/Suspicious, C:\USERS\ADMIN\DOWNLOADS\MHOTSPOT_SETUP_3.EXE, Sin acciones por parte del usuario, 0, 392686, 1.0.18538, , shuriken,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002725.log, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002727.ldb, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000004.log, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, Sin acciones por parte del usuario, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 199, 454832, 1.0.18538, , ame,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 199, 454832, 1.0.18538, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-01-2020
# Duration: 00:00:50
# OS: Windows 7 Ultimate
# Scanned: 34824
# Detected: 27
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{97661056-F515-4828-B723-C2B065A85AA5}C:\program files (x86)\popcorn time\nodejs\node.exe
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{1E07CEA0-CA7C-4FA9-8107-BE90E11D19DD}C:\program files (x86)\popcorn time\nodejs\node.exe
PUP.Optional.MarginTrade HKCU\Software\Margin Trade
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
PUP.Optional.Conduit Conduit Search
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
PUP.Optional.HelperBar findit
PUP.Optional.Legacy findit
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.LenovoEasyCamera Registry HKCU\Software\Sunplus SPUVCb
Preinstalled.LenovoEasyCamera Registry HKLM\Software\Sunplus SPUVCb
Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Sunplus SPUVCb
Preinstalled.LenovoHotkeyManager Folder C:\Program Files\LENOVO\HOTKEY
Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Classes\CLSID\{A48CA1A4-C36B-44f2-8090-19E08DF4365E}
Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\OnScreenDisplay
Preinstalled.LenovoPeerConnectSDK Folder C:\Program Files\LENOVO\LENOVO PEER CONNECT
Preinstalled.LenovoPeerConnectSDK Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1
Preinstalled.LenovoServiceBridge Folder C:\Users\Admin\AppData\Local\PROGRAMS\LENOVO\LENOVO SERVICE BRIDGE
Preinstalled.LenovoServiceBridge Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1
Preinstalled.LenovoSimpleTap Folder C:\Program Files\LENOVO\SIMPLETAP
Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Preinstalled.LenovoSolutionCenter Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SOLUTION CENTER
Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5E35CA26-A9A2-47B8-AB52-8D0C9A3CA685}
Preinstalled.LenovoThinkVantageCommunicationsUtility Folder C:\Program Files\LENOVO\COMMUNICATIONS UTILITY
Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Classes\CLSID\{88C6A6D9-324C-46E8-BA87-563D14021442}
Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LENOVO.TPKNRRES
Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1
Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1
AdwCleaner[S00].txt - [9846 octets] - [17/03/2019 19:33:57]
AdwCleaner[C00].txt - [8650 octets] - [17/03/2019 19:34:19]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########Malwarebytes pone que “sin acciones por el usuario”…eliminaste a cuarentena todo?
Asegurate de que en cuarentena este todo y si no repites.
Luego.
-
Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
-
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits)
¿Cómo saber si mi Windows es de 32 o 64 bits? -
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.
-
En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.
-
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.
En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST
Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.
Buen Dia.
Volvi a ejecutar el Malwarebytes y coloque en Cuarentena todo. Ejecute el Fabar Recovery Scan Tool, aqui esta el resultado.
----------------------------------------------------------------------------------------------------------------------
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 2/2/20
Hora del análisis: 8:13
Archivo de registro: 9a4c498e-45ce-11ea-90da-00ff7da6a089.json
-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.810
Versión del paquete de actualización: 1.0.18590
Licencia: Gratis
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: Admin-PC\Admin
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 308355
Amenazas detectadas: 32
Amenazas en cuarentena: 32
Tiempo transcurrido: 3 min, 6 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 3
Rootkit.Agent, HKLM\SOFTWARE\MICROSOFT|MSVER1, En cuarentena, 486, 678869, 1.0.18590, , ame,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En cuarentena, 6978, 676880, 1.0.18590, , ame,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En cuarentena, 6978, 676880, 1.0.18590, , ame,
Datos del registro: 1
Adware.SonicSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Sustituido, 13536, 693611, 1.0.18590, , ame,
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 4
PUP.Optional.Conduit, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 199, 454832, , , ,
Archivo: 24
Adware.Linkury.Generic, C:\USERS\ADMIN\APPDATA\LOCAL\SHA.DB, En cuarentena, 3759, 709581, 1.0.18590, , ame,
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHA.DB, En cuarentena, 3759, 709582, 1.0.18590, , ame,
Adware.Linkury, C:\USERS\ADMIN\APPDATA\LOCAL\installer.dat, En cuarentena, 422, 715618, 1.0.18590, , ame,
Adware.Linkury, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\installer.dat, En cuarentena, 422, 715618, 1.0.18590, , ame,
Generic.Malware/Suspicious, C:\USERS\ADMIN\DOWNLOADS\MHOTSPOT_SETUP_3.EXE, En cuarentena, 0, 392686, 1.0.18590, , shuriken,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002737.ldb, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002739.ldb, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002740.log, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\002741.ldb, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000004.log, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\Users\Juancho\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, En cuarentena, 199, 454832, , , ,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 199, 454832, 1.0.18590, , ame,
PUP.Optional.Conduit, C:\USERS\JUANCHO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 199, 454832, 1.0.18590, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
---------------------------------------------------------------------------------------------------------------------- Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-02-2020 01
Ejecutado por Admin (administrador) sobre ADMIN-PC (LENOVO 20DF0040US) (02-02-2020 08:21:06)
Ejecutado desde C:\Users\Admin\Downloads
Perfiles cargados: Admin (Perfiles disponibles: Admin & Juancho)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(Cisco Video Technologies Israel Ltd. -> Cisco) C:\Users\Admin\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(CYBERGHOST S.A. -> CyberGhost S.A.) C:\Program Files\CyberGhost 7\CyberGhost.Service.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\89.4.278\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\89.4.278\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\89.4.278\QtWebEngineProcess.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel(R) Driver & Support Assistant -> Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
(Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\avpui.exe
(Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo(Japan)Ltd. -> Lenovo) C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Nitro PDF Software -> ) C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
(Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe
(philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Sunplus Innovation Technology Inc. -> SunplusIT, Inc.) [Archivo no firmado] C:\Program Files (x86)\Integrated Camera\Monitor.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\IEMonitor.exe
(Validity Sensors, Inc -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [297256 2017-08-29] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7955040 2018-12-04] (Intel Corporation -> Motorola Solutions, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2017-05-11] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1723040 2014-07-01] (Sunplus Innovation Technology Inc. -> SunplusIT, Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-06] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Google Desktop Search] => C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2019-02-11] (Google Inc -> Google)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261760 2020-01-22] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47552040 2019-12-22] (Google LLC -> )
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91503464 2019-12-13] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Run: [IDMan] => C:\Program Files (x86)\IDMan.exe [4034616 2019-02-11] (Tonec Inc.) [Archivo no firmado]
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Run: [VideoGuardMonitor] => C:\Users\Admin\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe [2353408 2018-07-22] (Cisco Video Technologies Israel Ltd. -> Cisco)
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-18\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [23081448 2019-04-03] (Plex, Inc -> Plex, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-22] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\79.1.2.43\Installer\chrmstp.exe [2020-01-17] (Brave Software, Inc.) [Archivo no firmado]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2019-10-21]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2019-02-10]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0C4DD301-1245-4350-9C18-AEA99E1C2A99} - System32\Tasks\{F08AA7CD-F1F3-47D7-9F94-16FEC8AF19A1} => C:\Windows\system32\pcalua.exe -a C:\Users\Admin\Downloads\win64_15.40.41.5058.exe -d C:\Users\Admin\Downloads
Task: {1DB921E0-F680-41D5-9A8B-3232DF116CB1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D476591-FF44-48B9-BB45-C1D293B893CD} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {43AEA849-2E00-462B-84A4-9023D7AB9164} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {48E84C08-7550-4E12-93C6-AA502FDA3D50} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [331544 2018-09-06] (Lenovo -> )
Task: {4930C6EA-5061-4AB7-87C0-23C873B1A831} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {5F42F97A-8A31-4912-8AF6-6AB279C8FAB1} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2143148389-1807257557-436391254-1000 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [86824 2019-12-18] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {68FDA048-5B9A-419B-95F3-2095BEEE8457} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D5EBCCE-B6E3-40EC-8865-9986ACF566A5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [17184 2014-09-02] (LENOVO -> Lenovo)
Task: {7195B3B8-BDED-49E3-95DE-781BAA7864BD} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {71F76DF7-F243-431F-849A-4C674C633760} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {7C763616-6765-4EEE-A736-0679341AFC75} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_pepper.exe [1453624 2020-01-21] (Adobe Inc. -> Adobe)
Task: {7D938634-439D-4F9D-975C-A579F2EAE4EB} - System32\Tasks\{6084C4C2-4E64-49B9-A617-A5BBE95F4519} => C:\Windows\system32\pcalua.exe -a C:\Users\Admin\Downloads\Programs\win64_15.36.36.5067.exe -d C:\Users\Admin\AppData\Roaming\IDM
Task: {85E3E10C-893D-4BD4-A35E-E0BBA8A352F6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_Plugin.exe [1458232 2020-01-21] (Adobe Inc. -> Adobe)
Task: {8A632699-7594-46B7-B899-4B549AA5AB75} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-05-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {91B0C1A7-30C0-41A6-88C0-E274FC6867E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {9BF4FE40-695E-451E-922C-629331CA757F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10920216 2018-09-06] (Lenovo -> Lenovo)
Task: {9C1CD82B-0D2A-48B2-AA41-E4E106ACFEE4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {9CA88677-3A04-4B27-992B-6237D7FC343F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A1C434A7-5121-470F-A959-AC14E87477CD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-05-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {AC4166B2-DB56-4961-841E-1B7B51E33BEF} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {B1F8F395-8F37-4A63-8127-5D6232534E8C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-10] (Google Inc -> Google Inc.)
Task: {C1131668-C1FC-4B13-B644-F207DDFAF93F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CAF5D0AC-984A-4ABC-BAEC-C625265C803B} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321240 2018-09-06] (Lenovo -> Lenovo)
Task: {CB6DF18A-A71B-42C6-8C89-36A3019AB9AC} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {F2E8C237-A876-4DB6-8BC1-11350DF59219} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-10] (Google Inc -> Google Inc.)
Task: {F4C94773-5C47-4369-AA50-D4304FE1DC90} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-21] (Adobe Inc. -> Adobe)
Task: {F9C08B2B-6198-4908-BB82-A7D2621569A9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog9 11 C:\Windows\SysWOW64\vsocklib.dll [42296 2019-08-13] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9 12 C:\Windows\SysWOW64\vsocklib.dll [42296 2019-08-13] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9-x64 11 C:\Windows\system32\vsocklib.dll [46392 2019-08-13] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9-x64 12 C:\Windows\system32\vsocklib.dll [46392 2019-08-13] (VMware, Inc. -> VMware, Inc.)
Tcpip\Parameters: [DhcpNameServer] 172.20.1.1
Tcpip\..\Interfaces\{2E8C88F7-A8AB-4B77-B5A6-FE964609E08F}: [DhcpNameServer] 172.20.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-co/?ocid=iehp
SearchScopes: HKLM-x32 -> DefaultScope no se encuentra el valor
SearchScopes: HKU\S-1-5-21-2143148389-1807257557-436391254-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=pWEZs4hfqQFMOnfuNQVyVUYNHzM?q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\IDMIECC64.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\IEExt\ie_plugin.dll [2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\IDMIECC.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\IEExt\ie_plugin.dll [2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\IEExt\ie_plugin.dll [2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\IEExt\ie_plugin.dll [2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-2143148389-1807257557-436391254-1000 -> Sin Nombre - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Ningún archivo
Toolbar: HKU\S-1-5-21-2143148389-1807257557-436391254-1000 -> Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\IEExt\ie_plugin.dll [2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-13] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1pz6lbi4.default
FF DefaultProfile: hhu6xc7l.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\PostboxApp\Profiles\1pz6lbi4.default [2020-02-01]
FF Extension: (Cloud Service Providers for Postbox) - C:\Users\Admin\AppData\Roaming\PostboxApp\Profiles\1pz6lbi4.default\Extensions\[email protected] [2019-07-19] [Heredado] [no firmado]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default [2020-02-02]
FF Notifications: Mozilla\Firefox\Profiles\hhu6xc7l.default -> hxxps://www.grupobancolombia.com; hxxp://www.movistar.co; hxxps://webmail.une.net.co; hxxps://localbitcoins.com; hxxps://forum.kaspersky.com; hxxps://www.laneros.com; hxxps://web.whatsapp.com; hxxps://www.movistar.co; hxxps://voice.google.com; hxxps://forospyware.com
FF Extension: (Grammarly for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default\Extensions\[email protected] [2019-12-20]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default\Extensions\[email protected] [2019-05-14]
FF Extension: (ighangouts) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default\Extensions\[email protected] [2019-10-20]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default\Extensions\[email protected] [2020-01-28]
FF Extension: (open-in-pdf) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hhu6xc7l.default\Extensions\{2582ab30-4fca-475f-88d0-c1a9b9ed978f}.xpi [2019-08-23]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-19]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\FFExt\light_plugin_firefox\addon.xpi
FF HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\idmmzcc3.xpi [2019-02-09] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]
FF HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5 [2019-02-24] [Heredado] [no firmado]
FF HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\idmmzcc2.xpi [2017-12-20] [Heredado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-01-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-05-19] (Nitro PDF Software -> Nitro PDF)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2143148389-1807257557-436391254-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Admin\AppData\Roaming\Zoom\bin_00\npzoomplugin.dll [2019-09-18] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-09-30] <==== ATENCIÓN (Apunta a archivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-09-30] <==== ATENCIÓN
Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2020-02-02]
CHR StartupUrls: Default -> "hxxps://www.google.com.co/webhp?source=search_app"
CHR Extension: (Presentaciones) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-10]
CHR Extension: (Documentos) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-02-10]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-02-10]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-10]
CHR Extension: (Tabs Backup & Restore) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dehocbglhkaogiljpihicakmlockmlgd [2019-02-10]
CHR Extension: (Multiple Account Checker for Gmail™) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnimhgelcnggigekhdjlifjpndgmnglm [2019-02-10]
CHR Extension: (Chrome Connectivity Diagnostics) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eemlkeanncmjljgehlbplemhmdmalhdc [2019-02-10]
CHR Extension: (Gmail sin conexión) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2019-02-10]
CHR Extension: (Kaspersky Protection) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-01-31]
CHR Extension: (Full Page Screen Capture) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2019-11-27]
CHR Extension: (Hojas de cálculo) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-02-10]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2019-02-26]
CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-19]
CHR Extension: (Folders) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfneimmafjbamgcijncgicpphapfmpgl [2019-02-10]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-09]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-01-23]
CHR Extension: (Helium Backup) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2019-08-06]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-01-28]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2019-02-10]
CHR Extension: (Cuevana Full Downloader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\joplgpkbfbcdjidogkikhdbddahjclpc [2019-02-10]
CHR Extension: (LastPass Vault) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncliohomlfopnmlfkepkcbnhmeijkhhf [2019-02-10]
CHR Extension: (IDM Integration Module) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-01-14]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (PDF Viewer) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2019-09-13]
CHR Extension: (TunnelBear VPN) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdakjcmkglenbhjadbccaookpfjihpa [2019-03-27]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-02-10]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\IDMGCExt.crx [2019-02-10]
CHR HKU\S-1-5-21-2143148389-1807257557-436391254-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\IDMGCExt.crx [2019-02-10]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [246784 2015-08-07] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3025872 2019-11-29] (philandro Software GmbH -> )
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [93480 2015-10-13] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-20] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CG7Service; C:\Program Files\CyberGhost 7\CyberGhost.Service.exe [93904 2020-01-21] (CYBERGHOST S.A. -> CyberGhost S.A.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe [73200 2019-12-17] (Google LLC -> Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-05-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-05-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-01-22] (Dropbox, Inc -> Dropbox, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [23288 2019-01-28] (Intel(R) Driver & Support Assistant -> Intel)
S3 GoogleDesktopManager-051210-111108; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2019-02-11] (Google Inc -> Google)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [531040 2018-12-11] (Intel Corporation -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370736 2018-09-18] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [169768 2017-08-29] (Lenovo -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited)
R2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [21552 2014-02-21] (Lenovo(Japan)Ltd. -> Lenovo)
S2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [337688 2018-09-06] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-01] (Malwarebytes Inc -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [311584 2019-04-22] (Intel Corporation -> )
R2 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [230920 2014-05-19] (Nitro PDF Software -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [417800 2014-05-19] (Nitro PDF Software -> )
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2014-05-19] (Nitro PDF Software -> Nalpeiron Ltd.)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [1140200 2019-04-03] (Plex, Inc -> Plex, Inc.)
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-12-05] (LENOVO -> Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [317224 2014-12-05] (LENOVO -> Lenovo Group Limited)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-15] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49040 2014-07-24] (Validity Sensors, Inc -> Synaptics Incorporated)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-04-27] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-04-22] (Intel Corporation -> Intel® Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [21634560 2015-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [665600 2015-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [65248 2015-04-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-01-14] (Bluestack Systems, Inc -> Bluestack System Inc. )
R3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [156744 2018-12-10] (Intel Corporation -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1566280 2018-12-10] (Intel Corporation -> Motorola Solutions, Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [533496 2017-01-31] (Intel(R) INTELND1617 -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-06-16] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\Windows\System32\DRIVERS\ibtusb.sys [132168 2018-12-10] (Intel Corporation -> Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [531584 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145304 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [251512 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998016 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [59512 2019-03-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S4 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [211048 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-02] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-10-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw02.sys [3425480 2019-04-30] (Intel Corporation -> Intel Corporation)
R0 PMDRVS; C:\Windows\System32\DRIVERS\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
R3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [466136 2014-01-14] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [719136 2014-06-16] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [103736 2019-08-13] (VMware, Inc. -> VMware, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-02-02 08:21 - 2020-02-02 08:21 - 000047673 _____ C:\Users\Admin\Downloads\FRST.txt
2020-02-02 08:21 - 2020-02-02 08:21 - 000000000 ____D C:\FRST
2020-02-02 08:18 - 2020-02-02 08:18 - 000005850 _____ C:\Users\Admin\Desktop\Malwarebytes Feb2.txt
2020-02-02 08:12 - 2020-02-02 08:12 - 002280448 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2020-02-02 07:53 - 2020-02-02 07:53 - 000002147 _____ C:\Users\Admin\Desktop\Hola Fake GPS.lnk
2020-02-02 07:41 - 2020-02-02 07:41 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-02 07:41 - 2020-02-02 07:41 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-02 07:41 - 2020-02-02 07:41 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TouchPad
2020-02-02 01:01 - 2020-02-02 01:01 - 000002293 _____ C:\Users\Admin\Desktop\bet365.lnk
2020-02-01 16:58 - 2020-02-01 16:58 - 000107165 _____ C:\Users\Admin\Downloads\COMUNICADO USO ADECUADO DE CAJONES DE CONDENSADORAS.pdf
2020-02-01 15:57 - 2020-02-01 15:57 - 000000000 ____D C:\Users\Admin\Desktop\Nueva carpeta
2020-02-01 10:56 - 2020-02-01 10:56 - 000004450 _____ C:\Users\Admin\Desktop\AdwCleaner[S01].txt
2020-02-01 10:50 - 2020-02-01 10:51 - 008356016 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_8.0.2.exe
2020-02-01 10:49 - 2020-02-01 10:50 - 000006348 _____ C:\Users\Admin\Desktop\Malwarebytes Feb1.txt
2020-02-01 09:46 - 2020-02-01 09:46 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-01 09:46 - 2020-02-01 09:46 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-01 09:46 - 2020-02-01 09:46 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-02-01 09:46 - 2020-02-01 09:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-01 09:46 - 2020-02-01 09:46 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-01 09:44 - 2020-02-01 09:44 - 001924728 _____ (Malwarebytes) C:\Users\Admin\Downloads\MBSetup.exe
2020-02-01 09:24 - 2020-02-01 09:24 - 000031744 _____ C:\Users\Admin\Desktop\AVISO2.webp
2020-01-31 22:19 - 2020-01-31 22:24 - 001780224 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\rkill-unsigned.exe
2020-01-31 19:07 - 2020-01-31 19:07 - 000206099 _____ C:\Users\Admin\Downloads\T-2020014160-2828364.pdf
2020-01-31 11:35 - 2020-01-31 11:35 - 000250263 _____ C:\Users\Admin\Downloads\Extracto Tarjeta Mastercard Diciembre Elmer Eraso.pdf
2020-01-30 21:47 - 2020-01-30 21:47 - 000081982 _____ C:\Users\Admin\Downloads\(G)ESTACIONANDO EN PARQUEADERO DE VISITANTES APTO 1B-603 ENERO 30 DE 2020.pdf
2020-01-30 21:47 - 2020-01-30 21:47 - 000045806 _____ C:\Users\Admin\Downloads\(2)CENSO ELECTRICARIBE TORRE 3A GESTION LAVADO DE MUEBLES DEL LOBBY.pdf
2020-01-29 21:22 - 2020-01-29 21:22 - 000126367 _____ C:\Users\Admin\Downloads\COMUNICADO NORMAS PARA USO DEL SALON SOCIAL, RUIDO, CIGARRILLO, SUST. PSICOACTIVAS..pdf
2020-01-29 14:25 - 2020-01-29 14:25 - 000635935 _____ C:\Users\Admin\Downloads\message(2).html
2020-01-28 23:30 - 2020-01-28 23:30 - 000373978 _____ C:\Users\Admin\Downloads\EXTRACTO_portafolio2020012422511980039410.pdf
2020-01-28 21:21 - 2020-01-28 21:21 - 000204696 _____ C:\Users\Admin\Downloads\T-2020001192-2805234(1).pdf
2020-01-27 18:16 - 2020-01-27 18:16 - 000155293 _____ C:\Users\Admin\Downloads\8709965.pdf
2020-01-26 18:12 - 2020-01-26 18:12 - 000002173 _____ C:\Users\Admin\Desktop\CyberGhost.lnk
2020-01-26 18:03 - 2020-01-26 18:03 - 000002121 _____ C:\Users\Public\Desktop\BlueStacks Multi-Instance Manager.lnk
2020-01-26 18:03 - 2020-01-26 18:03 - 000002121 _____ C:\ProgramData\Desktop\BlueStacks Multi-Instance Manager.lnk
2020-01-26 18:02 - 2020-01-26 18:03 - 000000000 ____D C:\ProgramData\BlueStacks
2020-01-26 18:02 - 2020-01-26 18:02 - 000000000 ____D C:\Program Files\BlueStacks
2020-01-26 08:58 - 2020-01-26 08:58 - 000204696 _____ C:\Users\Admin\Downloads\T-2020001192-2805234.pdf
2020-01-24 22:12 - 2020-01-24 22:12 - 000169685 _____ C:\Users\Admin\Downloads\T-2019179546-2803441.pdf
2020-01-23 12:32 - 2020-01-23 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-01-22 21:51 - 2020-01-22 21:51 - 002734125 _____ C:\Users\Admin\Downloads\Pago cuota altares Enero 2020.pdf
2020-01-22 18:50 - 2020-01-22 18:55 - 303614353 _____ C:\Users\Admin\Downloads\asesoria william p1.mp4
2020-01-22 16:24 - 2020-01-22 16:24 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-01-22 16:24 - 2020-01-22 16:24 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-01-22 16:24 - 2020-01-22 16:24 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-01-22 16:24 - 2020-01-22 16:24 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-01-22 13:25 - 2020-01-22 13:25 - 000056741 _____ C:\Users\Admin\Downloads\COMUNICADO HORARIO DE ATENCION OFICINA DE ADMON Y PROTOCOLO MANEJO DE LLAVES DEL GIMNASIO.pdf
2020-01-21 09:11 - 2020-01-21 09:12 - 000246981 _____ C:\Users\Admin\Downloads\Extracto515552816_20201_5240_TARJETA_VISA_6756(1).pdf
2020-01-21 09:10 - 2020-01-21 09:10 - 000246981 _____ C:\Users\Admin\Downloads\Extracto515552816_20201_5240_TARJETA_VISA_6756.pdf
2020-01-21 07:11 - 2020-01-21 07:11 - 000001314 _____ C:\Users\Admin\Downloads\Clave_Acceso.PDF
2020-01-20 17:49 - 2020-01-21 07:04 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-18 21:05 - 2020-01-18 21:05 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time
2020-01-18 21:05 - 2020-01-18 21:05 - 000000000 ____D C:\Users\Admin\AppData\Local\Chromium
2020-01-18 21:04 - 2020-01-18 21:05 - 000000000 ____D C:\Users\Admin\AppData\Local\Popcorn-Time
2020-01-18 18:39 - 2020-01-18 18:39 - 000000000 ____D C:\Users\Admin\AppData\Local\1BN_Software_&_IT_Solutio
2020-01-18 17:53 - 2020-01-18 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mHotspot
2020-01-18 17:53 - 2020-01-18 17:53 - 000000000 ____D C:\Program Files (x86)\mHotspot
2020-01-18 12:46 - 2020-01-18 12:46 - 000643044 _____ C:\Users\Admin\Downloads\Factura-66750253(1).pdf
2020-01-18 09:56 - 2020-01-18 09:56 - 000057156 _____ C:\Users\Admin\Desktop\Send Money - Confirmation - Wells Fargo.pdf
2020-01-16 22:43 - 2020-01-16 22:43 - 003037190 _____ C:\Users\Admin\Downloads\SVID_20200116_172858_1.mp4
2020-01-16 22:29 - 2020-01-16 22:29 - 000084161 _____ C:\Users\Admin\Downloads\Visa+Infinite+-Términos+y+condiciones+Bono+de+Puntos+de+Bienvenida+2019.pdf
2020-01-16 17:55 - 2020-01-02 20:42 - 004061624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2020-01-16 17:55 - 2020-01-02 20:42 - 003967416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2020-01-16 17:55 - 2020-01-02 20:41 - 001320248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2020-01-16 17:55 - 2020-01-02 20:38 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 005553888 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-16 17:55 - 2020-01-02 20:37 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-01-16 17:55 - 2020-01-02 20:37 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-01-16 17:55 - 2020-01-02 20:37 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000263904 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2020-01-16 17:55 - 2020-01-02 20:37 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:37 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:36 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-01-16 17:55 - 2020-01-02 20:35 - 001671296 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:33 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:10 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2020-01-16 17:55 - 2020-01-02 20:09 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2020-01-16 17:55 - 2020-01-02 20:05 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2020-01-16 17:55 - 2020-01-02 20:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2020-01-16 17:55 - 2020-01-02 20:05 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2020-01-16 17:55 - 2020-01-02 20:04 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2020-01-16 17:55 - 2020-01-02 20:04 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2020-01-16 17:55 - 2020-01-02 20:04 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2020-01-16 17:55 - 2020-01-02 20:04 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2020-01-16 17:55 - 2020-01-02 20:04 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2020-01-16 17:55 - 2020-01-02 20:02 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2020-01-16 17:55 - 2020-01-02 20:02 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:02 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:02 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:02 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2020-01-16 17:55 - 2020-01-02 20:01 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2020-01-16 17:55 - 2020-01-02 20:01 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2020-01-16 17:55 - 2020-01-02 20:00 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-01-16 17:55 - 2020-01-02 19:57 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2020-01-16 17:55 - 2020-01-02 19:57 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-01-16 17:55 - 2020-01-02 19:57 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2020-01-16 17:55 - 2020-01-02 19:57 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-01-16 17:55 - 2020-01-02 19:57 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-01-16 17:55 - 2020-01-02 19:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2020-01-16 17:55 - 2020-01-02 19:55 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2020-01-16 17:55 - 2020-01-02 19:55 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2020-01-16 17:55 - 2019-12-30 20:04 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2020-01-16 17:55 - 2019-12-18 10:45 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-01-16 17:55 - 2019-12-18 09:48 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-01-16 17:55 - 2019-12-16 19:39 - 025754624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-01-16 17:55 - 2019-12-16 18:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-01-16 17:55 - 2019-12-16 18:18 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2020-01-16 17:55 - 2019-12-16 18:06 - 002910720 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-01-16 17:55 - 2019-12-16 18:04 - 000580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-01-16 17:55 - 2019-12-16 18:04 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-01-16 17:55 - 2019-12-16 18:04 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2020-01-16 17:55 - 2019-12-16 18:04 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2020-01-16 17:55 - 2019-12-16 18:03 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-01-16 17:55 - 2019-12-16 17:57 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-01-16 17:55 - 2019-12-16 17:56 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2020-01-16 17:55 - 2019-12-16 17:54 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2020-01-16 17:55 - 2019-12-16 17:53 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-01-16 17:55 - 2019-12-16 17:52 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-01-16 17:55 - 2019-12-16 17:52 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-01-16 17:55 - 2019-12-16 17:52 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-16 17:55 - 2019-12-16 17:52 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2020-01-16 17:55 - 2019-12-16 17:52 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2020-01-16 17:55 - 2019-12-16 17:49 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-01-16 17:55 - 2019-12-16 17:45 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2020-01-16 17:55 - 2019-12-16 17:42 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2020-01-16 17:55 - 2019-12-16 17:37 - 000496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-01-16 17:55 - 2019-12-16 17:37 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2020-01-16 17:55 - 2019-12-16 17:36 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2020-01-16 17:55 - 2019-12-16 17:36 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2020-01-16 17:55 - 2019-12-16 17:36 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2020-01-16 17:55 - 2019-12-16 17:35 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2020-01-16 17:55 - 2019-12-16 17:35 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-01-16 17:55 - 2019-12-16 17:35 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-01-16 17:55 - 2019-12-16 17:33 - 002304000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-01-16 17:55 - 2019-12-16 17:32 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2020-01-16 17:55 - 2019-12-16 17:31 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-01-16 17:55 - 2019-12-16 17:30 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-01-16 17:55 - 2019-12-16 17:30 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2020-01-16 17:55 - 2019-12-16 17:29 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-01-16 17:55 - 2019-12-16 17:28 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2020-01-16 17:55 - 2019-12-16 17:27 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-16 17:55 - 2019-12-16 17:27 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2020-01-16 17:55 - 2019-12-16 17:27 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2020-01-16 17:55 - 2019-12-16 17:26 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-01-16 17:55 - 2019-12-16 17:18 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2020-01-16 17:55 - 2019-12-16 17:18 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-01-16 17:55 - 2019-12-16 17:16 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-01-16 17:55 - 2019-12-16 17:16 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-01-16 17:55 - 2019-12-16 17:14 - 015445504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-01-16 17:55 - 2019-12-16 17:14 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-01-16 17:55 - 2019-12-16 17:14 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2020-01-16 17:55 - 2019-12-16 17:14 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-01-16 17:55 - 2019-12-16 17:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2020-01-16 17:55 - 2019-12-16 17:13 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2020-01-16 17:55 - 2019-12-16 17:11 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2020-01-16 17:55 - 2019-12-16 17:10 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-01-16 17:55 - 2019-12-16 17:09 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-01-16 17:55 - 2019-12-16 17:08 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2020-01-16 17:55 - 2019-12-16 17:04 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-01-16 17:55 - 2019-12-16 17:03 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-01-16 17:55 - 2019-12-16 17:02 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2020-01-16 17:55 - 2019-12-16 17:01 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-01-16 17:55 - 2019-12-16 17:01 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-01-16 17:55 - 2019-12-16 17:00 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2020-01-16 17:55 - 2019-12-16 16:56 - 013838336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-01-16 17:55 - 2019-12-16 16:52 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-01-16 17:55 - 2019-12-16 16:43 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-01-16 17:55 - 2019-12-16 16:41 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-01-16 17:55 - 2019-12-16 16:39 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-01-16 17:55 - 2019-12-16 16:38 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-01-16 17:55 - 2019-12-11 20:35 - 000271872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-16 17:55 - 2019-12-11 20:34 - 000253952 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2020-01-16 17:55 - 2019-12-11 20:28 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-16 17:55 - 2019-12-11 20:28 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2020-01-16 17:55 - 2019-12-11 20:27 - 000284160 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2020-01-16 17:55 - 2019-12-11 20:07 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-01-16 17:55 - 2019-12-11 20:07 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-01-16 17:55 - 2019-12-10 02:36 - 000375008 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2020-01-16 17:55 - 2019-12-10 01:38 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-01-16 17:55 - 2019-12-10 01:38 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 002319360 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000583168 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000191488 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-01-16 17:55 - 2019-12-10 01:32 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2020-01-16 17:55 - 2019-12-10 01:23 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2020-01-16 17:55 - 2019-12-10 01:22 - 000428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-16 17:55 - 2019-12-10 01:22 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-01-16 17:55 - 2019-12-10 01:22 - 000093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2020-01-16 17:55 - 2019-12-10 01:22 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-01-16 17:55 - 2019-12-10 01:22 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2020-01-16 17:55 - 2019-12-10 01:22 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2020-01-16 17:55 - 2019-12-10 01:22 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2020-01-16 17:55 - 2019-12-10 01:17 - 006136320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-16 17:55 - 2019-12-10 01:17 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-01-16 17:55 - 2019-12-10 01:16 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-01-16 17:55 - 2019-12-10 01:16 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-01-16 17:55 - 2019-12-10 01:16 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-01-16 17:55 - 2019-12-10 01:16 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-01-16 17:55 - 2019-12-10 01:15 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-16 17:55 - 2019-12-10 01:15 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-01-16 17:55 - 2019-12-10 01:14 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-01-16 17:55 - 2019-12-10 01:01 - 003233280 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-01-16 17:55 - 2019-12-10 00:56 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-01-16 17:55 - 2019-12-09 23:17 - 007084032 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-16 17:54 - 2019-12-30 19:40 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-01-16 17:54 - 2019-12-30 19:32 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-01-15 22:09 - 2020-01-15 22:09 - 000690458 _____ C:\Users\Admin\Downloads\351396750(5).pdf
2020-01-13 20:59 - 2020-01-13 20:59 - 000127678 _____ C:\Users\Admin\Downloads\8679734.pdf
2020-01-13 20:59 - 2020-01-13 20:59 - 000101157 _____ C:\Users\Admin\Downloads\8679734_detalle.pdf
2020-01-13 10:15 - 2020-01-13 10:16 - 024578944 _____ (Piriform Software Ltd) C:\Users\Admin\Downloads\ccsetup563.exe
2020-01-12 22:27 - 2020-01-12 22:27 - 000004749 _____ C:\Users\Admin\Downloads\CC_212_Apa-3a-0703_2020-01.pdf
2020-01-12 22:19 - 2020-01-12 22:19 - 000030816 _____ C:\Users\Admin\Downloads\6130152299.pdf
2020-01-12 21:34 - 2020-01-12 21:34 - 000503835 _____ C:\Users\Admin\Downloads\archivos_radicados(1).zip
2020-01-12 21:34 - 2020-01-12 21:34 - 000179178 _____ C:\Users\Admin\Downloads\T-2019166023-2757105.pdf
2020-01-12 21:14 - 2020-01-12 21:14 - 000721842 _____ C:\Users\Admin\Downloads\face_f0805006014000691f3e8(1).pdf
2020-01-12 21:03 - 2020-01-12 21:04 - 000282301 _____ C:\Users\Admin\Downloads\procedimiento-y-tramite-de-peticiones-quejas-y-recursos.pdf
2020-01-12 20:51 - 2020-01-12 20:51 - 000150701 _____ C:\Users\Admin\Downloads\8631469_(1).pdf
2020-01-12 20:04 - 2020-01-12 20:04 - 000020754 _____ C:\Users\Admin\Downloads\reporte(3).pdf
2020-01-11 23:21 - 2020-01-11 23:21 - 000150701 _____ C:\Users\Admin\Downloads\8631469_.pdf
2020-01-10 22:35 - 2020-01-10 22:35 - 000410670 _____ C:\Users\Admin\Downloads\Untitled.pdf
2020-01-09 22:28 - 2020-01-09 22:28 - 000213997 _____ C:\Users\Admin\Downloads\pasivo_00300029826.pdf
2020-01-09 22:15 - 2020-01-09 22:15 - 000185400 _____ C:\Users\Admin\Downloads\CUENTA DE COBRO MES ENERO AP. 505.pdf
2020-01-08 22:36 - 2020-01-08 22:36 - 000060043 _____ C:\Users\Admin\Downloads\Extracto507134715_201912_5240_CONSOLIDADO_5240.pdf
2020-01-07 20:40 - 2020-01-07 20:40 - 001591254 _____ C:\Users\Admin\Downloads\factura Triple A Enero 2020.pdf
2020-01-07 14:18 - 2020-01-07 14:18 - 000004404 _____ C:\Users\Admin\Downloads\CollectVoucher(6).pdf
2020-01-07 08:52 - 2020-01-07 08:52 - 000719067 _____ C:\Users\Admin\Downloads\face_f080500601400068753f2.pdf
2020-01-07 08:51 - 2020-01-07 08:51 - 000721842 _____ C:\Users\Admin\Downloads\face_f0805006014000691f3e8.pdf
2020-01-07 08:30 - 2020-01-07 08:30 - 000206293 _____ C:\Users\Admin\Downloads\410_1_ACUSO DE RECIBO.pdf
2020-01-06 19:28 - 2020-01-06 19:28 - 000503835 _____ C:\Users\Admin\Downloads\archivos_radicados.zip
2020-01-05 21:33 - 2020-01-05 21:33 - 000722972 _____ C:\Users\Admin\Downloads\poliza sura arriendo chapinero nov2019.zip
2020-01-05 11:29 - 2020-01-05 11:29 - 000420734 _____ C:\Users\Admin\Downloads\Boarding Pass - BTHEQN - PHX-JFK.pdf
2020-01-04 10:40 - 2020-01-04 10:40 - 000629952 _____ C:\Users\Admin\Downloads\Extracto(1).pdf
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-02-02 08:21 - 2019-02-10 10:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-02-02 08:13 - 2019-02-23 19:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\DMCache
2020-02-02 07:49 - 2009-07-13 21:45 - 000021472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-02 07:49 - 2009-07-13 21:45 - 000021472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-02 07:47 - 2011-04-12 02:10 - 000750368 _____ C:\Windows\system32\perfh00A.dat
2020-02-02 07:47 - 2011-04-12 02:10 - 000160334 _____ C:\Windows\system32\perfc00A.dat
2020-02-02 07:47 - 2009-07-13 22:13 - 001685232 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-02 07:47 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2020-02-02 07:44 - 2019-02-10 09:49 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2020-02-02 07:43 - 2019-10-12 22:32 - 000000000 ___RD C:\Users\Admin\Google Drive ([email protected])
2020-02-02 07:43 - 2019-08-22 05:01 - 000000000 ___RD C:\Users\Admin\GD EERASO2
2020-02-02 07:42 - 2019-12-05 22:12 - 000000000 ____D C:\Users\Admin\AppData\Local\CyberGhost
2020-02-02 07:42 - 2019-05-12 11:27 - 000000948 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-02-02 07:42 - 2019-02-12 18:40 - 000000000 ___RD C:\Users\Admin\Google Drive
2020-02-02 07:42 - 2019-02-10 10:25 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2020-02-02 07:41 - 2019-10-04 19:49 - 000000000 ____D C:\ProgramData\VMware
2020-02-02 07:41 - 2019-05-12 11:27 - 000000944 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-02-02 07:41 - 2019-02-11 21:01 - 000000000 ____D C:\ProgramData\Validity
2020-02-02 07:41 - 2019-02-10 12:20 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-02 07:41 - 2019-02-10 10:00 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-02-02 07:41 - 2009-07-13 22:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-01 11:54 - 2019-05-12 11:30 - 000000000 ___RD C:\Users\Admin\Dropbox
2020-02-01 11:01 - 2019-02-23 19:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IDM
2020-02-01 11:01 - 2019-02-10 12:20 - 000000000 ____D C:\Users\Admin\AppData\Roaming\TeamViewer
2020-02-01 09:46 - 2019-02-24 09:45 - 000000000 ____D C:\Users\Admin\AppData\Local\cache
2020-01-31 22:51 - 2019-03-17 20:54 - 000002204 _____ C:\Users\Admin\Desktop\Rkill.txt
2020-01-31 08:50 - 2019-03-17 20:55 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-01-28 13:37 - 2019-05-12 11:27 - 000003944 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2020-01-28 13:37 - 2019-05-12 11:27 - 000003692 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2020-01-26 18:07 - 2019-09-10 11:43 - 000003862 _____ C:\Windows\system32\Tasks\BlueStacksHelper
2020-01-26 18:03 - 2019-09-10 11:40 - 000002133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2020-01-26 18:03 - 2019-09-10 11:40 - 000001814 _____ C:\Users\Public\Desktop\BlueStacks.lnk
2020-01-26 18:03 - 2019-09-10 11:40 - 000001814 _____ C:\ProgramData\Desktop\BlueStacks.lnk
2020-01-26 18:03 - 2019-09-10 11:40 - 000001796 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2020-01-26 18:02 - 2019-09-10 11:24 - 000000000 ____D C:\Users\Public\BlueStacks
2020-01-26 18:02 - 2019-09-10 11:24 - 000000000 ____D C:\Users\Admin\AppData\Local\BlueStacksSetup
2020-01-26 18:02 - 2019-09-10 11:24 - 000000000 ____D C:\Users\Admin\AppData\Local\BlueStacks
2020-01-23 12:32 - 2019-05-12 11:27 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-01-22 18:22 - 2019-02-12 18:39 - 000002000 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000002000 _____ C:\ProgramData\Desktop\Google Slides.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000001998 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000001998 _____ C:\ProgramData\Desktop\Google Sheets.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000001988 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000001988 _____ C:\ProgramData\Desktop\Google Docs.lnk
2020-01-22 18:22 - 2019-02-12 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-22 13:21 - 2019-02-10 09:42 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-22 13:21 - 2019-02-10 09:42 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-22 13:21 - 2019-02-10 09:42 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-01-21 22:40 - 2019-02-12 19:20 - 000000000 ____D C:\Users\Admin\AppData\Roaming\PrimoPDF
2020-01-21 21:39 - 2019-11-16 08:39 - 000004290 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-01-21 21:39 - 2019-10-27 11:19 - 000004458 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-01-21 21:39 - 2019-03-09 10:07 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-01-21 21:39 - 2019-03-09 10:07 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-01-21 21:39 - 2019-03-09 10:07 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-01-21 21:39 - 2019-03-09 10:07 - 000000000 ____D C:\Windows\system32\Macromed
2020-01-21 21:06 - 2019-03-09 10:08 - 000004492 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-01-21 06:58 - 2019-02-10 09:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-20 21:17 - 2019-02-12 18:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Nitro
2020-01-18 08:01 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\rescache
2020-01-17 21:51 - 2019-10-20 21:17 - 000002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-01-17 21:51 - 2019-10-20 21:17 - 000002298 _____ C:\Users\Public\Desktop\Brave.lnk
2020-01-17 21:51 - 2019-10-20 21:17 - 000002298 _____ C:\ProgramData\Desktop\Brave.lnk
2020-01-16 23:04 - 2009-07-13 21:45 - 000434016 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-16 22:28 - 2019-02-12 18:34 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-01-16 22:25 - 2019-02-10 09:50 - 001659818 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-01-16 20:42 - 2019-02-10 09:40 - 000000000 ____D C:\Program Files (x86)\Google
2020-01-14 12:08 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\NDF
2020-01-13 10:41 - 2019-03-17 20:55 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-01-13 10:41 - 2019-03-17 20:55 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-01-12 09:03 - 2019-03-15 17:25 - 000000000 ____D C:\Users\Juancho
2020-01-07 19:12 - 2019-02-23 19:08 - 000000000 ____D C:\Users\Admin\Downloads\Video
==================== Archivos en la raíz de algunos directorios ========
2019-02-10 23:33 - 2016-12-15 10:13 - 000002681 _____ () C:\Program Files (x86)\defexclist.txt
2019-02-10 23:33 - 2018-11-15 07:26 - 000120376 _____ (Tonec Inc.) C:\Program Files (x86)\downlWithIDM.dll
2019-02-10 23:33 - 2018-11-15 07:27 - 000158776 _____ (Tonec Inc.) C:\Program Files (x86)\downlWithIDM64.dll
2019-02-10 23:33 - 2005-12-15 08:20 - 000132285 _____ () C:\Program Files (x86)\grabber.chm
2019-02-10 23:33 - 2011-03-03 06:36 - 000320931 _____ () C:\Program Files (x86)\idman.chm
2019-02-10 23:33 - 2019-02-11 14:47 - 004034616 _____ (Tonec Inc.) C:\Program Files (x86)\IDMan.exe
2019-02-10 23:33 - 2004-02-09 04:39 - 000002596 _____ () C:\Program Files (x86)\idmantypeinfo.tlb
2019-02-10 23:33 - 2018-11-15 07:07 - 000239520 _____ (Tonec Inc.) C:\Program Files (x86)\idmbrbtn.dll
2019-02-10 23:33 - 2018-11-15 07:07 - 000253640 _____ (Tonec Inc.) C:\Program Files (x86)\idmbrbtn64.dll
2019-02-10 23:33 - 2018-11-15 07:17 - 000075320 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\idmBroker.exe
2019-02-24 09:25 - 2019-02-24 09:25 - 000333848 _____ (Tonec Inc.) C:\Program Files (x86)\idmcchandler2.dll
2019-02-24 09:25 - 2019-02-24 09:25 - 000461848 _____ (Tonec Inc.) C:\Program Files (x86)\idmcchandler2_64.dll
2019-02-10 23:33 - 2018-11-15 07:13 - 000383032 _____ (Tonec Inc.) C:\Program Files (x86)\idmcchandler7.dll
2019-02-10 23:33 - 2018-11-15 07:13 - 000609848 _____ (Tonec Inc.) C:\Program Files (x86)\idmcchandler7_64.dll
2019-02-10 23:33 - 2014-06-17 02:58 - 000085528 _____ (Tonec Inc.) C:\Program Files (x86)\idmfsa.dll
2019-02-10 23:33 - 2017-04-25 09:29 - 000185031 _____ () C:\Program Files (x86)\IDMFType.dat
2019-02-10 23:33 - 2013-03-21 13:43 - 000043976 _____ (Tonec Inc.) C:\Program Files (x86)\idmftype.dll
2019-02-10 23:33 - 2013-03-21 13:43 - 000052240 _____ (Tonec Inc.) C:\Program Files (x86)\IDMFType64.dll
2019-02-10 23:33 - 2019-02-10 23:31 - 000079053 _____ () C:\Program Files (x86)\IDMGCExt.crx
2019-02-10 23:33 - 2013-11-29 11:08 - 000056856 _____ (Tonec Inc.) C:\Program Files (x86)\IDMGetAll.dll
2019-02-10 23:33 - 2013-11-29 11:08 - 000090648 _____ (Tonec Inc.) C:\Program Files (x86)\IDMGetAll64.dll
2019-02-10 23:33 - 2018-09-28 03:28 - 000518200 _____ (Tonec Inc.) C:\Program Files (x86)\IDMGrHlp.exe
2019-02-10 23:33 - 2018-11-21 08:16 - 000457784 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\IDMIECC.dll
2019-02-10 23:33 - 2018-11-21 08:16 - 000535608 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\IDMIECC64.dll
2019-02-10 23:33 - 2015-08-27 06:56 - 000437272 _____ (Tonec Inc.) C:\Program Files (x86)\idmindex.dll
2019-02-10 23:33 - 2016-05-20 05:33 - 000073272 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\IDMIntegrator64.exe
2019-02-10 23:33 - 2014-05-15 06:02 - 000036440 _____ (Tonec Inc.) C:\Program Files (x86)\idmmkb.dll
2019-02-10 23:33 - 2018-10-17 22:14 - 000035416 _____ (Tonec Inc.) C:\Program Files (x86)\IDMMsgHost.exe
2019-02-10 23:33 - 2018-10-17 22:13 - 000000295 _____ () C:\Program Files (x86)\IDMMsgHost.json
2019-02-10 23:33 - 2018-10-17 22:13 - 000000282 _____ () C:\Program Files (x86)\IDMMsgHostMoz.json
2019-02-10 23:33 - 2015-09-28 06:58 - 000430046 _____ () C:\Program Files (x86)\idmmzcc.xpi
2019-02-10 23:33 - 2017-12-20 07:58 - 000030386 _____ () C:\Program Files (x86)\idmmzcc2.xpi
2019-02-10 23:33 - 2019-02-09 22:58 - 000080972 _____ () C:\Program Files (x86)\idmmzcc3.xpi
2019-02-10 23:33 - 2015-07-31 10:13 - 000027672 _____ (Tonec Inc.) C:\Program Files (x86)\idmmzcc7.dll
2019-02-10 23:33 - 2015-07-31 10:13 - 000033816 _____ (Tonec Inc.) C:\Program Files (x86)\idmmzcc7_64.dll
2019-02-10 23:33 - 2019-02-09 22:44 - 000270720 _____ (Tonec Inc.) C:\Program Files (x86)\IDMNetMon.dll
2019-02-10 23:33 - 2019-02-09 22:44 - 000360672 _____ (Tonec Inc.) C:\Program Files (x86)\IDMNetMon64.dll
2019-02-10 23:33 - 2019-02-09 22:44 - 000075334 _____ () C:\Program Files (x86)\IDMOpExt.nex
2019-02-24 09:25 - 2019-02-24 09:25 - 000016770 _____ () C:\Program Files (x86)\IDMSetup2.log
2019-02-10 23:33 - 2018-05-12 05:03 - 000033304 _____ (Tonec Inc.) C:\Program Files (x86)\IDMShellExt.dll
2019-02-10 23:33 - 2018-05-12 05:03 - 000034968 _____ (Tonec Inc.) C:\Program Files (x86)\IDMShellExt64.dll
2019-02-10 23:33 - 2018-12-19 10:35 - 000017569 _____ () C:\Program Files (x86)\idmtdi.cat
2019-02-10 23:33 - 2018-12-19 10:35 - 000002166 _____ () C:\Program Files (x86)\idmtdi.inf
2019-02-10 23:33 - 2018-12-19 10:35 - 000144960 _____ (Tonec Inc.) C:\Program Files (x86)\idmtdi32.sys
2019-02-10 23:33 - 2018-12-19 10:35 - 000231776 _____ (Tonec Inc.) C:\Program Files (x86)\idmtdi64.sys
2019-02-10 23:33 - 2015-12-09 09:15 - 000528408 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\idmvconv.dll
2019-02-10 23:33 - 2018-01-13 06:21 - 000037944 _____ (Tonec Inc.) C:\Program Files (x86)\idmvs.dll
2019-02-10 23:33 - 2018-12-20 04:05 - 000011302 _____ () C:\Program Files (x86)\idmwfp.cat
2019-02-10 23:33 - 2018-12-20 04:05 - 000002134 _____ () C:\Program Files (x86)\idmwfp.inf
2019-02-10 23:33 - 2018-12-20 04:05 - 000151872 _____ (Tonec Inc.) C:\Program Files (x86)\idmwfp32.sys
2019-02-10 23:33 - 2018-12-20 04:05 - 000229296 _____ (Tonec Inc.) C:\Program Files (x86)\idmwfp64.sys
2019-02-10 23:33 - 2004-12-02 08:31 - 000000277 _____ () C:\Program Files (x86)\IEExt.htm
2019-02-10 23:33 - 2003-10-20 02:13 - 000000283 _____ () C:\Program Files (x86)\IEGetAll.htm
2019-02-10 23:33 - 2007-07-01 22:19 - 000000278 _____ () C:\Program Files (x86)\IEGetVL.htm
2019-02-10 23:33 - 2007-09-28 06:06 - 000000279 _____ () C:\Program Files (x86)\IEGetVL2.htm
2019-02-10 23:33 - 2016-05-20 05:37 - 000275512 _____ (Tonec Inc.) C:\Program Files (x86)\IEMonitor.exe
2019-02-10 23:33 - 2016-04-15 10:16 - 000002565 _____ () C:\Program Files (x86)\license.txt
2019-02-10 23:33 - 2016-05-20 05:37 - 000022584 _____ (Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\MediumILStart.exe
2019-02-10 23:33 - 2008-07-14 06:27 - 000045478 _____ () C:\Program Files (x86)\scheduler.chm
2019-02-10 23:33 - 2010-10-22 07:25 - 000002056 _____ () C:\Program Files (x86)\tips.txt
2019-02-10 23:33 - 2008-07-15 06:25 - 000050228 _____ () C:\Program Files (x86)\tutor.chm
2019-02-10 23:33 - 2019-02-09 23:46 - 000194104 _____ (Tonec Inc.) C:\Program Files (x86)\Uninstall.exe
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-01-28 08:46
==================== Final de FRST.txt ========================Re sultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 02-02-2020 01
Ejecutado por Admin (02-02-2020 08:22:12)
Ejecutado desde C:\Users\Admin\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2019-02-10 00:43:16)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Admin (S-1-5-21-2143148389-1807257557-436391254-1000 - Administrator - Enabled) => C:\Users\Admin
Administrador (S-1-5-21-2143148389-1807257557-436391254-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-2143148389-1807257557-436391254-1004 - Limited - Enabled)
Invitado (S-1-5-21-2143148389-1807257557-436391254-501 - Limited - Disabled)
Juancho (S-1-5-21-2143148389-1807257557-436391254-1005 - Administrator - Enabled) => C:\Users\Juancho
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Kaspersky Anti-Virus (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Anti-Virus (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
. . (HKLM\...\{E267C808-4C22-457E-B74B-50EAB4AD9030}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9486AD8F-39F4-470B-92FD-BC423ABAEC43}) (Version: 19.1.4.5 - Intel) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.321 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.321 - Adobe)
Amazon Kindle (HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Amazon Kindle) (Version: 1.25.1.52064 - Amazon)
AMD Catalyst Install Manager (HKLM\...\{B3854BD7-E474-8669-8887-E023D8B0C52B}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 5.4.0 - philandro Software GmbH)
AutoScreenRecorder 3.2 Pro (HKLM-x32\...\AutoScreenRecorder 3.2 Pro_is1) (Version: 3.2.381 - Wisdom Software Inc.)
Aviat Networks Eclipse (remove only) (HKLM-x32\...\Aviat Networks Eclipse) (Version: - )
Backup and Sync from Google (HKLM\...\{825F60D9-2633-4D52-B2B0-5DA143433BBC}) (Version: 3.48.8668.1933 - Google, Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.160.10.1119 - BlueStack Systems, Inc.)
Boingo Wi-Finder (HKLM-x32\...\{8B8F82D4-0EB9-4606-863B-D3A182429BFF}) (Version: 5.7.0191 - Boingo Wireless, Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 79.1.2.43 - Brave Software Inc)
calibre 64bit (HKLM\...\{4D4D4686-D99D-4C19-AD38-CE7135518209}) (Version: 4.3.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Chrome Remote Desktop Host (HKLM-x32\...\{EF08968E-F7E7-43EA-95B1-1E8ACC8CC459}) (Version: 80.0.3987.18 - Google Inc.)
Cisco VideoGuard Player (HKLM-x32\...\{5e0dea41-f3a4-431f-877c-8ea36fafb4a7}) (Version: 11.5.0x11dce5da.1107 - Cisco Systems, Inc)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.27.52 - Conexant)
CyberGhost 7 (HKLM\...\CyberGhost 7) (Version: 7.3.8.4951 - CyberGhost S.A.)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 89.4.278 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Desktop (HKLM-x32\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
Integrated Camera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.7.36 - SunplusIT)
Intel(R) Computing Improvement Program (HKLM\...\{D40D4164-EEDB-4F0F-85C6-2058A9E34CC7}) (Version: 2.4.04370 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 19.5 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM\...\{00002090-0200-4FD1-8F3D-148929CC1385}) (Version: 20.90.2 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{b0134461-205a-4d62-bbdc-1fcabdd02645}) (Version: 19.1.4.5 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
IZArc 4.3 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.3 - Ivan Zahariev)
Java(TM) SE Development Kit 13 (64-bit) (HKLM\...\{442B1ADE-29B6-544E-967D-C5F82475A753}) (Version: 13.0.0.0 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.21 - Lenovo)
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.23.0 - Lenovo)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
Lenovo En pantalla (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Peer Connect SDK (HKLM\...\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1) (Version: 1.0.0.7 - Lenovo)
Lenovo QuickControl (HKLM-x32\...\{04128C8C-7812-4DCC-816E-9C8AB1D6EECE}) (Version: 2.40 - Lenovo Group Limited)
Lenovo Service Bridge (HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.0.4 - Lenovo)
Lenovo Solution Center (HKLM\...\{5E35CA26-A9A2-47B8-AB52-8D0C9A3CA685}) (Version: 03.12.003 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0088 - Lenovo)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
mHotspot version 7.8.8.9 (HKLM-x32\...\{beeb7906-9268-4520-8850-8d8af9b1c7c8}_is1) (Version: 7.8.8.9 - 1BN Software & IT Solutions Pvt. Ltd.)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 (HKLM-x32\...\SharePointDesigner) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{4B4DF6E2-5E40-422B-82DD-205FD7E79226}) (Version: - Microsoft)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.20.27508 (HKLM-x32\...\{7b178cda-9740-4701-a92a-f168d213b343}) (Version: 14.20.27508.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.20.27508 (HKLM-x32\...\{8c3f057e-d6a6-4338-ac6a-f1c795a6577b}) (Version: 14.20.27508.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 72.0.1 (x64 es-ES)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.5.2 - Mozilla)
Mozilla Thunderbird 60.5.2 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 60.5.2 (x86 es-ES)) (Version: 60.5.2 - Mozilla)
Nitro Pro 9 (HKLM\...\{6DC0850D-DCCA-4E75-8A4A-E374EB38C2B4}) (Version: 9.5.1.5 - Nitro)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Nombre de su organización)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{BAFF7E40-25F2-4681-95F1-9D0E8EF0ABA4}) (Version: 4.2.8 - dotPDN LLC)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Password Remover v3.1 (HKLM-x32\...\PDF Password Remover v3.1_is1) (Version: - VeryPDF.com Inc)
Plex Media Server (HKLM-x32\...\{72238E55-A877-4785-A5E9-0C35EAFB0746}) (Version: 1.15.876 - Plex, Inc.) Hidden
Plex Media Server (HKLM-x32\...\{9203fc01-57c0-4cc8-858d-92911b5142de}) (Version: 1.15.3.876 - Plex, Inc.)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.1.0.0 - Popcorn Time) <==== ATENCIÓN
Popcorn-Time (HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
Postbox 6.1.18 (x86 en-US) (HKLM-x32\...\Postbox 6.1.18 (x86 en-US)) (Version: 6.1.18 - Postbox, Inc.)
PowerXpressHybrid (HKLM-x32\...\{51FDC2DE-0917-46B7-EAEC-5377504701DE}) (Version: 1.00.0000 - Nombre de su organización) Hidden
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
PX Profile Update (HKLM-x32\...\{F704DE7C-0C27-0C9D-B2CE-08C0E961B13B}) (Version: 1.00.1. - AMD) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21247 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Skype versión 8.55 (HKLM-x32\...\Skype_is1) (Version: 8.55 - Skype Technologies S.A.)
Software Intel® PROSet/Wireless (HKLM-x32\...\{a2caa706-dce2-4c91-8d46-b52a3c260b20}) (Version: 21.10.1 - Intel Corporation)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Speedtest by Ookla (HKLM\...\{39618882-4B58-4091-BF42-FE3B568D8DE0}) (Version: 1.2.29.001 - Ookla)
Stopping Plex (HKLM-x32\...\{3C6D43CB-1211-4C3F-8F3C-2B4F90C5BB95}) (Version: 1.15.876 - Plex, Inc.) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.1.3937 - TeamViewer)
ThinkPad UltraNav Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.216.1616.137 - ALPS ELECTRIC CO., LTD.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Unknown File Handler (HKLM-x32\...\UFH_is1) (Version: 2015.12.29.0 - File.org)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VMware Player (HKLM\...\{15FBF7C8-0102-49A3-809B-3A662ADA3396}) (Version: 15.5.0 - VMware, Inc.)
Zoom (HKU\S-1-5-21-2143148389-1807257557-436391254-1000\...\ZoomUMX) (Version: 4.5 - Zoom Video Communications, Inc.)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\IDMShellExt64.dll [2018-05-12] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [Archivo no firmado]
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 9\NPShellExtension.dll [2014-05-19] (Nitro PDF Software -> Nitro PDF)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2019-09-16] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2019-09-16] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers4: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [Archivo no firmado]
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-06] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => -> Ningún archivo
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-01] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [VIDC.WIS1] => C:\Windows\SysWOW64\WisCodec.dll [133792 2018-12-29] (Wisdom Software Inc. -> Wisdom Software Inc.)
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
==================== Módulos cargados (Lista blanca) =============
2019-02-26 16:55 - 2019-12-13 18:52 - 001899520 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2019-02-26 16:55 - 2019-12-13 18:52 - 000115712 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2019-02-26 16:55 - 2019-12-13 18:52 - 006668800 _____ () [Archivo no firmado] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000114176 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_ctypes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000173056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_elementtree.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001808896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_hashlib.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000032256 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_multiprocessing.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000046080 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_psutil_windows.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000047616 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_socket.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 002241024 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_ssl.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026112 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\_yappi.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000080896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\bz2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000016384 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\common.time34.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000007680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\hashobjs_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000301568 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\PIL._imaging.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000169472 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\pyexpat.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001084416 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\pysqlite2._sqlite.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000548864 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\pythoncom27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137728 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\pywintypes27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000010752 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\select.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\thumbnails_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000689664 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\unicodedata.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000119808 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\usb_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000128512 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32api.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000438784 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32com.shell.shell.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000011776 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32crypt.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000023040 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32event.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000149504 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32file.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000223232 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32gui.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000048128 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32inet.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000029696 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32pdh.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000027648 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32pipe.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000044032 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32process.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32profile.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000136192 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32security.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026624 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\win32ts.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000034816 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\windows.conditional.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000038400 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\windows.connectivity.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000071680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\windows.device_monitor.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000109056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\windows.volumes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\windows.winwrap.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001325056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._controls_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001489408 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._core_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001007104 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._gdi_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000103424 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._html2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000916992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._misc_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001039872 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wx._windows_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000114176 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_ctypes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000173056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_elementtree.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001808896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_hashlib.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000032256 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_multiprocessing.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000046080 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_psutil_windows.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000047616 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_socket.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 002241024 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_ssl.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026112 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\_yappi.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000080896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\bz2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000016384 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\common.time34.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000007680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\hashobjs_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000301568 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\PIL._imaging.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000169472 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\pyexpat.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001084416 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\pysqlite2._sqlite.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000548864 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\pythoncom27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137728 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\pywintypes27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000010752 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\select.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\thumbnails_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000689664 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\unicodedata.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000119808 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\usb_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000128512 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32api.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000438784 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32com.shell.shell.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000011776 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32crypt.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000023040 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32event.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000149504 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32file.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000223232 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32gui.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000048128 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32inet.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000029696 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32pdh.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000027648 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32pipe.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000044032 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32process.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32profile.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000136192 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32security.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026624 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\win32ts.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000034816 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\windows.conditional.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000038400 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\windows.connectivity.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000071680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\windows.device_monitor.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000109056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\windows.volumes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\windows.winwrap.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001325056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._controls_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001489408 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._core_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001007104 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._gdi_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000103424 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._html2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000916992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._misc_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001039872 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wx._windows_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000114176 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_ctypes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000173056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_elementtree.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001808896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_hashlib.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000032256 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_multiprocessing.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000046080 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_psutil_windows.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000047616 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_socket.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 002241024 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_ssl.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026112 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\_yappi.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000080896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\bz2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000016384 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\common.time34.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000007680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\hashobjs_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000301568 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\PIL._imaging.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000169472 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\pyexpat.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001084416 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\pysqlite2._sqlite.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000548864 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\pythoncom27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137728 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\pywintypes27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000010752 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\select.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\thumbnails_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000689664 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\unicodedata.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000119808 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\usb_ext.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000128512 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32api.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000438784 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32com.shell.shell.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000011776 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32crypt.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000023040 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32event.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000149504 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32file.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000223232 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32gui.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000048128 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32inet.pyd2020-02-02 07:42 - 2020-02-02 07:42 - 000029696 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32pdh.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000027648 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32pipe.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000044032 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32process.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32profile.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000136192 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32security.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000026624 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\win32ts.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000034816 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\windows.conditional.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000038400 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\windows.connectivity.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000071680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\windows.device_monitor.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000109056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\windows.volumes.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\windows.winwrap.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001325056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._controls_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001489408 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._core_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001007104 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._gdi_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000103424 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._html2.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 000916992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._misc_.pyd
2020-02-02 07:42 - 2020-02-02 07:42 - 001039872 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wx._windows_.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000114176 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_ctypes.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000173056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_elementtree.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001808896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_hashlib.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000032256 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_multiprocessing.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000046080 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_psutil_windows.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000047616 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_socket.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 002241024 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_ssl.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000026112 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\_yappi.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000080896 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\bz2.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000016384 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\common.time34.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000007680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\hashobjs_ext.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000301568 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\PIL._imaging.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000169472 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\pyexpat.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001084416 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\pysqlite2._sqlite.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000548864 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\pythoncom27.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 000137728 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\pywintypes27.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 000010752 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\select.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000020992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\thumbnails_ext.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000689664 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\unicodedata.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000119808 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\usb_ext.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000128512 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32api.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000438784 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32com.shell.shell.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000011776 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32crypt.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000023040 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32event.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000149504 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32file.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000223232 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32gui.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000048128 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32inet.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000029696 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32pdh.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000027648 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32pipe.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000044032 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32process.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32profile.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000136192 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32security.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000026624 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\win32ts.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000034816 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\windows.conditional.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000038400 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\windows.connectivity.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000071680 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\windows.device_monitor.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000109056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\windows.volumes.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000020480 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\windows.winwrap.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001325056 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._controls_.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001489408 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._core_.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001007104 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._gdi_.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000103424 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._html2.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 000916992 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._misc_.pyd
2020-02-02 07:41 - 2020-02-02 07:41 - 001039872 _____ () [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wx._windows_.pyd
2019-02-11 19:24 - 2019-02-11 19:24 - 000480256 _____ (Google) [Archivo no firmado] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopAPI2.dll
2019-02-11 19:24 - 2019-02-11 19:24 - 000273920 _____ (Google) [Archivo no firmado] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopCommon.dll
2019-02-11 19:24 - 2019-02-11 19:24 - 000129024 _____ (Google) [Archivo no firmado] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopHyper.dll
2019-02-11 19:24 - 2019-02-11 19:24 - 000574464 _____ (Google) [Archivo no firmado] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopResources_en.dll
2019-02-11 19:24 - 2019-02-11 19:24 - 002057728 _____ (Google) [Archivo no firmado] C:\Program Files (x86)\Google\Google Desktop Search\GoogleServices.DLL
2019-03-27 21:34 - 2019-03-27 21:34 - 000130560 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-08-06 21:59 - 2015-02-27 08:35 - 000489984 _____ (Newtonsoft) [Archivo no firmado] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 003042816 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\python27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 003042816 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\python27.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 003042816 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\python27.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 003042816 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\python27.dll
2019-02-10 17:54 - 2013-10-04 13:08 - 000066048 _____ (Windows (R) Win 7 DDK provider) [Archivo no firmado] C:\Program Files\Lenovo\Lenovo Peer Connect\UPNPLnvConnectDevice.dll
2019-08-06 21:59 - 2017-03-20 14:13 - 000087552 _____ (Wondershare) [Archivo no firmado] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2019-08-06 21:59 - 2017-03-20 14:13 - 000197632 _____ (Wondershare) [Archivo no firmado] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxbase30u_net_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxbase30u_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxmsw30u_adv_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxmsw30u_core_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxmsw30u_html_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI101722\wxmsw30u_webview_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxbase30u_net_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxbase30u_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxmsw30u_adv_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxmsw30u_core_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxmsw30u_html_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121802\wxmsw30u_webview_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxbase30u_net_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxbase30u_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxmsw30u_adv_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxmsw30u_core_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxmsw30u_html_vc90_x64.dll
2020-02-02 07:42 - 2020-02-02 07:42 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI121882\wxmsw30u_webview_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxbase30u_net_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxbase30u_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxmsw30u_adv_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxmsw30u_core_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxmsw30u_html_vc90_x64.dll
2020-02-02 07:41 - 2020-02-02 07:41 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Admin\AppData\Local\Temp\_MEI60962\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Lista blanca) ========
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
AlternateDataStreams: C:\Windows:nlsPreferences [386]
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-13 19:34 - 2019-03-15 17:59 - 000000000 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\
HKU\S-1-5-21-2143148389-1807257557-436391254-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 172.20.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está deshabilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
MSCONFIG\Services: CG7Service => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\startupfolder: C:^Users^Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enviar a OneNote.lnk => C:\Windows\pss\Enviar a OneNote.lnk.Startup
MSCONFIG\startupreg: Boingo Wi-Finder => "C:\Program Files (x86)\Boingo\Boingo Wi-Finder\Boingo.lnk"
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 7\CyberGhost.exe" /autostart /min
MSCONFIG\startupreg: DSATray => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe
MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\IDMan.exe /onboot
MSCONFIG\startupreg: Plex Media Server => "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{F62C116D-FAA1-48F7-89E0-0E3DE3F5BAF7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FBCAAF88-7222-41CB-86AE-DE44E19C3C95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FAEC9E35-CAA7-4B1D-BCB0-5B94FC5A7555}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe (LENOVO -> Lenovo Group Limited)
FirewallRules: [{D73617E9-CECD-47CE-8512-4EBFC3F54EED}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe (LENOVO -> Lenovo Group Limited)
FirewallRules: [{37E07063-D747-43BD-BB34-4D3CC65D6529}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{49CEC0A8-BE7D-43AA-A3D7-68B93DE1CA41}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A81A8B45-1078-45F6-A724-A3270BE12C86}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{717A5AF7-69BD-4642-ABBE-B19CA6776C32}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2BC9BD7F-9FD1-416E-A7E1-DEFB593BA7E9}C:\portableapps\qbittorrentportable\app\qbittorrent\qbittorrent.exe] => (Allow) C:\portableapps\qbittorrentportable\app\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{16E70C6A-09B7-4EFA-8004-C09FA3AEDB66}C:\portableapps\qbittorrentportable\app\qbittorrent\qbittorrent.exe] => (Allow) C:\portableapps\qbittorrentportable\app\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{9702081F-94BB-4426-A27D-CD6B11243997}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB3A2652-DB75-40E8-B8F0-62C52F52B8A1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69F0C085-AABB-4B25-9078-E2A0FE649146}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{60951EBB-3674-4C2A-A41F-A53676E1F14A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8EBCB7B5-5DF2-4F79-91DC-6D02069322C7}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc -> Plex, Inc.)
FirewallRules: [{41AB9716-041A-47D0-A839-B0FC1BD27B8B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc -> Python Software Foundation)
FirewallRules: [{5AB4347B-6081-485F-BB8D-13FB8D4110A5}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe (Plex, Inc -> Plex, Inc.)
FirewallRules: [{97A1145F-6E63-478B-B7CC-C0544A3ED875}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc -> )
FirewallRules: [TCP Query User{97661056-F515-4828-B723-C2B065A85AA5}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Allow) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{1E07CEA0-CA7C-4FA9-8107-BE90E11D19DD}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Allow) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{52D9EBB0-A15C-48F0-A1B4-7032AF71B486}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7403306C-B5A7-443F-93F8-7C9A08CEFD0C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2F6AD40A-5704-4EF1-AD37-765C80F1B9FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{560959C5-BC65-4930-B95C-5C166974777C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2A1C62DB-807D-4C28-8341-1D82818B631F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9E462BDB-35AE-4FAE-8B61-4D8D7D47241B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{1DD6A7F5-0BD0-44E3-B563-3D7AA5A6FC11}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{2E378A01-5391-4BD6-93D1-DC15BCD6DC5A}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AB32221D-50BB-4C22-8B76-66853530491F}C:\portableapps\googlechromeportable\app\chrome-bin\chrome.exe] => (Allow) C:\portableapps\googlechromeportable\app\chrome-bin\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{2545535A-E7C1-4957-A3C5-CFB9F054C9DE}C:\portableapps\googlechromeportable\app\chrome-bin\chrome.exe] => (Allow) C:\portableapps\googlechromeportable\app\chrome-bin\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B6C69EF0-66B7-492A-96A3-FEDC7E211B08}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{FEB3F801-D0D1-4E0F-A478-C799CBB62761}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{7293E94A-5AED-49C6-A47E-37FC4CA24255}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{7E71C12F-8F5D-4481-83A1-1EB112FB95CF}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{2112B60A-340C-4666-BD13-E7B444702B04}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{A137DC37-8995-443C-902C-A44AE3ADE9D5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{36C530AC-20E5-41BD-B97A-9610F94D7494}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{511546A6-477A-42AA-973C-F2EBC9DCD795}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7CF62926-2DCF-4238-8497-E50A5709AFFF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F2510148-D353-4E12-A89D-7838241FB83A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{33169C83-361B-4921-9D94-D8CCDCB9405B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{92F8B8C1-B190-44E9-8B52-A1DC2D4647ED}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [{1FF9B22E-57B9-45BF-923F-F4FC9412ED45}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{2F3EAE6F-18FF-48EE-9AEB-73A952C42FF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D33FBDD6-4E2C-44BB-B5B1-FB2A0E169D27}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{D7D1F4DA-E692-4205-88EA-E4C1E1509B9B}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{B0975AB2-0F9D-4CF3-8DFD-93659222C221}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{A8741D1D-CA28-4483-A509-ED72D1AA90D0}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{775E785D-C85A-423F-968A-48A003CCFC42}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{78B1FCC1-3A68-455E-AE23-11FE263A28AA}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{1653B73E-2150-46FF-B46F-65E04639F69F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{40F775EC-214B-405C-9095-625A3C20CF91}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> )
==================== Puntos de Restauración =========================
24-01-2020 15:39:37 Windows Update
30-01-2020 21:33:53 Windows Update
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Dispositivo Bluetooth (Red de área personal) #2
Description: Dispositivo Bluetooth (Red de área personal)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Intel(R) Ethernet Connection (3) I218-V
Description: Intel(R) Ethernet Connection (3) I218-V
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e1dexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (02/02/2020 07:41:46 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:43 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:39 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:37 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:36 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:36 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Error: (02/02/2020 07:41:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (02/02/2020 01:14:20 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo de Registro de clases.
DETALLE: Acceso denegado.
Errores del sistema:
=============
Error: (02/02/2020 07:41:40 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
cdrom
Error: (02/02/2020 01:14:06 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (02/02/2020 12:50:34 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
cdrom
Error: (02/02/2020 12:50:34 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Wondershare Application Framework Service no respondió después de iniciar.
Error: (02/02/2020 12:48:04 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (02/02/2020 12:48:00 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: El servidor {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (02/01/2020 07:32:28 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente:
cdrom
Error: (02/01/2020 07:32:28 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Wondershare Application Framework Service no respondió después de iniciar.
Windows Defender:
===================================
Date: 2019-03-15 18:00:06.927
Description:
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=SoftwareBundler:Win32/Prepscram&threatid=226289
Nombre:SoftwareBundler:Win32/Prepscram
Id.:226289
Gravedad:Alta
Categoría:Software que instala varios programas
Ruta de acceso encontrada:file:C:\Program Files (x86)\KMSPico 10.2.1 Final\KMS_Installer.exe;process:pid:12420;process:pid:12800
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:
Date: 2019-03-15 17:53:27.335
Description:
Windows Defender detectó spyware u otro software potencialmente no deseado.
Para obtener más información, consulte lo siguiente:
http://go.microsoft.com/fwlink/?linkid=37020&name=SoftwareBundler:Win32/Prepscram&threatid=226289
Nombre:SoftwareBundler:Win32/Prepscram
Id.:226289
Gravedad:Alta
Categoría:Software que instala varios programas
Ruta de acceso encontrada:file:C:\Program Files (x86)\KMSPico 10.2.1 Final\KMS_Installer.exe;process:pid:12420
Tipo de detección:Concreto
Origen de detección:Protección en tiempo real
Estado:Desconocido
Usuario:\
Nombre de proceso:
Date: 2019-02-20 04:58:35.094
Description:
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15600.4
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico.
Date: 2019-02-19 09:16:47.241
Description:
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15700.8
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico.
Date: 2019-02-18 14:19:22.200
Description:
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15700.8
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico.
Date: 2019-02-17 10:02:13.185
Description:
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15600.4
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico.
Date: 2019-02-16 15:19:09.175
Description:
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15700.8
Versión de motor anterior:1.1.6402.0
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x8050800c
Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico.
CodeIntegrity:
===================================
Date: 2020-01-28 14:09:10.232
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-28 08:12:37.132
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-23 11:06:46.326
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-23 10:33:03.445
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-22 12:38:17.295
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-22 12:12:10.573
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-22 11:31:04.997
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2020-01-22 11:07:16.524
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume3\Windows\System32\l3codeca.acm porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
==================== Información de la memoria ===========================
BIOS: LENOVO J5ET64WW (1.35 ) 10/31/2019
Placa base: LENOVO 20DF0040US
Procesador: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz
Porcentaje de memoria en uso: 53%
RAM física total: 16296.34 MB
RAM física disponible: 7531.23 MB
Virtual total: 32590.83 MB
Virtual disponible: 22983.54 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:465.54 GB) (Free:73.1 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: AC723DDA)
Partition: GPT.
==================== Final de Addition.txt =======================Lo primero, corta y pega Frst.exe en el Escritorio, pues se indicaba muy remarcado que habia que ejecutarlo desde ahi.
Tienes bastante cosas ejecutandose, y sobre todo dos programas similares siempre en ejecución, que consumen ancho de banda,Teamviewer y Anydesk
Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :
-
Para hacerlo descarga Delfix en tu escritorio.
-
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO
-
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
En el equipo con los demas programas cerrados:
Inicio >>> Ejecutar >>>Escribes notepad.exe.
Ahora copia y pega estos archivos dentro del Notepad:
Start
CreateRestorePoint:
CloseProcesses:
SearchScopes: HKLM-x32 -> DefaultScope no se encuentra el valor
Toolbar: HKU\S-1-5-21-2143148389-1807257557-436391254-1000 -> Sin Nombre - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Ningún archivo
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<
Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
-
Ejecutas Frst.exe.
-
Presionas el botón Corregir y aguardas a que termine.
-
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
Lo pegas en tu próxima respuesta, comentado como va el problema