Un Saludo y agradecimiento de antemano para quien sirva prestar atención a mi problema
alguien trajo una USB 64mb que se supone tenia películas lo curioso es que al ver contenido solo aparecía una carpeta Pelis y un archivo extenso sin nombre solo la extención:
.98761321354687986415131 y un poco mas caráctreres
al revisarlo con nod32 no revisa nada aun cuando la memoria esta casi llena y no mostraba archivos ni acceso a la carpeta.
simplemente se expulso la unidad y al poco tiempo conecte un HD1TB y comenzó a no dar acceso a las carpetas que se copiaban en el revise la PC y la unidad por posibles virus y la misma respuesta con la USB lo único que he podido hacer para no perder la información es expulsar la unidad y me marca que esta en proceso y ocupada así que he cambiado la letra de la unidad y solo así me permite desconectar … lo curioso del caso es que no se si es virus o alguna tarea programada, o si bien ya se daño la vacuna.
me siento perdido al poder resolver el problema, como ya he leído en el foro he aplicado el FRST.exe mi equipo es Windows 10 Prof. 64
espero contar con su apoyo y poder resolver esta situación muy agradecido.
anexo la información de los TXT.
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 20-09-2023
Ejecutado por SISTEMAS (administrador) sobre DESKTOP-P6GMIML (HP HP 280 G5 Small Form Factor PC) (25-09-2023 10:09:33)
Ejecutado desde C:\Users\SISTEMAS\Desktop\FRST64.exe
Perfiles cargados: SISTEMAS
Plataforma: Microsoft Windows 10 Pro Versión 22H2 19045.3448 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe
(C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSCFG.exe ->) (Kodak Alaris Inc. -> Kodak Alaris Inc.) [Archivo no firmado] C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSE.exe
(C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSCFG.exe ->) (Kodak Alaris Inc. -> Kodak Alaris Inc.) [Archivo no firmado] C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSOutput.exe
(C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSOutput.exe ->) (ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\Workstation\Plugins\Shared Files\Abbyy\Bin\FREngineProcessor.exe <2>
(C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.UserInterface.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Users\SISTEMAS\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe ->) (Synology Inc. -> Synology Inc.) C:\Users\SISTEMAS\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-connect.exe
(C:\Users\SISTEMAS\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe ->) (Synology Inc. -> Synology Inc.) C:\Users\SISTEMAS\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-daemon.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam10\YouCamService10.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxEM.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\BridgeCommunication.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.35.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(explorer.exe ->) () [Archivo no firmado] C:\Users\SISTEMAS\Desktop\ESCRITORIO KURI\____CARPETAS 2020 DCT\_K2020\Temporales\CargaSaga\1.8\MegaDownloader.exe
(explorer.exe ->) () [Archivo no firmado] C:\Users\SISTEMAS\Desktop\K20\2\Explorer++\Explorer++.exe
(explorer.exe ->) (Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(explorer.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_25.52334.606.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe
(explorer.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <45>
(explorer.exe ->) (Hewlett-Packard) [Archivo no firmado] C:\Windows\System32\HpNetDrv.exe
(explorer.exe ->) (HP Development Company, L.P.) [Archivo no firmado] C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(explorer.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Nir Sofer -> NirSoft) C:\Users\SISTEMAS\Desktop\Programas 2022\Monitor Red\1\WNetWatcher.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(explorer.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIJ4E.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Kodak Alaris Inc. -> Kodak Alaris Inc.) [Archivo no firmado] C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSCFG.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) () [Archivo no firmado] C:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe
(services.exe ->) (COMPUTACION EN ACCION SA DE CV -> ) C:\Program Files (x86)\Compac\Servidor de Auth\XML en línea+\AppKeyAuthServerXMLenLinea.exe
(services.exe ->) (COMPUTACION EN ACCION SA DE CV -> ) C:\Program Files (x86)\Compac\Servidor de Licencias\AppKey\AppKeyAuthServer.exe
(services.exe ->) (EKM Global Limited -> EKM Global Limited) C:\Program Files (x86)\i2emfw\i2emfw.exe <2>
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(services.exe ->) (HON HAI PRECISION INDUSTRY CO.LTD. -> ) C:\Program Files\FanControlApp\FanControlApp.exe
(services.exe ->) (HP Development Company, L.P.) [Archivo no firmado] C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
(services.exe ->) (HP Inc. -> Hewlett-Packard Company) C:\Program Files (x86)\HP JetAdvantage Management\HP JetAdvantage Management Connector Monitor\HP.Fms.Connector.Monitor.Service.exe
(services.exe ->) (HP Inc. -> Hewlett-Packard Company) C:\Program Files (x86)\HP JetAdvantage Management\HP JetAdvantage Management Connector\HP.Fms.Connector.Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_43e3600968234e87\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_3cbddcc68b1c0da2\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_401fde8782680631\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6cad38383965216e\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6cad38383965216e\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe
(services.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18daf79b2c8abbf6\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2337.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_25.52334.606.0_x64__v10z8vjag6ke6\HP.myHP.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Kodak Alaris Inc. -> Kodak Alaris Inc.) C:\Windows\System32\Kodak\kascannerservice\kascannerservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2308.3.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Synology Inc. -> Synology Inc.) C:\Users\SISTEMAS\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [HpNetDrv] => C:\WINDOWS\system32\HpNetDrv.exe [1248256 2011-10-19] (Hewlett-Packard) [Archivo no firmado]
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-03-18] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-03-18] (Corel Corporation -> WinZip Computing)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-09-15] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Cobian Reflector] => C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe [726864 2023-07-08] (Luis Cobian Dorta -> Luis Cobian, CobianSoft)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" [0 0000-00-00] () <==== ATENCIÓN [cero bytes Archivo/Carpeta]
HKLM-x32\...\Run: [YouCam Service10] => C:\Program Files (x86)\CyberLink\YouCam10\YouCamService10.exe [425000 2022-10-01] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [YouCam10] => C:\Program Files (x86)\CyberLink\YouCam10\YouCam10.exe [593960 2022-10-01] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Smart Touch Kodak_s2000w] => C:\Program Files (x86)\Kodak\Document Imaging\kds_s2000w\Smart Touch\KSSCFG.exe [819744 2022-03-23] (Kodak Alaris Inc. -> Kodak Alaris Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKU\S-1-5-20\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\WINDOWS\system32\eed_ec.dll,SpeedLauncher [1848320 2018-09-03] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\S-1-5-21-2346323972-426013723-1209652814-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [537136 2023-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2346323972-426013723-1209652814-1001\...\Run: [Glary Memory Optimizer] => C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe [137624 2023-09-15] (Glarysoft Ltd -> Glarysoft Ltd)
HKU\S-1-5-21-2346323972-426013723-1209652814-1001\...\Run: [EEDSpeedLauncher] => rundll32.exe C:\windows\system32\eed_ec.dll,SpeedLauncher [1848320 2018-09-03] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\S-1-5-21-2346323972-426013723-1209652814-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIJ4E.EXE [293504 2012-05-21] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2346323972-426013723-1209652814-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-21] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\HPCPP145: C:\Windows\System32\spool\prtprocs\x64\hpcpp145.dll [591648 2013-04-26] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\Samsung Network PC Fax Print Processor: C:\Windows\System32\spool\prtprocs\x64\NetFaxProc64.dll [146944 2021-04-14] (HP Development Company, L.P.) [Archivo no firmado]
HKLM\...\Windows x64\Print Processors\ssn3mPC: C:\Windows\System32\spool\prtprocs\x64\ssn3mpc.dll [43520 2018-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON L310 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBN4E.DLL [180224 2014-03-04] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON M100 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMJ4E.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-06-17] (SEIKO EPSON CORPORATION) [Archivo no firmado]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Archivo no firmado]
HKLM\...\Print\Monitors\HP1100LM: C:\WINDOWS\system32\HP1100LM.DLL [288768 2012-08-21] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Samsung Network PC Fax Port: C:\WINDOWS\system32\NetFaxPort64.dll [586240 2021-04-14] (HP Development Company, L.P.) [Archivo no firmado]
HKLM\...\Print\Monitors\ssn3m Langmon: C:\WINDOWS\system32\ssn3mlm.dll [22528 2018-09-03] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-12] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\117.1.58.131\Installer\chrmstp.exe [2023-09-22] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2022-08-15]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (HP Development Company, L.P.) [Archivo no firmado]
Startup: C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2023-09-25]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
BootExecute: autocheck autochk *
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) =================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {BD413167-AD33-42F4-BB01-9426BE850A9A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Ningún archivo)
Task: {6384F255-8595-4911-88C2-FC366E4CD053} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AB37BC39-28FB-48ED-A9DD-FC27AF9A9007} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{7ED190A6-3F1F-4D3D-BF6D-032C9832FA7F} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-06-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F6529CC4-190F-4FA6-A471-4C9C3DD7F372} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{8927949C-69A3-4133-BA74-C1010ED34DDB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-06-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {DE73F027-A458-4C82-B3A4-2DA9F07CE0C0} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2322472 2022-10-01] (CyberLink Corp. -> )
Task: {3AEDEA26-036A-4F4E-A61B-792917632DB1} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2322472 2022-10-01] (CyberLink Corp. -> )
Task: {A8362801-E940-4F86-8022-B33EE17C4A53} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [752384 2021-02-24] (HP Inc. -> )
Task: {49889344-4AC2-439D-9927-D4EBB855991C} - System32\Tasks\GlaryUpdate 5 => C:\Program Files (x86)\Glary Utilities 5\CheckUpdate.exe [51608 2023-09-15] (Glarysoft Ltd -> Glarysoft Ltd)
Task: {A66DC3BE-8329-4880-A182-2C59AC4208E4} - System32\Tasks\GoogleUpdateTaskMachineCore{9C083111-17EB-45BD-95ED-3A28F15149B2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-16] (Google LLC -> Google LLC)
Task: {A6D37195-4465-47BD-8A1A-427EC645F376} - System32\Tasks\GoogleUpdateTaskMachineUA{99B98F2A-9634-4606-910F-91F6752BA461} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-16] (Google LLC -> Google LLC)
Task: {F829FBE8-023D-4A03-80B3-99AE310979C1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2023-09-15] (HP Inc. -> HP Inc.)
Task: {889EFD19-49F3-4EB3-B871-E8D93FFA807F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231472 2023-09-15] (HP Inc. -> HP Inc.)
Task: {63911985-0675-4C60-98D8-36E20A3BC9F7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2023-09-15] (HP Inc. -> HP Inc.)
Task: {140F4F87-8B5A-4419-9E8E-26CE8C1C03A2} - System32\Tasks\Hewlett-Packard\HP Web Products Detection => C:\Program Files (x86)\HP\HP Support Framework\Modules\HPWPD.exe [310824 2023-09-15] (HP Inc. -> HP Inc.)
Task: {D4FE46FC-699F-4EEA-82F4-EDD654A7D22F} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {21D9CF2A-5807-4994-81B2-8793F5B28B82} - System32\Tasks\HP\JAMC\ConnectorUpgrade => C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\setup.exe -> /s /b"C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp" /v"CREATESHORTCUT="1"" /v"/qn" <==== ATENCIÓN
Task: {1E6D6636-CD60-4F2F-979B-A0E1A8654338} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1651032 2020-11-05] (HP Inc. -> HP Inc.)
Task: {B0EB131E-2870-4B0A-A326-34018EC5EDA1} - System32\Tasks\kodakalarisincscanner => C:\Windows\System32\Kodak\kascannerservice\kascannerservice.exe [259504 2020-01-20] (Kodak Alaris Inc. -> Kodak Alaris Inc.)
Task: {1D456E99-85D8-4596-A4BD-0EE88FC3F400} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFB9ED58-6D74-4E3F-803A-68F2B858DAEF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F92AB6F8-9CA8-45ED-A409-7195A915D88B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-07-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8EBB4FD0-5496-4DC9-8F3F-319862C44517} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-07-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F35CCCAE-E893-45BF-89CF-C97780B70330} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-07-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {7122D9E5-23F8-4F91-BED3-A72367084C14} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5E8701D1-1014-43EB-998C-F2C60FF38C76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {326B6BA9-E35A-4ABB-8B24-1F34DFAB9C87} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B255ADC-8D0E-43CC-9A56-C0B5ABD62E7F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {55CE5BFD-1DED-4497-851C-5EAD194F1F25} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [680352 2023-06-30] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2898E4E1-3ACB-47F4-B746-7E2E571195E1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {2123A6C6-C314-4101-8D37-CC4ED2F84479} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [Archivo no firmado]
Task: {9F40E37E-06EF-4593-9799-02A4ED6CA2FE} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18daf79b2c8abbf6\RtkAudUService64.exe [1637232 2023-01-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {200E4E53-1B26-4777-A988-697D3C195441} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-03-18] (Corel Corporation -> Corel Corporation)
Task: {E6E5F12C-E836-44B7-B048-756E3BDF404B} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-03-18] (Corel Corporation -> Corel Corporation)
Task: {4FF1F08B-4ED5-4E0F-B75D-0A7D0ACA26F8} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-03-18] (Corel Corporation -> Corel Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\..\Interfaces\{54f7e0ee-8954-4a0c-9c25-dfdb2a59eaff}: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{f83d93df-4b49-4e70-93fe-a4d64484537a}: [DhcpNameServer] 192.168.3.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\SISTEMAS\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-25]
Edge Notifications: Default -> hxxps://www.msn.com
Edge HomePage: Default -> hxxp://idse.imss.gob.mx/imss/
Edge StartupUrls: Default -> "hxxps://www.google.com.mx/","hxxp://idse.imss.gob.mx/imss/"
Edge Extension: (Flash Player 2023) - C:\Users\SISTEMAS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fgenmmklgkdemhpgdppmldmkemplbcko [2023-08-18]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\SISTEMAS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-14]
Edge Extension: (Edge relevant text changes) - C:\Users\SISTEMAS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
Edge Extension: (IE Tab) - C:\Users\SISTEMAS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npjkkakdacjaihjaoeliacmecofghagh [2023-04-04]
FireFox:
========
FF DefaultProfile: 5en9x7r9.default
FF ProfilePath: C:\Users\SISTEMAS\AppData\Roaming\Mozilla\Firefox\Profiles\6sp90jqm.default-release-1 [2023-09-22]
FF Homepage: Mozilla\Firefox\Profiles\6sp90jqm.default-release-1 -> hxxps://www.google.com.mx/?hl=es-419
FF Extension: (Español (México) Language Pack) - C:\Users\SISTEMAS\AppData\Roaming\Mozilla\Firefox\Profiles\6sp90jqm.default-release-1\Extensions\[email protected] [2022-07-11]
FF ProfilePath: C:\Users\SISTEMAS\AppData\Roaming\Mozilla\Firefox\Profiles\5en9x7r9.default [2022-07-11]
FF ProfilePath: C:\Users\SISTEMAS\AppData\Roaming\Mozilla\Firefox\Profiles\sjc1zpr4.default-release [2023-09-22]
FF DownloadDir: C:\Users\SISTEMAS\Desktop\K20
FF Homepage: Mozilla\Firefox\Profiles\sjc1zpr4.default-release -> hxxps://www.google.com.mx/?hl=es-419
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Heredado] [no firmado]
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-09-25]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\SISTEMAS\AppData\Local\Google\Chrome\User Data\Default [2023-09-25]
CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\SISTEMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-08-29]
CHR Extension: (Guardar imagen como JPG/PNG/WebP) - C:\Users\SISTEMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabfmnliflodkdafenbcpjdlppllnemd [2023-09-06]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\SISTEMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-24]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\SISTEMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-16]
CHR Extension: (Universal Bypass) - C:\Users\SISTEMAS\Desktop\K20\_2023\1\Universal [2023-05-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Brave:
=======
BRA Profile: C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-09-22]
BRA Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-06]
BRA Extension: (Brave Ad Block Updater (Exception-exceptions (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-09-22]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-09-22]
BRA Extension: (Brave NTP background images) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-22]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-09-22]
BRA Extension: (Wallet Data Files Updater) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-09-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-09-22]
BRA Extension: (Brave NTP sponsored images) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\fcggndnjiecfkiomngolonakcmagfomn [2023-09-22]
BRA Extension: (Brave Ad Block Updater (EasyList Spanish (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\fejmaeodjeekfldnbegjagemjgnmhfof [2023-09-22]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-09-22]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-06-19]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-09-22]
BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese (plaintext))) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\meimhmgfbckapkbbbdaoefgnbppmkodp [2023-09-22]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-09-22]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\SISTEMAS\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-09-22]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AppkeyAuthServer_Compac_V4; C:\Program Files (x86)\Compac\Servidor de Licencias\AppKey\AppKeyAuthServer.exe [6234432 2023-03-09] (COMPUTACION EN ACCION SA DE CV -> )
R2 AppkeyAuthServer_XMLenLinea; C:\Program Files (x86)\Compac\Servidor de Auth\XML en línea+\AppKeyAuthServerXMLenLinea.exe [6234032 2022-11-03] (COMPUTACION EN ACCION SA DE CV -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-06-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-06-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\117.1.58.131\brave_vpn_helper.exe [3246104 2023-09-22] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\117.1.58.131\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [11059224 2023-09-22] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11762624 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
R2 CloudMonitorService; C:\Program Files (x86)\HP JetAdvantage Management\HP JetAdvantage Management Connector Monitor\HP.Fms.Connector.Monitor.Service.exe [99360 2022-09-27] (HP Inc. -> Hewlett-Packard Company)
R2 CloudService; C:\Program Files (x86)\HP JetAdvantage Management\HP JetAdvantage Management Connector\HP.Fms.Connector.Service.exe [25624 2022-09-27] (HP Inc. -> Hewlett-Packard Company)
R2 CobVSCRequester; C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe [331088 2023-07-08] (Luis Cobian Dorta -> Luis Cobian, CobianSoft)
S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [462432 2022-07-06] (Digital Wave Ltd -> Digital Wave Ltd)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2532472 2023-09-15] (ESET, spol. s r.o. -> ESET)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55416 2023-09-15] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3873952 2023-09-15] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3873952 2023-09-15] (ESET, spol. s r.o. -> ESET)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [685496 2023-01-09] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [886528 2023-01-14] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-09-15] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.)
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [Archivo no firmado]
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\AppHelperCap.exe [888768 2023-07-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\DiagsCap.exe [887184 2023-07-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\NetworkCap.exe [883136 2023-07-24] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-12] (HP Inc. -> HP Inc.)
R2 HPSIService; C:\windows\system32\HPSIsvc.exe [126880 2012-08-31] (Hewlett-Packard Company -> HP)
R2 HPSmartDeviceAgentBase; C:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [68608 2017-10-25] () [Archivo no firmado]
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_965dbdfb871959a5\x64\SysInfoCap.exe [887744 2023-07-24] (HP Inc. -> HP Inc.)
R3 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_43e3600968234e87\x64\TouchpointAnalyticsClientService.exe [497744 2023-08-02] (HP Inc. -> HP Inc.)
R2 i2emfw; C:\Program Files (x86)\i2emfw\i2emfw.exe [296232 2021-11-25] (EKM Global Limited -> EKM Global Limited)
R2 ID19 HP Fan Control Service; C:\Program Files\FanControlApp\FanControlApp.exe [283168 2020-04-28] (HON HAI PRECISION INDUSTRY CO.LTD. -> )
S2 kodakalarisincscanner; C:\Windows\System32\Kodak\kascannerservice\kascannerservice.exe [259504 2020-01-20] (Kodak Alaris Inc. -> Kodak Alaris Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [Archivo no firmado]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [Archivo no firmado]
R2 Samsung Network Fax Server; C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2021-04-14] (HP Development Company, L.P.) [Archivo no firmado]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [360320 2023-04-17] (Synology Inc. -> )
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [2004352 2023-03-15] (Synology Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado]
R3 busenum; C:\WINDOWS\system32\DRIVERS\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [210320 2023-08-15] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [118904 2023-08-15] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [252184 2023-08-15] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81712 2023-08-15] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123040 2023-08-15] (ESET, spol. s r.o. -> ESET)
S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [24656 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 GUBootStartup; C:\windows\System32\drivers\GUBootStartup.sys [23568 2023-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R0 hotcore3; C:\WINDOWS\System32\DRIVERS\hotcore3.sys [34056 2014-11-17] (Paragon Software GmbH -> Paragon Software Group)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R2 HPSSEHCD; C:\WINDOWS\System32\Drivers\hpssec.sys [43776 2011-10-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 HPSSVBus; C:\WINDOWS\system32\DRIVERS\hpssvbus.sys [12800 2011-10-19] (Microsoft Windows Hardware Compatibility Publisher -> None)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R2 SSPORT; C:\windows\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2022-09-22] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2023-09-25 10:09 - 2023-09-25 10:10 - 000047532 _____ C:\Users\SISTEMAS\Desktop\FRST.txt
2023-09-25 10:08 - 2023-09-25 10:10 - 000000000 ____D C:\FRST
2023-09-25 10:07 - 2023-09-25 10:04 - 002382848 _____ (Farbar) C:\Users\SISTEMAS\Desktop\FRST64.exe
2023-09-25 09:55 - 2023-09-25 10:04 - 000000000 ____D C:\Users\SISTEMAS\Desktop\Reparar y Soporte
2023-09-25 08:08 - 2023-09-25 08:08 - 000000165 ____H C:\Users\SISTEMAS\Desktop\~$Control RED DCT 2023.xlsx
2023-09-22 17:26 - 2023-09-22 17:27 - 000014378 _____ C:\Users\SISTEMAS\AppData\Local\23922-172653-CLCSIWriter.txt
2023-09-21 08:31 - 2023-09-25 09:43 - 000000000 ____D C:\Users\SISTEMAS\Desktop\10
2023-09-21 08:17 - 2023-09-25 09:32 - 000000000 ____D C:\Users\SISTEMAS\Desktop\1
2023-09-14 10:29 - 2023-09-14 15:20 - 000000000 ____D C:\Users\SISTEMAS\Desktop\10 Virtualizacion
2023-09-13 15:00 - 2023-09-21 18:06 - 000001792 _____ C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2023-09-13 11:04 - 2023-09-13 11:04 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\4kdownload.com
2023-09-13 05:38 - 2023-09-13 05:38 - 000000000 ___HD C:\$WinREAgent
2023-09-08 07:27 - 2023-09-08 07:27 - 000000000 ____D C:\WINDOWS\pss
2023-09-06 17:02 - 2023-09-06 17:17 - 000000000 ____D C:\Users\SISTEMAS\Desktop\Decofinmex Observaciones
2023-09-05 16:42 - 2023-09-05 16:42 - 000000049 _____ C:\Users\SISTEMAS\Desktop\mrt.txt
2023-09-05 15:47 - 2023-09-05 15:47 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\EPMUI
2023-09-05 15:47 - 2023-09-05 15:47 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\cache
2023-09-05 15:41 - 2023-09-05 15:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master
2023-09-05 15:41 - 2023-06-08 15:03 - 006035648 _____ C:\WINDOWS\system32\BootMan.exe
2023-09-05 15:41 - 2023-06-08 15:03 - 000025792 _____ C:\WINDOWS\system32\EuEpmGdi.dll
2023-09-05 15:41 - 2022-12-29 13:34 - 000174216 _____ C:\WINDOWS\system32\setupepmdrvx64.exe
2023-09-05 15:41 - 2022-12-29 13:34 - 000030136 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\EPMVolFl.sys
2023-09-05 15:41 - 2022-12-29 13:34 - 000000057 _____ C:\WINDOWS\system32\setupepmdrv.ini
2023-09-05 07:42 - 2023-09-05 07:42 - 000000000 ____D C:\WINDOWS\Panther
2023-09-01 14:02 - 2023-09-01 14:02 - 054163792 _____ (Luis Cobian, CobianSoft) C:\Users\SISTEMAS\Desktop\crSetup-2.4.00.exe
2023-09-01 10:46 - 2023-09-01 10:46 - 000000000 ____D C:\Users\SISTEMAS\Desktop\COBIAN RESPALDOS
2023-08-30 17:57 - 2023-08-30 17:57 - 001666180 _____ C:\Users\SISTEMAS\Documents\Presentación1.pptx
2023-08-30 11:11 - 2023-08-30 11:11 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\TSMonitor
2023-08-30 11:11 - 2023-08-30 11:11 - 000000000 ____D C:\tenorshare
2023-08-30 11:11 - 2023-08-30 11:11 - 000000000 ____D C:\Program Files (x86)\PassFab
2023-08-30 11:10 - 2023-08-30 11:10 - 000000218 _____ C:\Users\SISTEMAS\.recently-used.xbel
2023-08-30 10:20 - 2023-08-30 10:29 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\gtk-2.0
2023-08-30 10:19 - 2023-08-30 10:19 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\live-usb-install
2023-08-30 10:16 - 2023-08-30 11:08 - 000000000 ____D C:\Users\SISTEMAS\Desktop\LINUX USB
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2023-09-25 10:10 - 2022-05-18 10:11 - 000000000 ____D C:\Users\SISTEMAS\Documents\Archivos de Outlook
2023-09-25 10:08 - 2023-03-02 14:47 - 000000000 ____D C:\RESP-LUPITA
2023-09-25 09:51 - 2022-09-07 22:12 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-25 09:51 - 2022-05-16 11:03 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-25 09:24 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-25 08:46 - 2023-01-04 17:35 - 002029185 _____ C:\Users\SISTEMAS\Desktop\Control RED DCT 2023.xlsx
2023-09-25 08:40 - 2023-04-12 14:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-25 08:13 - 2022-05-16 12:57 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Excel
2023-09-25 08:08 - 2023-04-13 08:02 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\Deployment
2023-09-25 08:07 - 2022-05-16 12:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-09-25 07:58 - 2023-08-10 14:07 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\SynologyDrive
2023-09-25 07:58 - 2023-04-12 14:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2023-09-25 07:58 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-25 07:57 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-25 07:56 - 2022-05-16 10:49 - 000000000 __SHD C:\Users\SISTEMAS\IntelGraphicsProfiles
2023-09-25 07:54 - 2021-03-10 17:17 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-25 07:54 - 2021-03-10 17:17 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-25 07:48 - 2023-04-12 14:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-25 07:48 - 2021-03-10 17:15 - 000000000 ____D C:\Intel
2023-09-25 07:48 - 2020-05-06 03:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-22 18:11 - 2019-12-07 04:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-09-22 17:39 - 2022-05-16 12:57 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\Microsoft\UProof
2023-09-22 17:26 - 2023-04-12 13:01 - 000000000 ____D C:\Users\SISTEMAS\Documents\YouCam
2023-09-22 16:55 - 2022-05-18 18:04 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\Microsoft\PowerPoint
2023-09-22 15:24 - 2023-07-31 10:38 - 000000000 ____D C:\Users\SISTEMAS\Desktop\NAS Synolgy DS1522+
2023-09-22 14:12 - 2023-04-12 14:51 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9D401AC5-DF6E-45C6-9A31-DD082A90BD0F}
2023-09-22 13:06 - 2022-05-16 10:49 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\Packages
2023-09-22 12:47 - 2023-06-19 09:47 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-09-22 08:19 - 2022-06-20 08:01 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\CrashDumps
2023-09-22 07:48 - 2022-05-16 13:16 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Word
2023-09-21 11:38 - 2023-08-16 09:51 - 000027144 _____ C:\Users\SISTEMAS\Desktop\LISTA DE ASISTENCIA 2023.xlsx
2023-09-21 11:12 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-09-21 11:12 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2023-09-21 10:28 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2023-09-20 10:01 - 2022-05-16 15:24 - 000001168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2023-09-20 10:01 - 2022-05-16 15:24 - 000001156 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2023-09-20 10:01 - 2022-05-16 15:24 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2023-09-19 15:55 - 2023-04-12 15:01 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2346323972-426013723-1209652814-1001
2023-09-19 15:55 - 2023-04-12 15:01 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2346323972-426013723-1209652814-1001
2023-09-19 15:55 - 2023-04-12 14:30 - 000002441 _____ C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-18 15:52 - 2023-06-07 16:57 - 000001132 _____ C:\Users\SISTEMAS\Desktop\revision correo.txt
2023-09-18 09:13 - 2022-05-16 10:49 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\D3DSCache
2023-09-15 18:07 - 2023-04-12 14:51 - 000003928 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{99B98F2A-9634-4606-910F-91F6752BA461}
2023-09-15 18:07 - 2023-04-12 14:51 - 000003804 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9C083111-17EB-45BD-95ED-3A28F15149B2}
2023-09-15 15:16 - 2022-05-23 15:57 - 000000000 ___RD C:\Users\SISTEMAS\Desktop\__USUARIOS DCT
2023-09-14 08:26 - 2022-05-16 10:51 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\PlaceholderTileLogoFolder
2023-09-14 08:26 - 2021-03-10 18:14 - 000000000 ____D C:\ProgramData\Packages
2023-09-13 18:06 - 2022-10-14 08:29 - 000000000 ____D C:\Users\SISTEMAS\Desktop\ACCESOS
2023-09-13 11:23 - 2021-03-10 18:21 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-13 07:37 - 2023-04-12 14:24 - 000478400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-13 07:35 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-13 05:56 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-13 05:53 - 2023-04-12 14:28 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-13 05:42 - 2022-05-16 15:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-13 05:38 - 2022-05-16 15:34 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-12 18:35 - 2022-06-30 17:37 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-12 18:33 - 2023-04-12 14:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-09-12 17:43 - 2022-05-16 11:03 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-09-12 17:43 - 2022-05-16 11:03 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-09-12 14:41 - 2020-05-06 03:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-09-08 08:09 - 2022-10-06 08:14 - 000000000 ____D C:\Users\SISTEMAS\AppData\Local\ElevatedDiagnostics
2023-09-06 05:37 - 2022-05-16 15:45 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-09-05 18:08 - 2023-06-29 10:39 - 000000000 ____D C:\Users\SISTEMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUA
2023-09-05 16:33 - 2022-11-24 10:57 - 000000000 ____D C:\NOP
2023-09-05 15:45 - 2022-05-23 15:55 - 000000000 ___RD C:\Users\SISTEMAS\Desktop\__Recupera info & Parciones
2023-09-05 15:45 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\Registration
2023-09-05 15:43 - 2022-05-23 15:52 - 000000000 ____D C:\Program Files (x86)\EaseUS
2023-09-05 15:42 - 2022-05-23 15:53 - 000000000 ____D C:\ProgramData\SystemAcCrux
2023-09-05 15:42 - 2022-05-23 15:51 - 000000000 ____D C:\Program Files\EaseUS
2023-09-05 07:46 - 2023-04-12 14:41 - 001932072 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-05 07:46 - 2019-12-07 10:02 - 000827464 _____ C:\WINDOWS\system32\perfh00A.dat
2023-09-05 07:46 - 2019-12-07 10:02 - 000173538 _____ C:\WINDOWS\system32\perfc00A.dat
2023-09-04 08:00 - 2021-08-09 08:40 - 000000000 ____D C:\Users\SISTEMAS\Desktop\__Prueba2023
2023-09-01 18:14 - 2019-12-07 10:05 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-09-01 18:14 - 2019-12-07 10:05 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-01 18:14 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-01 15:37 - 2022-05-16 15:16 - 000000000 ____D C:\Users\SISTEMAS\Documents\Mis escaneos
2023-08-30 11:10 - 2023-04-12 14:30 - 000000000 ____D C:\Users\SISTEMAS
2023-08-30 07:46 - 2020-05-06 03:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-30 07:37 - 2022-05-16 17:01 - 000002305 _____ C:\Users\SISTEMAS\Desktop\GooChrome.lnk
==================== Archivos en la raíz de algunos directorios ========
2023-04-12 13:01 - 2023-04-12 13:01 - 000024748 _____ () C:\Users\SISTEMAS\AppData\Local\23412-1317-CLCSIWriter.txt
2023-04-12 14:59 - 2023-04-12 14:59 - 000001532 _____ () C:\Users\SISTEMAS\AppData\Local\23412-145946-CLCSIWriter.txt
2023-04-13 07:57 - 2023-04-13 07:57 - 000001532 _____ () C:\Users\SISTEMAS\AppData\Local\23413-75729-CLCSIWriter.txt
2023-04-14 07:33 - 2023-04-14 07:33 - 000001532 _____ () C:\Users\SISTEMAS\AppData\Local\23414-73335-CLCSIWriter.txt
2023-04-17 11:24 - 2023-04-17 11:24 - 000001532 _____ () C:\Users\SISTEMAS\AppData\Local\23417-112423-CLCSIWriter.txt
2023-04-18 08:03 - 2023-04-18 08:03 - 000001532 _____ () C:\Users\SISTEMAS\AppData\Local\23418-8354-CLCSIWriter.txt
2023-04-19 07:38 - 2023-04-19 11:03 - 000040070 _____ () C:\Users\SISTEMAS\AppData\Local\23419-73841-CLCSIWriter.txt
2023-08-14 11:25 - 2023-08-14 13:25 - 000183790 _____ () C:\Users\SISTEMAS\AppData\Local\23814-112532-CLCSIWriter.txt
2023-08-03 12:49 - 2023-08-03 12:49 - 000014378 _____ () C:\Users\SISTEMAS\AppData\Local\2383-124917-CLCSIWriter.txt
2023-09-22 17:26 - 2023-09-22 17:27 - 000014378 _____ () C:\Users\SISTEMAS\AppData\Local\23922-172653-CLCSIWriter.txt
2022-05-16 12:49 - 2022-05-16 12:49 - 000000410 _____ () C:\Users\SISTEMAS\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================