Virus Doble Tilde

Buenas a todos! Hace un tiempo comence con el problema de la doble tilde al intentar acentuar alguna palabra. Primeramente pense q se trataba de un problema de configuracion de teclado, pero despues de leer en el foro y en otras paginas comienzo a creer que se trata de este maldito virus.

Espero puedan ayudarme.

SLDS

1 me gusta

Hola buenas @Matias_Benitez

No, no es un problema de configuración ni nada similar. Se trata del famoso malware de la doble tilde.

Sí, claro, pues primero de todo tenemos que empezar a ver las entrañas de tu máquina.

Pues el malware que tienes en tu máquina es difícil de eliminar o tiene, digamos que cierta persistencia en el sistema y por eso es más difícil de eliminarlo.

Así que voy a atender este tema. Pues debemos ahora de utilizar una herramienta “un poco especial” para eliminar esos malwares que persisten.

EN BUSCA / ELIMINACIÓN DE MALWARE

:one: Desactivas tu antivirus :arrow_forward: Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad que tengas activado.

LO DESCARGAS EN TU ESCRITORIO MUY IMPORTANTE (y no en otro sitio).

Descargas Farbar Recovery Scan Tool MUY IMPORTANTE >> seleccionas la versión adecuada para la arquitectura correspondiente de tu Ordenador (32 o 64bits). :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits.?

:warning: Una vez descargado FRST, desconectas tu equipo de completamente de Internet (apagas el router) >> Super Importante. Acto seguido, cierras también cualquier otro programa que tengas abierto.

:two: Farbar Recovery Scan Tool

  1. Ejecutas el FRST.exe (Si utilizas Windows Vista/7/8 o 10, presionas click derecho y seleccionas Ejecutar como Administrador).

  2. Aparecerá una ventana con un mensaje de Disclaimer/Responsabilidad, presionas sobre Si o Yes.

  3. En la ventana principal del programa presionas sobre Analizar/Scan y esperas a que finalice el análisis.

  4. Aparecerán dos logs/reportes que serán: Frst.txt y Addition.txt, estos quedarán guardados en el escritorio.

:three: Activas de nuevo tu antivirus y cualquier programa de seguridad que tengas activado. También conectas nuevamente tu equipo a Internet.

:four: PRÓXIMA RESPUESTA

Pegas los reportes de FRST.txt y Addition.txt. Debes de poner ambos reportes todos enteros con absolutamente todo su contenido. Deberás de realizar varios mensajes si recibes un mensaje de error/advertencia indicando que es muy largo dicho reporte que formará el mensaje (más de 50.000 carácteres aprox.).

NOTA IMPORTANTE

Por Favor, mientras estemos desinfectando tu maquina o terminando de hacerlo:

  • No realices pasos/acciones que NOSOTROS no te hayamos indicado.
  • No descargues NADA de Internet y/o conectes dispositivos externos a tu equipo.
  • No instales NADA (programas/software/complementos/extensiones del navegador…).
  • No ejecutes otros programas de seguridad (Antivirus, Antimalware, ANTINADA…).
  • No realices por tu cuenta otros procedimientos.
  • Usa tu equipo EXCLUSIVAMENTE para desinfectarlo siguiendo nuestras indicaciones.

:warning: Muy Importante :warning: Coloca los diferentes reportes que te he pedido como se muestra en la siguiente imagen:

Salu2.

1 me gusta

Hola @MIXU gracias por tu atencion. Adjunto los reportes:

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 12.07.2024
Ejecutado por matia (12-07-2024 20:56:10)
Ejecutado desde C:\Users\matia\Desktop
Microsoft Windows 11 Pro Versión 23H2 22631.3593 (X64) (2023-01-31 20:54:38)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================


(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-1716623025-1466615444-594914896-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1716623025-1466615444-594914896-503 - Limited - Disabled)
Invitado (S-1-5-21-1716623025-1466615444-594914896-501 - Limited - Disabled)
matia (S-1-5-21-1716623025-1466615444-594914896-1003 - Administrator - Enabled) => C:\Users\matia
WDAGUtilityAccount (S-1-5-21-1716623025-1466615444-594914896-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Disabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

360 Secure Browser (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\360SecureBrowser) (Version: 1.0.1006.1000 - 360 Secure Browser)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 11.0.0.1058 - 360 Security Center)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FF00-7760-BC15014EA700}) (Version: 24.002.20895 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Advantech DAQNavi Products (HKLM-x32\...\DAQNavi Uninstaller_is1) (Version: 3.2.6.0 - Advantech)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.118 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Anti-Twin (Installation 9/3/2024) (HKLM-x32\...\Anti-Twin 2024-03-09 21.03.31) (Version:  - Joerg Rosenthal, Germany)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.14 - AnyDesk Software GmbH)
Aplicaciones destacadas de Autodesk 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk)
Arduino PLC IDE 1.0.3.1 (HKLM-x32\...\{238360B7-3AA9-4BB1-BF7E-810FA0CD56FD}}_is1) (Version:  - )
AutoCAD 2017 - Español (Spanish) (HKLM\...\{28B89EEF-0001-040A-2102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden
Autodesk Access (HKLM\...\{A3158B3E-5F28-358A-BF1A-9532D8EBC811}) (Version: 2.5.0.107 - Autodesk, Inc.)
Autodesk Advanced Material Library 2018 (HKLM-x32\...\{579A14AB-CDBB-4F48-BD4B-264853E1C386}) (Version: 16.11.1.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk)
Autodesk AutoCAD 2017 - Español (Spanish) (HKLM\...\AutoCAD 2017 - Español (Spanish)) (Version: 21.0.52.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2017 Add-in 64 bit (HKLM\...\{276A67E0-71EB-4827-B5F7-2ACF02BC1A5B}) (Version: 4.37.6853 - Autodesk)
Autodesk DWG TrueView 2023 - English (HKLM\...\{530BA89C-90A7-30BF-A36E-DFD00B7311E7}) (Version: 24.2.153.0 - Autodesk, Inc.)
Autodesk DWG TrueView 2024 - English (HKLM\...\{7526CB7C-C160-303E-89B2-36A159E8832C}) (Version: 24.3.171.0 - Autodesk, Inc.)
Autodesk Genuine Service (HKLM\...\{3F9E7D4B-C2ED-48C6-ABB1-F7611724ACD9}) (Version: 5.0.0.134 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.11.9.11 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Autodesk Navisworks Freedom 2018 - Paquete de idioma Español (Spanish) (HKLM\...\{ECDBDF2B-DC3E-040A-A5F5-F0B376CB6B4A}) (Version: 15.0.1314.36 - Autodesk) Hidden
Autodesk Navisworks Freedom 2018 - Paquete de idioma Español (Spanish) (HKLM\...\Autodesk Navisworks Freedom 2018 - Paquete de idioma Español (Spanish)) (Version: 15.0.1314.36 - Autodesk)
Autodesk Navisworks Freedom 2018 (HKLM\...\Autodesk Navisworks Freedom 2018) (Version: 15.0.1314.36 - Autodesk)
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
AzovSky Version Safe v2.5.2.300 (HKLM-x32\...\AzovSky Version Safe_is1) (Version:  - AzovSky studio)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
By Click Downloader (HKLM-x32\...\{8BB08C18-6BB5-4CF0-88AB-EA64B9F8992E}) (Version: 2.4.6 - ByClick) Hidden
By Click Downloader (HKLM-x32\...\By Click Downloader 2.4.6) (Version: 2.4.6 - ByClick)
CCleaner (HKLM\...\CCleaner) (Version: 6.25 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 126.0.25497.127 - Gen Digital Inc.)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1691.6 - Piriform Software) Hidden
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
CYmeil 6.7 (HKLM-x32\...\CYmeil_is1) (Version:  - CYmeil Recovery Software)
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 3.0.344.0 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 2.0.24.0 - DIAL GmbH)
DIALux evo (x64) (HKLM-x32\...\{5FF70775-5D3A-4A26-B9ED-1BF642E9987C}) (Version: 5.11.1.65056 - DIAL GmbH)
eDrawings (HKLM\...\{4DFF8D95-7860-43B9-85FB-1699C7E859AB}) (Version: 30.30.0022 - Dassault Systèmes SolidWorks Corp)
EHngBackup 6.7 (HKLM-x32\...\EHngBackup_is1) (Version:  - )
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Factory I/O (HKLM-x32\...\Factory I/O 2.2.3) (Version: 2.2.3 - Real Games)
FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
File Metadata 64-bit (v1.6.0.4) (HKLM\...\{22280171-8EBB-4A1B-8DBC-3AC2CF6B03BC}) (Version: 1.6.7354.0 - Dijji)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 126.0.6478.127 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 92.0.1.0 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Hamachi (HKLM-x32\...\{C00E2143-38F2-49BA-AB8A-03F22F02F0A4}) (Version: 2.3.0.111 - LogMeIn, Inc.) Hidden
Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.111 - LogMeIn, Inc.)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP DesignJet Utility (HKLM-x32\...\{6D000395-E32A-4164-955D-F499074D8D1C}) (Version: 6.4.5.4879 - HP Inc.)
HP LaserJet P1000 series (HKLM-x32\...\HP LaserJet P1000 series) (Version:  - )
HP Officejet 7610 series Software básico del dispositivo (HKLM\...\{C5C217C8-88B8-49D5-AB1D-D47E6436BCA3}) (Version: 29.2.1009.0 - Hewlett-Packard Co.)
HP Print Preview (HKLM\...\{ccb97f94-8ef1-4fa1-a3c1-7ef3665db3ec}) (Version: 2.2206.1.177 - HP Inc.)
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Importación de SketchUp 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk)
Intel Driver && Support Assistant (HKLM-x32\...\{A3A258AC-BF95-41DA-8693-807E4A5BF10D}) (Version: 24.3.26.8 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{2D924248-D4EE-45BA-BDDB-1FA8828CF5CA}) (Version: 2.4.10852 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{D162161F-8200-475E-A86A-693E7C951444}) (Version: 24.3.26.8 - Intel)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0.1 - AppWork GmbH)
LEDVANCE Catalogue (HKLM-x32\...\C54FB8C9-15F4-46F2-80F1-71B09852DB5E) (Version: 2.0.2.0 - LEDVANCE)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.02.25 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.12.0 - Lenovo Group Ltd.)
LOGO! Soft Comfort v7 (HKLM\...\{A3A6206D-E6CD-4F97-B664-7D785315541E}) (Version: 7.0.30 - Siemens)
Malwarebytes version 5.1.6.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.6.117 - Malwarebytes)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft Access MUI (Spanish) 2016 (HKLM\...\{90160000-0015-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Spanish) 2016 (HKLM\...\{90160000-0090-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 126.0.2592.87 - Microsoft Corporation)
Microsoft Excel MUI (Spanish) 2016 (HKLM\...\{90160000-0016-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Spanish) 2016 (HKLM\...\{90160000-00BA-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Spanish) 2016 (HKLM\...\{90160000-0044-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Spanish) 2016 (HKLM\...\{90160000-00E1-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Spanish) 2016 (HKLM\...\{90160000-00E2-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Proofing (Spanish) 2016 (HKLM\...\{90160000-002C-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Spanish) 2016 (HKLM\...\{90160000-00C1-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Spanish) 2016 (HKLM\...\{90160000-006E-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office zuzenketa-tresnak 2016 - Euskara (HKLM\...\{90160000-001F-042D-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\OneDriveSetup.exe) (Version: 24.116.0609.0005 - Microsoft Corporation)
Microsoft OneNote MUI (Spanish) 2016 (HKLM\...\{90160000-00A1-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Spanish) 2016 (HKLM\...\{90160000-001A-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Spanish) 2016 (HKLM\...\{90160000-0018-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Project Professional 2013 - es-es (HKLM\...\ProjectProRetail - es-es) (Version: 15.0.5603.1000 - Microsoft Corporation)
Microsoft Publisher MUI (Spanish) 2016 (HKLM\...\{90160000-0019-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Skype for Business MUI (Spanish) 2016 (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM\...\{655A4169-5BB6-44B0-A9BA-4CBE23A412AA}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) English (HKLM\...\{90F60409-7000-11D3-8CFE-0150048383C9}) (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33130 (HKLM-x32\...\{2cfeba4a-21f8-4ea7-9927-c5a5c6f13cc9}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
Microsoft Word MUI (Spanish) 2016 (HKLM\...\{90160000-001B-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.8.1 - Mozilla)
Mozilla Thunderbird (x64 es-ES) (HKLM\...\Mozilla Thunderbird 115.12.2 (x64 es-ES)) (Version: 115.12.2 - Mozilla)
MrvlUsgTracking (HKLM-x32\...\{A82D052A-0806-42DF-80CD-1730A1AC0ED3}) (Version: 1.0.7 - Marvell)
MrvlUsgTracking64 (HKLM\...\{42F0FD29-7EB3-4CAA-AF10-BC2619B96D80}) (Version: 1.0.1 - Marvell Semiconductor Pvt Ltd)
NVIDIA Controlador de audio HD 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 556.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 556.12 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA USBC Driver 1.52.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.52.831.832 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5603.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5603.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0C0A-0000-0000000FF1CE}) (Version: 15.0.5603.1000 - Microsoft Corporation) Hidden
Opera Stable 111.0.5168.61 (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Opera 111.0.5168.61) (Version: 111.0.5168.61 - Opera Software)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
Philips Product Selector 5.2.14.2 (HKLM-x32\...\{81AD9228-21AC-4DBD-AE33-98146A88BAA8}) (Version: 5.2.14.2 - Signify) Hidden
Philips Product Selector 5.2.14.2 (HKLM-x32\...\InstallShield_{81AD9228-21AC-4DBD-AE33-98146A88BAA8}) (Version: 5.2.14.2 - Signify)
Popcorn-Time (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Popcorn-Time) (Version: 0.5.1 - Popcorn Time)
PPS max plugin 1.7.0 (HKLM-x32\...\PPS max plugin_is1) (Version: 1.7.0.0 - Tree C Technology B.V.)
PTC Diagnostic Tools (HKLM\...\{649E4386-2691-42CB-9D6F-21E3E67E7F0B}) (Version: 7.0.3.0 - PTC)
PTC Mathcad Prime 7.0.0.0 (HKLM\...\{D58BBD10-9F37-4A3C-86B7-CBB35230522E}) (Version: 7.0.0.0 - PTC)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
S7-200 Explorer V2.0.0.27 (HKLM-x32\...\{2A645578-D36C-4E6C-9DEC-B71BC17EAB74}) (Version: 2.0.0.0 - Siemens)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SOLIDWORKS 2016 x64 Edition SP02 (HKLM\...\{768F3B65-1695-47B7-9002-B11400CB111D}) (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation)
SOLIDWORKS 2016 x64 Spanish Resources (HKLM\...\{8B8E66FD-45FA-4E29-8EA3-6A64DE405A9E}) (Version: 24.120.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2016 SP02 x64 Edition (HKLM\...\{36CE77E6-4DB3-48C0-91E8-0F4AA3721597}) (Version: 24.20.50 - Dassault Systémes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP02 (HKLM\...\{BCB9F00D-D23D-465C-B7BB-629900B7FF51}) (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2016 SP02 x64 Edition (HKLM\...\{064914EF-A0D8-447D-8E5C-E888CA8FD467}) (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2016 SP02 x64 Edition (HKLM\...\{41E08694-1890-4B39-9D1C-B9D27A1D67B3}) (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition  (HKLM\...\{0B7C2320-1D2F-42F1-9941-C88C6B7AB0D5}) (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
STEP 7 MicroWIN V4.0.9.25 (HKLM-x32\...\{EA5E7DD4-D9AC-406B-9233-9B3E65C1DBA2}) (Version: 4.0.9 - Siemens)
Stremio (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Stremio) (Version: 4.4.168 - Smart Code Ltd)
TD Keypad Designer V1.0.9.25 (HKLM-x32\...\{3A3DCADC-703E-4D52-A40B-0A4A3381E503}) (Version: 1.0.9 - Siemens)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.87 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Zoom Workplace (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\ZoomUMX) (Version: 6.0.0 (37205) - Zoom Video Communications, Inc.)

Chrome apps:
============
Google Maps (HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\17a1d75b85f02649b7ca6900497c4c4c) (Version: 1.0 - Google\Chrome)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-07-08] ()
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m [2024-05-25] (Advanced Micro Devices Inc.) [Startup Task]
Duplicates Cleaner -> C:\Program Files\WindowsApps\6655kaeros.DuplicatesCleaner_3.70.81.0_x64__wbzechdf9an1w [2024-07-01] (kaeros)
Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.3017.0_x64__8wekyb3d8bbwe [2024-07-09] (Microsoft Corporation) [Startup Task]
Homeasy -> C:\Program Files\WindowsApps\27610DRossoft.Homeasy_4.1.12.0_x64__q4b551b2ebdqa [2024-06-22] (DRossoft)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_154.2.1075.0_x64__v10z8vjag6ke6 [2024-06-27] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.35.35.0_x64__v10z8vjag6ke6 [2024-05-21] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-07-06] (Instagram)
ISO Image Creator -> C:\Program Files\WindowsApps\YellowElephantProductions.ISOImageCreator_1.311.90.0_x86__p3e1zgp7z7szg [2024-07-09] (Yellow Elephant Productions)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24052.57.0_x64__cw5n1h2txyewy [2024-06-15] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-06-29] (NVIDIA Corp.)
PDF X -> C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.1.0_x64__sbe4t8mqwq93a [2024-07-05] (NG PDF Lab) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.48.315.0_x64__dt26b99r8h8gj [2024-03-08] (Realtek Semiconductor Corp)
SayMoney -> C:\Program Files\WindowsApps\36014IvanWeberITApps.SayMoney_2.2.93.0_x64__hb2advbb5krxm [2024-06-22] (IW IT & Apps)
Selffina -> C:\Program Files\WindowsApps\JavaLangITCorporation.Selffina_2.3.3.0_x64__7nbzbcy7vba08 [2024-06-22] (PT JavaLangIT Isticom Teknologi)
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_5.2.3.0_x64__t4vj0pshhgkwm [2024-07-07] (Telegram Messenger LLP) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2424.6.0_x64__cv1g1gvanyjgm [2024-06-21] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-10] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-10] (Microsoft Corp.)
Windows CoPilot MSIX Pack -> C:\Program Files\WindowsApps\MicrosoftWindows.Client.CoPilot_724.1301.930.5_x64__cw5n1h2txyewy [2024-04-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-05-15] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-03-08] (win.rar GmbH)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1716623025-1466615444-594914896-1003_Classes\CLSID\{09199943-52f2-4038-ad0a-55decbdc5ef9}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-1716623025-1466615444-594914896-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1716623025-1466615444-594914896-1003_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1716623025-1466615444-594914896-1003_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2017\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2022-09-14] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2024-03-21] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [DIALuxShellExtension] -> {F23E3460-D1B1-4F51-8C3D-E5D91E3C71C8} => C:\Program Files\DIAL GmbH\DIALux\Dial.ShellExtension.x64.dll [2021-12-09] (DIAL GmbH) [Archivo no firmado]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-03] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> Ningún archivo
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\92.0.1.0\drivefsext.dll [2024-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_e4c2d764c82d2d50\nvshext.dll [2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-07-03] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_mnhkaebcjjhencmpkapnbdaogjamfbcj\Google Maps.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=mnhkaebcjjhencmpkapnbdaogjamfbcj

==================== Módulos cargados (Lista blanca) =============

2024-03-19 19:19 - 2024-02-16 03:30 - 000925184 _____ () [Archivo no firmado] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adIPC.node
2024-03-19 19:19 - 2024-02-16 11:39 - 000371712 _____ () [Archivo no firmado] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adpUtil.node
2022-04-22 13:22 - 2022-04-22 13:22 - 006052864 _____ (HP Inc) [Archivo no firmado] C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\hppihost.dll
2022-04-22 13:22 - 2022-04-22 13:22 - 005864448 _____ (HP Inc.) [Archivo no firmado] C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\hplfpsdk.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)

HKU\S-1-5-21-1716623025-1466615444-594914896-1003\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Lista blanca) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-19 01:49 - 2019-03-19 01:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\matia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.

Network Binding:
=============
Wi-Fi 2: PROFINET IO RT-Protocol V2.0 -> s7sn2srtx (enabled) 
Conexión de red Bluetooth: PROFINET IO RT-Protocol V2.0 -> s7sn2srtx (enabled) 
Hamachi: PROFINET IO RT-Protocol V2.0 -> s7sn2srtx (enabled) 
Ethernet 2: PROFINET IO RT-Protocol V2.0 -> s7sn2srtx (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: s7oiehsx64 => 2
MSCONFIG\Services: S7TraceServiceX => 2
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2016 Fast Start.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Programa de descargas en segundo plano de SOLIDWORKS.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "HPUsageTracking"
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\StartupApproved\Run: => "360DesktopLite"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{360D7C04-C7F8-4F84-8B3F-F4F4DB80C625}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F4B96233-A6DA-4D0C-8FF5-956B1EF1FEA5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2CF5B456-D527-4823-BDD1-89CD93E8CB7B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5F8BB7DE-661E-41A6-BAA2-2ADE3598A27E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{742EB18C-991D-4C9E-ABD2-76AC50542F0D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CFFFD016-B9C6-499E-8E26-1566E6FE78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{19E45E3B-A0A0-4E3D-8CED-7F23C764F0BC}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe (Trace Software International -> Trace Software International)
FirewallRules: [UDP Query User{EC075767-ECC5-432D-81F6-F15EE4AFD340}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe (Trace Software International -> Trace Software International)
FirewallRules: [TCP Query User{C13530E8-0BA8-486C-9B17-8BC95CC2AA0D}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe (Trace Software International -> Trace Software International)
FirewallRules: [UDP Query User{D08FC8F5-DA37-47C8-8D88-938AB4A7C5D6}C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe] => (Block) C:\program files\solidworks corp\solidworks electrical\bin\solidworkselectrical.exe (Trace Software International -> Trace Software International)
FirewallRules: [{9866EF0D-1FD5-4E6B-981A-E71755C37BD5}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\FaxApplications.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{7002F3A7-65C6-45FE-AE91-C6741D4367E2}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\DigitalWizards.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{96639EDA-EAC8-4F8D-A028-7DBEC391FBA4}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\bin\SendAFax.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{4596AEC4-BEC5-440B-884A-4BCDA7B72960}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\DeviceSetup.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{BBC92E8B-0C60-4E77-BC01-AFF0B4FC3C50}] => (Allow) C:\Program Files\HP\HP Officejet 7610 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{F057C72A-9015-4F31-8635-3F7537A49A61}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{5EC26810-7976-458B-AB1F-A470F25117ED}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{5718E248-2653-4013-8E30-D785D0E95D9D}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{90B4B2FB-5DD2-4FE3-A8B8-143F6B5263AF}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{169977C0-658D-493C-982A-B3C38D4CF38B}] => (Allow) LPort=1688
FirewallRules: [{23291D5C-1986-4F06-961F-F3994AC17F91}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{21D0F38D-EE73-4390-9505-6F9D6DFDD404}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{3C7F0DDC-E2AE-4346-A9BE-4463EAA91EB5}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{7AB86811-DF6E-493C-AFC2-15073D746692}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{E3266093-455F-4069-833A-292F7DF49E38}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
FirewallRules: [{F33FE4A9-7144-48F5-8D61-0FEE79BC4CE3}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
FirewallRules: [{76D46855-D874-4FCA-A472-CDE777FAFA72}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{46F8CB73-5244-4CAC-9533-86B1C32EAF2B}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{FC2AA068-03A0-48AC-BF01-E1C7F5530BBA}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> Lenovo)
FirewallRules: [{A173CC50-0901-44D5-8594-2559997B8832}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> Lenovo)
FirewallRules: [{CFFEF9CA-7A66-4DE2-BA0E-144793574C32}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{6946A167-EB92-40E0-A0ED-861B00290CE8}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{7F1BC3AC-F388-4C7C-BB84-D1EE8FE7372F}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CCD96E21-1290-4D1F-B7C4-8603661D3687}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{24FD8644-21AA-4D72-83D0-9BFBC28934AE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{79A01E74-62F5-4242-BE69-EF128AB33CD8}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B4549E86-1567-47FF-A584-87A88A68EDDF}] => (Allow) C:\Users\matia\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{7D7455A1-5E11-4DD7-8E8F-89ACC50FB0B7}C:\users\matia\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\matia\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Smart Code OOD -> Node.js)
FirewallRules: [UDP Query User{D9D545F2-8EE5-43F1-B3D0-66CB1A72F326}C:\users\matia\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\matia\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Smart Code OOD -> Node.js)
FirewallRules: [TCP Query User{FD6541E7-7E89-49E0-8D61-9021FE58AC95}C:\users\matia\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\matia\appdata\local\popcorn-time\popcorn-time.exe (The NW.js Community) [Archivo no firmado]
FirewallRules: [UDP Query User{ED6DC4F5-4158-41E8-8718-93F983ECE20C}C:\users\matia\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\matia\appdata\local\popcorn-time\popcorn-time.exe (The NW.js Community) [Archivo no firmado]
FirewallRules: [{8685A497-5FBA-4BD0-B0CF-63491977E4BE}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{09E5407D-0665-4B93-A83B-0A51F8F0C814}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{FDCA890D-5D47-4953-81BD-900EA6B6C41D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{33FAAE88-AA6B-4BD2-A352-E673EB5E7DBE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3935DA0B-9FF0-4EB5-90DD-27E13071C325}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2743FE27-5413-45C0-BD38-20018D38C530}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69714D1C-250B-4F81-BBC6-DF76F22C050E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{410AEB59-51D1-4888-8054-413FE7F1B9C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7034811-805F-4B33-993C-B929C303717B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7274D57-6F5A-4894-937E-FE544E101F28}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.81\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{882917E6-81E5-4CD5-B05F-DC2858BCF876}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBE5B538-2AAB-4635-860B-B7EF97CA023E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FED47674-E047-4B09-87F6-5B038F0DFB07}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28FA8F55-0065-458B-BEF6-3E74361706C2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{70032D52-8D2A-427C-8B22-04821CB029A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD16383B-092B-484E-B29E-58209217A099}] => (Allow) C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
FirewallRules: [{EAB71AB4-003C-46A4-AFFE-E484504EF694}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{BE44CA46-2D97-4592-A575-BE2D9855EB87}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{9994971F-4B8C-41C2-B6F9-98692B3596B3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{521FB1E4-1DBB-42F4-A6C8-63658BA1CAFA}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{016613CC-3B58-42B3-B9F2-56637E933275}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{A2ACDE27-DE85-4DE7-BBEE-25144C110B31}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{A03DBB0C-B807-4484-A9F1-3CF8662BDDC2}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0D08C722-1C01-4E0F-B6BA-01FB2923F001}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)

==================== Puntos de Restauración =========================

07-07-2024 19:03:12 Windows Update
11-07-2024 12:30:21 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (07/12/2024 08:51:55 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Nombre de la aplicación con errores: WscReg.exe, versión: 9.2.0.1031, marca de tiempo: 0x60a1d9f6
Nombre del módulo con errores: mbamsi32.dll, versión: 1.1.1.60, marca de tiempo: 0x663e24f1
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x00172ea3
Identificador del proceso con errores: 0x0x5a74
Hora de inicio de la aplicación con errores: 0x0x1dad4b6795c2c49
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe
Ruta de acceso del módulo con errores: C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamsi32.dll
Identificador del informe: 9ce8a7c4-71bf-4508-a620-9c8ba076964b
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (07/12/2024 08:32:15 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Nombre de la aplicación con errores: svchost.exe_wuauserv, versión: 10.0.22621.1, marca de tiempo: 0x6dc5c2a5
Nombre del módulo con errores: ntdll.dll, versión: 10.0.22621.3527, marca de tiempo: 0x92b2df34
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000026abf
Identificador del proceso con errores: 0x0x2a84
Hora de inicio de la aplicación con errores: 0x0x1dad4b2625e48e0
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\svchost.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: c28677e8-fb02-4962-8cfb-f9dd296df028
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (07/12/2024 08:25:16 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Nombre de la aplicación con errores: WscReg.exe, versión: 9.2.0.1031, marca de tiempo: 0x60a1d9f6
Nombre del módulo con errores: mbamsi32.dll, versión: 1.1.1.60, marca de tiempo: 0x663e24f1
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x00172ea3
Identificador del proceso con errores: 0x0xb00
Hora de inicio de la aplicación con errores: 0x0x1dad4b2bf974c32
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe
Ruta de acceso del módulo con errores: C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamsi32.dll
Identificador del informe: 82c70d76-07ef-414f-86e9-7b02f325a4ce
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (07/12/2024 08:24:03 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Nombre de la aplicación con errores: WscReg.exe, versión: 9.2.0.1031, marca de tiempo: 0x60a1d9f6
Nombre del módulo con errores: mbamsi32.dll, versión: 1.1.1.60, marca de tiempo: 0x663e24f1
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x00172ea3
Identificador del proceso con errores: 0x0x36b0
Hora de inicio de la aplicación con errores: 0x0x1dad4b2947d8726
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe
Ruta de acceso del módulo con errores: C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamsi32.dll
Identificador del informe: 6d2d7ecc-7be9-452e-8804-d0287e644d1b
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (07/12/2024 08:22:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Error en la inicialización de la inscripción de certificados de SCEP para MRA\DESKTOP-VH63M5R$ a través de https://AMD-KeyId-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}

1 me gusta
HTTP/1.1 404 Not Found
Date: Fri, 12 Jul 2024 23:22:53 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 09ed1529-a09c-4792-b175-7fa355afecf9

Método: GET(343ms)
Fase: GetCACaps
No encontrado (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (07/12/2024 08:22:53 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Error en la inicialización de la inscripción de certificados de SCEP para Sistema local a través de https://AMD-KeyId-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 12 Jul 2024 23:22:51 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 4d676f33-6cdb-4d6a-ab9d-353eb15355f5

Método: GET(875ms)
Fase: GetCACaps
No encontrado (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (07/12/2024 02:27:38 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-VH63M5R)
Description: Nombre de la aplicación con errores: Explorer.EXE, versión: 10.0.22621.3527, marca de tiempo: 0x00c8ba7a
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.22621.3527, marca de tiempo: 0x83efbeab
Código de excepción: 0xe0434e49
Desplazamiento de errores: 0x000000000006543c
Identificador del proceso con errores: 0x0x2610
Hora de inicio de la aplicación con errores: 0x0x1daced048af9dce
Ruta de acceso de la aplicación con errores: C:\WINDOWS\Explorer.EXE
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 20dcde54-1f05-4a1c-a136-e9394caa4a5d
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (07/12/2024 09:47:07 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


Errores del sistema:
=============
Error: (07/12/2024 08:55:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Energy Server Service queencreek no pudo iniciarse debido al siguiente error: 
Acceso denegado.

Error: (07/12/2024 08:32:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Update terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

Error: (07/12/2024 08:31:33 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (07/12/2024 08:25:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Energy Server Service queencreek no pudo iniciarse debido al siguiente error: 
Acceso denegado.

Error: (07/12/2024 08:22:39 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: La actualización de arranque seguro no pudo actualizar una variable de arranque seguro y devolvió el error -2147020471. Para obtener más información, consulte https://go.microsoft.com/fwlink/?linkid=2169931

Error: (07/12/2024 08:22:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio ESRV_SVC_QUEENCREEK no pudo iniciarse debido al siguiente error: 
Acceso denegado.

Error: (07/12/2024 08:22:31 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 04:35:32 p. m. del ‎12/‎07/‎2024 resultó inesperado.

Error: (07/12/2024 08:18:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio HPAppHelperCap.


Windows Defender:
================
Date: 2023-06-06 14:38:33
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {F6106767-1B9C-43A3-A709-FFB5F4164FF9}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-06-05 16:13:35
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {C3FF88D9-35A1-495B-AF42-01881E3A3C09}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-06-05 09:43:01
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {D668CFD6-6390-4A4F-A940-346AE46E6DE1}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-06-02 17:09:59
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {97614F22-4CD7-4E20-8932-27B20E1D4E1D}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 

Date: 2023-06-01 10:38:51
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {2847E0EE-1B95-43E3-A1FB-1ABD16E6FC98}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM 
Event[0]

Date: 2023-02-06 20:30:53
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 1.381.3231.0
Versión anterior de inteligencia de seguridad: 1.381.3200.0
Origen de actualización: Usuario
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Diferencia
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 1.1.19900.2
Versión anterior del motor: 1.1.19900.2
Código de error: 0x80508007
Descripción del error: Your device is low on memory. Close some programs and try again, or search Help and Support for information about preventing low memory problems.  

Date: 2023-02-06 20:30:53
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 1.381.3231.0
Versión anterior de inteligencia de seguridad: 1.381.3200.0
Origen de actualización: Usuario
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Diferencia
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 1.1.19900.2
Versión anterior del motor: 1.1.19900.2
Código de error: 0x80508007
Descripción del error: Your device is low on memory. Close some programs and try again, or search Help and Support for information about preventing low memory problems.  

CodeIntegrity:
===============
Date: 2024-07-12 20:54:22
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll that did not meet the Microsoft signing level requirements. 

Date: 2024-07-12 20:54:22
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 


==================== Información de la memoria =========================== 

BIOS: LENOVO H3CN35WW(V2.05) 08/30/2022
Placa base: LENOVO LNVNB161216
Procesador: AMD Ryzen 5 5600H with Radeon Graphics 
Porcentaje de memoria en uso: 66%
RAM física total: 5996.07 MB
RAM física disponible: 2012.69 MB
Virtual total: 13326.58 MB
Virtual disponible: 4411.82 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:436.26 GB) (Free:214.51 GB) (Model: GIGABYTE GP-GSTFS31480GNTD) NTFS
Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:0.02 GB) (Model: GIGABYTE GP-GSTFS31480GNTD) FAT32

\\?\Volume{cbd2b60d-2db9-4221-a14d-fba047db347b}\ () (Fixed) (Total:0.57 GB) (Free:0.04 GB) NTFS
\\?\Volume{7ebe7e80-302f-01d8-402f-0eac1718ec00}\ () (Fixed) (Total:0.74 GB) (Free:0.15 GB) NTFS
\\?\Volume{0000058b-7d50-0e76-2138-d801160b0000}\ () (Fixed) (Total:0.35 GB) (Free:0.33 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 447.1 GB) (Disk ID: 06CF22E0)

Partition: GPT.

==================== Final de Addition.txt =======================```
1 me gusta

Hola buenas @Matias_Benitez

Ya estoy de vuelta… por fin.

Disculpa en que haya tardado un poco más en dar respuesta. Las cosas se me complicaron bastante y he quedado libre hace unas horas.

He revisado tus informes y el de Addition.txt sí que está bien puesto y es correcto, pero el de FRST.txt, no lo es. Le falta mucho contenido y al no ponerlo no puedo hacer nada, simplemente el contenido no está.

Ponlo de nuevo el FRST.txt y seguimos.

Salu2.

Disculpas por el error @MIXU , va de nuevo el FRST.txt

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 12.07.2024
Ejecutado por matia (administrador) sobre DESKTOP-VH63M5R (LENOVO 82K2) (12-07-2024 20:57:26)
Ejecutado desde C:\Users\matia\Desktop\FRST64.exe
Perfiles cargados: matia
Plataforma: Microsoft Windows 11 Pro Versión 23H2 22631.3593 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.11.9.11\AdskIdentityManager.exe
(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> ) C:\Program Files (x86)\360\Total Security\Utils\PopTip.exe
(C:\Program Files (x86)\360\Total Security\Utils\PopTip.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\Utils\cef\cefutil.exe <2>
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\92.0.1.0\crashpad_handler.exe
(C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe ->) (Mentor Graphics Corp -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24061.93.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24061.93.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe <12>
(C:\Users\matia\Desktop\FRST64.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2405.13.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <3>
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\FnHotkeyUtility.exe
(DriverStore\FileRepository\u0391129.inf_amd64_7a819ad751ab7622\B390488\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0391129.inf_amd64_7a819ad751ab7622\B390488\atieclxx.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\HPDesignJetUtility.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0391129.inf_amd64_7a819ad751ab7622\B390488\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\LenovoUtilityService.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Mentor Graphics Corp -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_e4c2d764c82d2d50\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4401706d277a86e0\RtkAudUService64.exe <2>
(services.exe ->) (Trace Software International -> ) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(sihost.exe ->) (614A9D21-6F29-4C9D-9F7D-FF59321D9E5F -> ) C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.1.0_x64__sbe4t8mqwq93a\FileWatcher\FileWatcher.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24052.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2424.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4401706d277a86e0\RtkAudUService64.exe [1886616 2023-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe [20987680 2024-02-20] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [RunPUMonitor] => C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\HPDesignJetUtility.exe [514176 2022-04-22] (HP Inc. -> HP Development Company, L.P.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTracking] => C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe "C:\Program Files (x86)\HP\HP UT\" [0 0000-00-00] () <==== ATENCIÓN [cero bytes Archivo/Carpeta]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7811960 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [MicrosoftEdgeAutoLaunch_8B60B23E1FEB5577A098CDB02CF04A7D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [Opera Stable] => C:\Users\matia\AppData\Local\Programs\Opera\opera.exe [1595296 2024-07-10] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [Opera Browser Assistant] => C:\Users\matia\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4048800 2024-06-12] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Run: [CCleanerBrowserAutoLaunch_36344E8A57B5C2442B31C1488F506DDA] => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [3171032 2024-06-25] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1716623025-1466615444-594914896-1003\...\MountPoints2: {04173304-0a2c-11ef-903f-d8808305852a} - "E:\setup.EXE" /AUTORUN
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1006S: C:\Windows\System32\spool\prtprocs\x64\HP1006S.DLL [373760 2010-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\HP 6e12 Status Monitor: C:\WINDOWS\system32\hpinksts6e12LM.dll [331664 2012-08-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP LaserJet P1006 Language Monitor: C:\WINDOWS\system32\HP1006LM.DLL [403968 2010-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [115592 2022-07-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files\CCleaner Browser\Application\126.0.25497.127\Installer\chrmstp.exe [2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-07-26]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Programa de descargas en segundo plano de SOLIDWORKS.lnk [2022-07-25]
ShortcutTarget: Programa de descargas en segundo plano de SOLIDWORKS.lnk -> C:\Program Files (x86)\Common Files\Gestor de instalación de SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2016 Fast Start.lnk [2022-07-25]
ShortcutTarget: SOLIDWORKS 2016 Fast Start.lnk -> C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [Archivo no firmado]
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {15500483-B01F-4CA4-A87D-3C74C8A0CA95} - System32\Tasks\adobe acrobat update task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {ABE7203A-4916-4CF6-9D93-D9B6D95F6FAC} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [3171032 2024-06-25] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {3EB24CCE-FFC8-44D8-8F06-60868DE1E07A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [3171032 2024-06-25] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {4252C5C3-2CBA-4AD6-92E8-FF79A86D3CCE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0B2C190E-798F-4E17-9F36-63A6CEE4F3D8} - System32\Tasks\CCleanerBrowserProtectS-1-5-21-1716623025-1466615444-594914896-1003 => C:\Program Files\CCleaner Browser\Application\CCleanerBrowserProtect.exe [1717416 2024-06-25] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {41FD0EBE-9B41-43F1-8C06-10AD726CA0F1} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "32373bbd-a8aa-4262-bd6f-021bd98376c3" --version "6.25.11131" --silent
Task: {D6672039-5E0E-42AB-8B33-93F300F50F67} - System32\Tasks\CCleanerSkipUAC - matia => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {329FE18E-6551-4E09-ACB0-AD0F9E73D400} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208688 2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {B2240721-CDC7-43EE-87B6-39D8861FD959} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208688 2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {CE9D3BB4-6C41-4C9B-8B91-C3BCAC2F04F4} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{991F90E9-660F-472E-B14C-D6EBFA642468} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {0536015C-79F5-4BC3-86DB-FE887EBBCF10} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-05-13] (HP Inc. -> HP Inc.)
Task: {770E1921-CCD4-4F9F-9BF1-19F0AB367781} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231472 2024-05-13] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {BD905D77-059B-4523-97F2-36C6F2925D66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-05-13] (HP Inc. -> HP Inc.)
Task: {464901C9-FDC6-4FE7-80F3-B83B00D58E56} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {2A08151D-064A-4079-95E3-89EF4376320F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {93860A3C-009C-4391-950D-43738432470C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe  --automatic (Ningún archivo)
Task: {3DC8B15C-3F2B-4591-99BA-5CAB3F2DFE51} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {2551BDFA-5420-4BD0-B3F5-2DE256539666} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {5EF4DAA6-3FD3-472B-9AD0-B5A18CA784B6} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C3DAACCD-8D2D-4667-B79F-545875FE0ED4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\07683633-f934-40ef-bedc-38b291ad96c2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E48E848A-FC04-4B9B-A06B-1C2DDFB0FF76} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0c418428-6564-4de8-88d9-1c099fd06648 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E7848EFE-37E0-4FE7-8181-79DCFDD2092F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3a30823d-6c5d-474b-bf03-d74703b19005 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {580B2B82-E10F-47FC-8CA2-09ABC5DB6183} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7bcd05a0-197b-4e9a-a071-b0a08ba4458d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {175A4925-3D9A-4259-B366-2FD83243C1F8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8af37e23-6bc1-499d-a68f-3272175ac919 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {0D2FDC01-27BE-47B5-94B0-428DB88D1AF7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {3B161FDA-181F-471D-8A25-163E5D467363} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {F09D9C78-FAB3-458F-88D7-EAFFBE9B2C43} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {C3F894D0-573A-4ECD-B326-BF2890984D4B} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {580DCADE-EA07-4FF1-8316-949497E42436} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {C983E3CE-8654-494B-8D2F-E4B89EEDD856} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {A7DABB7F-0E47-4D21-B9EF-456E0C0382BE} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {E24E8C0F-0416-43EE-9F17-018EE335FD06} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {9CEE3A25-BDEF-4C34-BB8E-63D94458601D} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBatteryPartSalesMonthlyToast => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {91081A70-C313-40DB-A9AE-8D53208F2097} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {59F6F236-B1FC-4D13-B93F-F5288F97076A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {E1ABF92C-9D22-41E4-8039-439680BE5F0E} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {F3289A0A-8038-4E0D-A544-CD4143E1398E} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {3EAB938C-8E63-42D8-B6DA-723031941DCA} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {2C45791F-4CBD-4528-8460-671DF338C55B} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\uninstall.exe [345552 2024-05-30] (Lenovo -> Lenovo)
Task: {D66619A1-72F9-4B9A-99AC-0CE1CA14C77F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {44D6A49E-16B7-4CFD-A94B-F33A98B71B97} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0954251B-23D2-4A4E-A79A-18CA419B140A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D944C80-B0E1-4E06-93F2-2CFDEECBB18F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [287176 2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A37F3B99-80A8-4BD5-9884-712C3A04B49D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {BEB6BEDF-DA60-4D92-969B-8A6AE5E5C3CD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [287176 2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F17AB4A-74EA-4379-A057-B868B8A1C635} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Ningún archivo)
Task: {C623933D-6C3B-4BF7-AD4A-344FDE022EBE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC RebootDialog (Ningún archivo)
Task: {D7C3EFB4-3F5D-4FA8-AE89-2B88123A63A7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery RebootDialog (Ningún archivo)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Ningún archivo)
Task: {D5366052-6447-4DCB-BA67-3E5D3830F2E0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B96CA3E2-7356-4195-855A-A27588EF47B4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA4937AB-CFDE-4138-854B-C9F4E3EA7530} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {5D0E3A6F-F607-46A9-946F-1113D6656299} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6AE66994-3E97-449B-B59F-6299A67F4903} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {19920AC7-8359-4E86-B177-19D7E9F99A80} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E140CC0B-01C9-4946-ADD6-B4368BF529B5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A1C6F433-2EBB-42FD-8991-77A9DC442873} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4270CE97-6063-4F1F-8344-D52DF3115F0E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84B1930E-1269-4E16-AB8A-81F63CBE42CD} - System32\Tasks\Opera scheduled assistant Autoupdate 1712175433 => C:\Users\matia\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\matia\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {86E30675-5CA0-4B7D-A7C7-F749303FDBFD} - System32\Tasks\Opera scheduled Autoupdate 1712175431 => C:\Users\matia\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-04] (Opera Norway AS -> Opera Software)
Task: {2B6CE352-A1A3-4C7B-BD3B-0C6225EC3673} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1716623025-1466615444-594914896-1003 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-05-15] (Microsoft Windows -> Microsoft Corporation)
Task: {6CB4FCA1-CB3E-4C94-A08D-183FE8BDE65C} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904552 2023-08-15] (Lenovo -> )
Task: {9E8CB8CF-1C72-4200-AA4B-0CED6AEE0FF8} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904552 2023-08-15] (Lenovo -> )

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{00f8e82c-565b-41c1-8eba-fc42abdb4540}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}: [DhcpDomain] home
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\14E64627F69646140534644444: [DhcpNameServer] 192.168.18.45
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\2416C646563737162796: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\343414: [DhcpNameServer] 1.1.1.1 8.8.8.8
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\343414: [DhcpDomain] www.nisutarouter.com
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\5676765627D27657563747: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\5676765627D27657563747: [DhcpDomain] local
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\6494242514F534F4F40554251445946514F514832453: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\6494242514F534F4F40554251445946514F514832453: [DhcpDomain] bbrouter
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\6494242514F534F4F40554251445946514F534432344D25374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\6494242514F534F4F40554251445946514F534432344D25374: [DhcpDomain] bbrouter
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\75966496F5449676964716C63747F62756F523E2437484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\75966496F5449676964716C63747F62756F523E2437484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\94E6475627E6564705C65737A5E4A5D4: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\94E6475627E6564705C65737A5E4A5D4: [DhcpDomain] www.tendawifi.com
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\C475D27457563747: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\D425140235562767963696F6370294E646573747279616C65637: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\D425140235562767963696F6370294E646573747279616C65637: [DhcpDomain] local
Tcpip\..\Interfaces\{c9f6ab70-3c4a-4148-b930-4ea2154e2a34}\D4547414341424C454026494242514D223E24374D265930746: [DhcpNameServer] 192.168.100.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN

Edge: 
=======
Edge Profile: C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-12]
Edge HomePage: Default -> hxxps://www.google.com/
Edge StartupUrls: Default -> "hxxp://www.google.com.ar/","hxxp://www.google.com/","hxxp://www.mystartsearch.com/?type=hp&ts=1422383102&from=slbnew&uid=TOSHIBAXMK6475GSX_82T6YP37FXX82T6YP37F"
Edge Session Restore: Default -> está habilitado.
Edge Extension: (Magic Actions for YouTube™) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2024-03-08]
Edge Extension: (MetaMask) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejbalbakoplchlghecdalmeeeajnimhm [2024-03-21]
Edge Extension: (Marcadores en iCloud) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2024-03-08]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-03]
Edge Extension: (Listly - Web Scraping) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfocokadknpfdlnoepicoagndjhdoeno [2024-06-29]
Edge Extension: (Coinbase Wallet extension) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnfanknocfeofbddgcijnmhnfnkdnaad [2024-07-12]
Edge Extension: (MyJDownloader Browser Extension) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ieapabanbplofifeaapjocpaogdhncdd [2024-03-08]
Edge Extension: (Edge relevant text changes) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-08]
Edge Extension: (Privacy Test) - C:\Users\matia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2024-03-08]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2024-05-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1691.6\npCCleanerBrowserUpdate3.dll [2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1691.6\npCCleanerBrowserUpdate3.dll [2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)

Chrome: 
=======
CHR Profile: C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default [2024-07-12]
CHR Notifications: Default -> hxxps://coinmarketcap.com; hxxps://es.tradingview.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Magic Actions for YouTube™) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2024-03-08]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2024-03-08]
CHR Extension: (Marcadores en iCloud) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2024-03-08]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-06]
CHR Extension: (Nautilus Wallet) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjlmehlldlphhljhpnlddaodbjjcchai [2024-07-08]
CHR Extension: (Protección de Internet 360) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2024-03-08]
CHR Extension: (Coinbase Wallet extension) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfanknocfeofbddgcijnmhnfnkdnaad [2024-07-12]
CHR Extension: (Listly - Web Scraping) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihljmnfgkkmoikgkdkjejbkpdpbmcgeh [2024-06-27]
CHR Extension: (Selector de aplicaciones para Drive (de Google)) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-03-08]
CHR Extension: (Vimego - Descargador de videos de Vimeo™) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\mffmjlddchdccijipncbjhoabgmphjfb [2024-06-04]
CHR Extension: (MetaMask) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-06-28]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-08]
CHR Extension: (Privacy Test) - C:\Users\matia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2024-03-08]
CHR HKU\S-1-5-21-1716623025-1466615444-594914896-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]

Opera: 
=======
OPR DefaultProfile: Default

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-12] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13272864 2024-04-15] (Autodesk, Inc. -> Autodesk, Inc.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208688 2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 CCleanerBrowserElevationService1dad1656baa2728; C:\Program Files\CCleaner Browser\Application\126.0.25497.127\elevation_service.exe [1773360 2024-06-25] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208688 2024-07-08] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [1891096 2023-01-16] (DIAL GmbH -> DIAL GmbH)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [44056 2024-06-20] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [292888 2024-06-20] (Intel Corporation -> Intel)
S2 ESRV_SVC_QUEENCREEK; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\. [0 ] () <==== ATENCIÓN [cero bytes? (Error=123)]
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [179208 2016-02-10] (Trace Software International -> )
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [4920184 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [895552 2024-03-25] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [894416 2024-03-25] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [890832 2024-03-25] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-18] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [894928 2024-03-25] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_28aa207d942a526e\LenovoUtilityService.exe [171232 2024-04-08] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe [34256 2024-05-30] (Lenovo -> Lenovo)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8901528 2024-07-03] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-07-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1912472 2023-07-17] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_e4c2d764c82d2d50\Display.NvContainer\NVDisplay.Container.exe [1274888 2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corp -> Mentor Graphics Corporation)
S4 s7oiehsx64; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [139864 2011-06-22] (SIEMENS AG -> SIEMENS AG)
S4 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe [229976 2011-06-22] (SIEMENS AG -> SIEMENS AG)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2022-07-25] (SolidWorks) [Archivo no firmado]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [110800 2023-02-20] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [110800 2023-02-20] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [360664 2022-10-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [17000 2023-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [540416 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S1 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [348384 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360安全中心)
R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2023-03-15] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35344 2022-09-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0391129.inf_amd64_7a819ad751ab7622\B390488\amdkmdag.sys [94634376 2023-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [238304 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Archivo no firmado]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dpmconv; C:\WINDOWS\System32\drivers\dpmconv.sys [259072 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2024-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [221264 2024-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-07-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [234856 2024-07-12] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-07-12] (Malwarebytes Inc. -> Malwarebytes)
R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [373784 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1645104 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [86200 2022-08-18] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [236576 2024-06-02] (NVIDIA Corporation -> NVIDIA Corporation)
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_3037ec512dc36c3a\rt68cx21x64.sys [656328 2023-02-15] (Realtek Semiconductor Corp. -> Realtek)
R3 s7odpx2x64; C:\WINDOWS\System32\drivers\s7odpx2x64.sys [71168 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oppinx64; C:\WINDOWS\System32\drivers\s7oppinx64.sys [107008 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oserix64; C:\WINDOWS\System32\Drivers\s7oserix64.sys [121344 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osmcax64; C:\WINDOWS\System32\drivers\s7osmcax64.sys [195584 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osobux64; C:\WINDOWS\System32\drivers\s7osobux64.sys [152576 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otmcd64x; C:\WINDOWS\System32\Drivers\s7otmcd64x.sys [199680 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otranx64; C:\WINDOWS\System32\drivers\s7otranx64.sys [260096 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otsadx64; C:\WINDOWS\System32\drivers\s7otsadx64.sys [192000 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R2 s7ousbu64x; C:\WINDOWS\System32\drivers\s7ousbu64x.sys [190464 2011-05-06] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R2 s7sn2srtx; C:\WINDOWS\system32\DRIVERS\s7sn2srtx.sys [83032 2011-06-16] (SIEMENS AG -> SIEMENS AG)
R2 SNTIE; C:\WINDOWS\system32\DRIVERS\sntie.sys [179288 2011-05-31] (SIEMENS AG -> SIEMENS AG)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 vsnl2ada; C:\WINDOWS\System32\drivers\vsnl2ada.sys [120832 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498984 2023-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-01] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


1 me gusta
==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-12 20:56 - 2024-07-12 20:57 - 000070512 _____ C:\Users\matia\Desktop\Addition.txt
2024-07-12 20:55 - 2024-07-12 20:58 - 000057381 _____ C:\Users\matia\Desktop\FRST.txt
2024-07-12 20:55 - 2024-07-12 20:57 - 000000000 ____D C:\FRST
2024-07-12 20:53 - 2024-07-12 20:53 - 002395648 _____ (Farbar) C:\Users\matia\Desktop\FRST64.exe
2024-07-12 20:30 - 2024-07-12 20:30 - 000805322 _____ C:\WINDOWS\system32\perfh00A.dat
2024-07-12 20:30 - 2024-07-12 20:30 - 000162522 _____ C:\WINDOWS\system32\perfc00A.dat
2024-07-12 20:22 - 2024-07-12 20:22 - 000234856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2024-07-12 20:22 - 2024-07-12 20:22 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-07-12 20:22 - 2024-07-12 20:22 - 000000282 __RSH C:\ProgramData\ntuser.pol
2024-07-10 20:46 - 2024-07-10 20:46 - 000054821 _____ C:\Users\matia\Downloads\mercadopago_comprobante_82540386082.pdf
2024-07-10 09:25 - 2024-07-10 09:25 - 001654345 _____ C:\Users\matia\Downloads\0262023-IEI-04-REV1.pdf
2024-07-09 15:00 - 2024-07-09 15:00 - 001029415 _____ C:\Users\matia\Downloads\RegSeeker47.zip
2024-07-09 15:00 - 2024-07-09 15:00 - 000000000 ____D C:\Users\matia\Downloads\RegSeeker47
2024-07-09 14:16 - 2024-07-09 12:38 - 000574962 _____ C:\Users\matia\Desktop\Contabilidad  2024  08072024.xlsx
2024-07-08 15:39 - 2024-07-08 15:39 - 000002410 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2024-07-08 15:39 - 2024-07-08 15:39 - 000002375 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2024-07-08 15:37 - 2024-07-08 15:37 - 000003816 _____ C:\WINDOWS\system32\Tasks\CCleanerBrowserProtectS-1-5-21-1716623025-1466615444-594914896-1003
2024-07-08 15:35 - 2024-07-08 15:35 - 084435152 _____ (Piriform Software Ltd) C:\Users\matia\Downloads\ccsetup625 (1).exe
2024-07-08 15:34 - 2024-07-08 15:34 - 000003830 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2024-07-08 15:34 - 2024-07-08 15:34 - 000003246 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2024-07-08 15:34 - 2024-07-08 15:34 - 000000000 ____D C:\Users\matia\AppData\Local\CCleaner Browser
2024-07-08 15:34 - 2024-07-08 15:34 - 000000000 ____D C:\ProgramData\CCleaner Browser
2024-07-08 15:33 - 2024-07-12 16:06 - 000000000 ____D C:\Program Files\CCleaner Browser
2024-07-08 15:32 - 2024-07-12 20:22 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-08 15:32 - 2024-07-08 15:32 - 084435152 _____ (Piriform Software Ltd) C:\Users\matia\Downloads\ccsetup625.exe
2024-07-08 15:32 - 2024-07-08 15:32 - 000003612 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2024-07-08 15:32 - 2024-07-08 15:32 - 000003488 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2024-07-08 15:32 - 2024-07-08 15:32 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-08 15:32 - 2024-07-08 15:32 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-07-08 15:32 - 2024-07-08 15:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2024-07-07 20:22 - 2024-07-05 16:28 - 000574057 _____ C:\Users\matia\Desktop\Contabilidad  2024  05072024.xlsx
2024-07-07 19:24 - 2024-07-07 20:17 - 000030238 _____ C:\Users\matia\Desktop\Frutura 29.06.xlsx
2024-07-05 09:17 - 2024-07-05 09:17 - 000002416 _____ C:\Users\matia\AppData\Roaming\Microsoft\Windows\Start Menu\360 Secure Browser.lnk
2024-07-05 09:17 - 2024-07-05 09:17 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Secure Browser
2024-07-05 09:17 - 2024-07-05 09:17 - 000000000 ____D C:\Users\matia\AppData\Local\360SecureBrowser
2024-07-05 09:16 - 2024-07-05 09:16 - 000000000 ____D C:\Users\matia\Downloads\TS Recommended Apps
2024-07-05 08:31 - 2024-07-05 08:33 - 000013489 _____ C:\DT-kill.txt
2024-07-05 08:30 - 2024-07-05 08:30 - 000000000 ____D C:\_DT-Kill
2024-07-04 21:10 - 2024-07-04 21:10 - 000000000 ____D C:\Users\matia\Downloads\DTKill
2024-07-04 21:09 - 2024-07-04 21:09 - 000425747 _____ C:\Users\matia\Downloads\DTKill.zip
2024-07-04 20:59 - 2024-07-07 19:24 - 000035007 _____ C:\Users\matia\Desktop\Hoja de cálculo del presupuesto mensual personal.xlsx
2024-07-04 20:43 - 2024-07-04 20:43 - 000031090 _____ C:\Users\matia\Downloads\Cálculo del presupuesto mensual personal.xlsx
2024-07-04 19:24 - 2024-07-04 19:24 - 000009322 _____ C:\Users\matia\Downloads\certificado.pdf
2024-07-04 09:02 - 2024-07-04 09:02 - 219567008 _____ (SUPERAntiSpyware) C:\Users\matia\Downloads\SUPERAntiSpyware.exe
2024-07-03 19:12 - 2024-07-03 19:12 - 001546678 _____ C:\Users\matia\Downloads\Paquete sueldo SIMPLE.pdf
2024-07-03 19:09 - 2024-07-03 19:09 - 002793751 _____ C:\Users\matia\Downloads\ALTA PAQUETE MULTIBER INTERNACIONAL - 4359758.pdf
2024-07-03 15:25 - 2024-07-03 15:25 - 002591728 _____ (Malwarebytes) C:\Users\matia\Downloads\MBSetup (1).exe
2024-07-03 10:35 - 2024-07-12 20:57 - 000000000 ____D C:\Users\matia\AppData\Local\Malwarebytes
2024-07-03 10:35 - 2024-07-03 10:35 - 000002100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-07-03 10:34 - 2024-07-03 10:34 - 002591728 _____ (Malwarebytes) C:\Users\matia\Downloads\MBSetup.exe
2024-07-03 10:34 - 2024-07-03 10:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-07-03 10:34 - 2024-07-03 10:34 - 000000000 ____D C:\Program Files\Malwarebytes
2024-07-01 13:13 - 2024-07-01 13:13 - 000028776 _____ C:\Users\matia\Desktop\Copia de Copia_de_hh_frutura_28-6(1)(1)(1).xlsx
2024-07-01 12:34 - 2024-07-01 12:34 - 000028734 _____ C:\Users\matia\Downloads\Resumen de tarjeta de crédito VISA-05-07-2024.pdf
2024-06-29 11:24 - 2024-06-29 11:22 - 000653342 _____ C:\Users\matia\Desktop\2182024-COT-REV1.pdf
2024-06-29 09:18 - 2024-06-29 09:18 - 000000000 ____D C:\Users\matia\Desktop\Nueva carpeta
2024-06-29 09:10 - 2024-06-29 09:10 - 000000279 _____ C:\Users\matia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papelera de reciclaje.lnk
2024-06-29 09:07 - 2024-06-25 13:26 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-06-29 09:07 - 2024-06-25 13:26 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-06-29 09:07 - 2024-06-25 13:26 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-06-29 09:07 - 2024-06-25 13:26 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-06-29 09:07 - 2024-06-25 13:26 - 001445120 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-06-29 09:07 - 2024-06-25 13:26 - 001445120 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-06-29 09:07 - 2024-06-25 13:26 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-06-29 09:07 - 2024-06-25 13:26 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-06-29 09:07 - 2024-06-25 13:26 - 000477816 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-06-29 09:07 - 2024-06-25 13:26 - 000374392 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-06-29 09:07 - 2024-06-25 13:23 - 001068664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-06-29 09:07 - 2024-06-25 13:23 - 000670344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-06-29 09:07 - 2024-06-25 13:23 - 000505992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-06-29 09:07 - 2024-06-25 13:22 - 001549320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-06-29 09:07 - 2024-06-25 13:22 - 001204744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-06-29 09:07 - 2024-06-25 13:22 - 000847880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-06-29 09:07 - 2024-06-25 13:21 - 002180728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-06-29 09:07 - 2024-06-25 13:21 - 001631368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-06-29 09:07 - 2024-06-25 13:21 - 001033352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-06-29 09:07 - 2024-06-25 13:21 - 000795656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-06-29 09:06 - 2024-06-25 13:21 - 000460936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-06-29 09:06 - 2024-06-25 13:20 - 016119432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-06-29 09:06 - 2024-06-25 13:20 - 013009032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-06-29 09:06 - 2024-06-25 13:20 - 006914696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-06-29 09:06 - 2024-06-25 13:20 - 005914144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-06-29 09:06 - 2024-06-25 13:20 - 005867656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-06-29 09:06 - 2024-06-25 13:20 - 003788936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-06-29 09:06 - 2024-06-25 13:19 - 000853536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-06-29 09:06 - 2024-06-25 13:18 - 007061880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-06-29 09:06 - 2024-06-25 13:18 - 006142632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-06-29 09:06 - 2024-06-25 05:54 - 000123973 _____ C:\WINDOWS\system32\nvinfo.pb
2024-06-29 09:03 - 2024-06-29 09:03 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:03 - 2024-06-29 09:03 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:03 - 2024-03-26 16:11 - 000059928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2024-06-29 09:03 - 2024-03-26 14:21 - 000060240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2024-06-25 14:36 - 2024-06-25 14:36 - 000000000 ____D C:\Program Files (x86)\Intel
2024-06-25 11:19 - 2024-06-25 11:19 - 001446901 _____ C:\Users\matia\Downloads\ilovepdf_converted.zip
2024-06-24 16:28 - 2024-06-24 16:29 - 000000000 ____D C:\Users\matia\AppData\Roaming\YouTubeByClick
2024-06-24 16:28 - 2024-06-24 16:28 - 000001141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\By Click Downloader.lnk
2024-06-24 16:28 - 2024-06-24 16:28 - 000000000 ____D C:\Users\matia\AppData\Local\Caphyon
2024-06-24 16:28 - 2024-06-24 16:28 - 000000000 ____D C:\Program Files (x86)\By Click Downloader
2024-06-24 16:26 - 2024-06-24 16:26 - 000000000 ____D C:\Users\matia\Downloads\ICB Argentina -  - IBUR 14 - Clase 11 (Mariano)_ Opciones 1 18_6_24
2024-06-22 09:24 - 2024-06-22 09:24 - 000003628 _____ C:\Users\matia\SayMoney.json
2024-06-21 14:06 - 2024-06-21 14:06 - 000084721 _____ C:\Users\matia\Downloads\Comprobante de transferencia.pdf
2024-06-19 14:19 - 2024-06-19 14:19 - 000022262 _____ C:\Users\matia\Downloads\180560_174862_180560_ORDERSP_4511982672_19062024_RSP_CONTENT_PDF.pdf
2024-06-19 09:38 - 2024-05-23 23:54 - 000048472 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys
2024-06-18 12:29 - 2024-06-18 12:29 - 000000000 ____D C:\Users\matia\AppData\LocalLow\NVIDIA
2024-06-18 12:27 - 2024-06-18 12:28 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-06-18 12:20 - 2024-06-02 00:42 - 000236576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2024-06-18 12:13 - 2024-06-18 12:13 - 000000000 ____D C:\Users\matia\ansel
2024-06-14 08:53 - 2024-06-14 08:53 - 000105554 _____ C:\Users\matia\Downloads\Factura-60387941.pdf
2024-06-12 18:01 - 2024-06-12 18:01 - 034964019 _____ C:\Users\matia\Downloads\Entrevista 008.m4a

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2024-07-12 20:57 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-12 20:36 - 2024-03-08 15:55 - 000000000 ____D C:\Users\matia\AppData\LocalLow\360WD
2024-07-12 20:34 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-12 20:31 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-12 20:30 - 2023-06-06 18:19 - 000000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2024-07-12 20:30 - 2023-01-31 17:54 - 001950170 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-12 20:30 - 2022-05-07 02:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-12 20:25 - 2024-03-08 15:55 - 000000000 ____D C:\Users\matia\AppData\Local\LogMeIn Hamachi
2024-07-12 20:23 - 2024-04-01 11:26 - 000000000 ____D C:\Program Files\CCleaner
2024-07-12 20:23 - 2022-08-07 11:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-07-12 20:22 - 2024-03-08 15:53 - 000000000 ____D C:\Users\matia
2024-07-12 20:22 - 2023-06-06 18:19 - 000000000 _RSHD C:\360SANDBOX
2024-07-12 20:22 - 2023-01-31 17:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-12 20:22 - 2023-01-31 17:51 - 001267088 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-12 20:22 - 2023-01-31 17:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-12 20:22 - 2022-08-03 09:49 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-12 20:22 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-12 20:22 - 2021-11-24 18:54 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-12 20:18 - 2024-03-08 15:53 - 000000000 ___SD C:\Users\matia\AppData\Roaming\Microsoft\Credentials
2024-07-12 14:38 - 2024-01-02 07:51 - 000000000 ____D C:\FilemetaLogs
2024-07-12 14:27 - 2024-03-08 16:12 - 000000000 ____D C:\Users\matia\AppData\Local\CrashDumps
2024-07-12 14:03 - 2024-03-08 16:19 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\Word
2024-07-12 13:33 - 2024-03-09 09:41 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\Excel
2024-07-12 13:13 - 2023-06-07 17:54 - 000000000 __SHD C:\$360Section
2024-07-12 13:13 - 2023-06-06 18:20 - 000000000 ____D C:\ProgramData\360Quarant
2024-07-11 20:17 - 2023-01-31 17:54 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-11 20:17 - 2023-01-31 17:54 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d8a92dfc3fe0a5
2024-07-11 12:33 - 2022-05-07 02:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-10 12:53 - 2024-03-08 15:53 - 000000000 ____D C:\Users\matia\AppData\Local\Packages
2024-07-10 12:02 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-10 09:25 - 2024-03-08 15:53 - 000000000 ____D C:\Users\matia\AppData\Local\D3DSCache
2024-07-10 09:00 - 2024-04-03 17:17 - 000004274 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1712175431
2024-07-10 09:00 - 2024-04-03 17:17 - 000001393 _____ C:\Users\matia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2024-07-09 11:57 - 2024-03-09 20:37 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-07-08 15:32 - 2024-04-01 11:27 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-08 15:32 - 2024-04-01 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-07-08 12:05 - 2023-06-24 08:32 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-08 12:03 - 2023-06-24 08:33 - 000003542 _____ C:\WINDOWS\system32\Tasks\adobe acrobat update task
2024-07-06 17:35 - 2024-03-15 20:11 - 000000000 ____D C:\Users\matia\Desktop\Casa Estancia
2024-07-06 13:06 - 2024-03-08 16:19 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\Plantillas
2024-07-06 12:38 - 2023-06-06 18:19 - 000000000 ____D C:\ProgramData\360safe
2024-07-06 12:38 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-07-06 09:20 - 2024-03-08 16:31 - 000000000 ____D C:\Users\matia\AppData\Local\Microsoft Help
2024-07-05 08:34 - 2022-05-07 02:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-07-04 09:25 - 2024-03-08 15:53 - 000000000 ____D C:\Users\matia\AppData\Local\Google
2024-07-04 08:59 - 2022-08-05 21:46 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-03 19:51 - 2024-04-16 18:31 - 000000000 ____D C:\Users\matia\AppData\Roaming\Zoom
2024-07-03 10:42 - 2023-01-31 16:39 - 000000000 ___DC C:\WINDOWS\Panther
2024-07-03 10:41 - 2024-05-31 16:47 - 000000000 ____D C:\Users\matia\AppData\Roaming\uTorrent Web
2024-07-03 10:41 - 2023-06-07 17:33 - 000000000 ____D C:\ProgramData\KMSAuto
2024-07-03 10:35 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-02 21:12 - 2024-04-23 16:39 - 000000000 ____D C:\Users\matia\AppData\Local\JDownloader 2.0
2024-07-02 08:36 - 2024-03-08 15:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1716623025-1466615444-594914896-1003
2024-07-02 08:36 - 2024-03-08 15:55 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1716623025-1466615444-594914896-1003
2024-07-02 08:36 - 2024-03-08 15:55 - 000002386 _____ C:\Users\matia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-01 15:50 - 2024-03-08 16:19 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\Office
2024-06-29 12:25 - 2024-03-08 15:53 - 000000000 ____D C:\Users\matia\AppData\Local\NVIDIA Corporation
2024-06-29 09:15 - 2024-03-08 16:09 - 000000000 ____D C:\Users\matia\AppData\Local\NVIDIA
2024-06-29 09:04 - 2023-01-31 17:54 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2023-01-31 17:54 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-29 09:04 - 2022-08-03 09:49 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-06-29 09:04 - 2022-08-03 09:49 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-06-29 09:04 - 2022-07-25 23:51 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-06-29 08:19 - 2024-03-09 20:37 - 000001062 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-06-29 08:19 - 2024-03-09 20:37 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-06-29 08:19 - 2024-03-09 20:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-06-29 08:03 - 2024-05-31 16:48 - 000000000 ____D C:\Users\matia\AppData\Local\BitTorrentHelper
2024-06-27 13:40 - 2024-03-14 20:01 - 000003834 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2024-06-26 16:41 - 2024-04-06 10:05 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-06-25 14:36 - 2024-03-14 19:53 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2024-06-25 14:36 - 2022-07-25 23:17 - 000000000 ____D C:\ProgramData\Package Cache
2024-06-24 10:14 - 2024-03-14 10:18 - 000000000 ____D C:\Users\matia\AppData\Roaming\Microsoft\UProof
2024-06-22 09:14 - 2022-07-25 22:56 - 000000000 ____D C:\ProgramData\Packages
2024-06-21 13:54 - 2024-03-08 16:14 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-06-19 09:38 - 2024-03-14 19:54 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-06-19 09:38 - 2024-03-14 19:54 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-06-18 12:59 - 2023-02-13 13:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-06-18 12:59 - 2023-02-13 13:02 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-06-18 12:28 - 2022-08-03 09:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2024-06-14 08:56 - 2024-04-03 17:17 - 000004548 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1712175433
2024-06-12 13:10 - 2024-05-29 09:50 - 000000778 _____ C:\Users\matia\Documents\Algote 2.txt

==================== Archivos en la raíz de algunos directorios ========

2023-06-07 17:55 - 2023-06-07 17:55 - 000000000 _____ () C:\ProgramData\47618797723656808982.exe
2023-06-07 17:55 - 2023-06-07 17:55 - 000000000 _____ () C:\ProgramData\52947612373698178603.exe
2023-06-07 17:54 - 2023-06-07 17:54 - 000000000 _____ () C:\ProgramData\64095122613447686622.exe
2023-06-07 17:57 - 2023-08-10 17:16 - 000000004 _____ () C:\ProgramData\lock.dat
2023-06-07 17:58 - 2023-08-10 17:16 - 000000004 _____ () C:\ProgramData\rc.dat
2023-06-07 17:57 - 2023-06-07 17:57 - 000000008 _____ () C:\ProgramData\ts.dat

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================