Después de un ataque de virus mi windows defender nunca ha vuelto a funcionar.
nota: el virus fue eliminado pero el antivirus no funciona se queda colgado al abrir
Hola @mia155
Vamos revisar que podría estar pasando. Realiza lo siguiente:
Descargue Farbar Service Scanner a su escritorio.
- Ejecute FSS.exe haciendo clic derecho y seleccione “Ejecutar como Administrador.”
- Por defecto está marcada la casilla Internet Services.. Marque todas las demás casillas.
- Pulse en el botón Scan
- Se abrirá un Bloc de notas copie y pegue el contenido en su próxima respuesta.
Esperamos ese reporte.
Saludos
Hola, aqui esta.
Farbar Service Scanner Version: 23-12-2020
Ran by Tirado (administrator) on 24-08-2021 at 19:12:57
Running from "C:\Users\Tirado\Downloads"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Windows Security:
============
SecurityHealthService Service is not running. Checking service configuration:
Checking Start type of SecurityHealthService: ATTENTION!=====> Unable to open SecurityHealthService registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open SecurityHealthService registry key. The service key does not exist.
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type of WinDefend: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Windows Defender Disabled Policy:
==========================
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\Drivers\afd.sys => File is digitally signed
C:\Windows\System32\Drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\SecurityHealthService.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
Hola nuevamente
Ya veo el problema. parece que se han eliminado algunos servicios.
Realiza lo siguiente:
Ejecuta FSS
- En el recuadro blanco escribes tal cual:
*MsMpEng*
- Presiona el botón Search File(s)
- Cuando termine con la búsqueda se guardara un reporte llamado search.txt en la misma ubicación de FSS
- Pegas su contenido en tu próxima respuesta.
Revisa el siguiente manual a detalle y ejecuta FRST:
- No olvides ejecutarlo desde el escritorio.
- Presta especial atención a las instrucciones de como pegar el reporte.
Nos traerías el reporte de FRST: Frst.txt.
Nos traerías:
- El reporte de FSS
- El reporte FRST.txt (puedes omitir el addition)
Saludos
Aqui esta el Frst.txt.
Farbar Service Scanner Version: 23-12-2020
Ran by Tirado (administrator) on 24-08-2021 at 21:55:36
Microsoft Windows 10 Home (X64)
************************************************
======== Search: "*MsMpEng*" =========
C:\Windows\WinSxS\Backup\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7_msmpeng.exe_2f1c6923
[2021-07-01 23:18] - [2021-07-01 23:11] - 0103384 ____N (Microsoft Corporation) CA2DE21D04A42228B707ABCE64EBBC8B
C:\Windows\WinSxS\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\MsMpEng.exe
[2019-12-07 05:08] - [2019-12-07 05:08] - 0103384 ____A (Microsoft Corporation) CA2DE21D04A42228B707ABCE64EBBC8B
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1165.1.8\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\r\msmpeng.exe
[2021-08-19 15:51] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1165.1.8\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\f\msmpeng.exe
[2021-08-19 15:51] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1110.1.15\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\r\msmpeng.exe
[2021-07-23 23:00] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1110.1.15\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\f\msmpeng.exe
[2021-07-23 23:00] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1083.1.1\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\r\msmpeng.exe
[2021-07-07 21:05] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Windows\servicing\LCU\Package_for_RollupFix~31bf3856ad364e35~amd64~~19041.1083.1.1\amd64_windows-defender-service_31bf3856ad364e35_10.0.19041.746_none_a39f6d9ab59bd8b7\f\msmpeng.exe
[2021-07-07 21:05] - [2021-06-10 05:58] - 0000135 ____N () 625D5D84394C346A8A69A93D9F75FA49
C:\Program Files\Windows Defender\MsMpEng.exe
[2019-12-07 05:08] - [2019-12-07 05:08] - 0103384 ____A (Microsoft Corporation) CA2DE21D04A42228B707ABCE64EBBC8B
====== End Of Search ======
No entendí si era un solo reporte o dos?
FRST genera dos reportes. Solo hace falta uno para esto (FRST.txt)
El otro no hace falta pero no pasa nada si lo traes.
Saludos
ahh gracias, ya lo pegué en la otra respuesta.
Buenas,
El reporte que pegaste no es FRST(FRST.txt), es el reporte de FSS (search.txt).
En ese sentido si requeriríamos dos reportes y nos faltaría el otro. Debería estar en el escritorio junto a FRST.
Saludos
Disculpa.
Aqui esta el que faltaba, FRST.TXT
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 21-08-2021
Ejecutado por Tirado (administrador) sobre DESKTOP-K4U02BT (Dell Inc. Inspiron 5570) (24-08-2021 23:34:17)
Ejecutado desde C:\Users\Tirado\Desktop
Perfiles cargados: Tirado
Platform: Windows 10 Home Versión 20H2 19042.1165 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\CEPHtmlEngine\CEPHtmlEngine.exe <3>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\AfterFX.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe) C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\dynamiclinkmanager.exe
(Adobe Inc. -> Adobe) C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\TeamProjectsLocalHub.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avid Technology, Inc. -> ) C:\Program Files\Avid\Avid Link\nginx\AvidAppManHelper.exe <2>
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Avid Link\Avid Link.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Avid Media Composer\AvidBackgroundServicesManager.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe <2>
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe <2>
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe <2>
(Avid Technology, Inc. -> The Qt Company Ltd.) C:\Program Files\Avid\Avid Link\QtWebEngineProcess.exe <7>
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Farbar) [Archivo no firmado] C:\Users\Tirado\Desktop\FSS.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <39>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d023eec6358b3ae0\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d023eec6358b3ae0\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_38ead153fbd01418\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1fac62ebeda54cee\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1fac62ebeda54cee\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe <3>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SafeNet Canada, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(Suotta Limited -> Suotta Limited) C:\Users\Tirado\AppData\Local\Programs\Megacursos\Megacursos.exe <8>
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(win.rar GmbH -> Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1235160 2019-09-26] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-08-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-22] (Adobe Inc. -> )
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2196344 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [utweb] => C:\Users\Tirado\AppData\Roaming\uTorrent Web\utweb.exe [5898272 2021-07-26] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [uTorrent] => C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe [2151976 2021-08-21] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [btweb] => C:\Users\Tirado\AppData\Roaming\BitTorrent Web\btweb.exe [5885472 2021-04-19] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tirado\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4079824 2021-07-07] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [886768 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [ut] => C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe [2151976 2021-08-21] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65096 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-17] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2021-08-21]
ShortcutTarget: Avid Application Manager.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Background Services Manager.lnk [2021-08-21]
ShortcutTarget: Avid Background Services Manager.lnk -> C:\Windows\Installer\{93F854EA-DC70-4E33-96B3-BEB62B378BB6}\NewShortcut1_4CE83F107C544E87A6F35E0E551E78CA.exe (Avid Technology, Inc. -> Flexera)
Startup: C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2021-08-18]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {19CDC807-55F7-450E-A5B1-51B80685CC1A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\OneDrive Per-Machine Standalone Update Task" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1620425354" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1620425341" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {44365E31-1FD6-4B0F-8E6F-4DA3A6E2E3C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {45E52DB4-B140-4F8D-B8C8-2CD9304326D4} - System32\Tasks\Opera scheduled Autoupdate 1620425341 => C:\Users\Tirado\AppData\Local\Programs\Opera\launcher.exe
Task: {4EDEA218-7EA2-4CBB-B4F5-CA85B372F668} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {51034CAF-0770-41E0-A3DF-5CEB9DEC81E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {59BBD0DC-9983-4A26-9641-6CA48CBC9CAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-07] (Google LLC -> Google LLC)
Task: {5A468300-48EF-4F36-8BAD-FA6F1FB3DCCF} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-08-07] (Dell Inc -> Dell Inc.)
Task: {624BCDD1-300D-4D48-975B-837D4C24D03B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {65939936-8839-49D0-AD22-7A3D604BCD4C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {77E5303A-C6EC-4A6D-BC83-038B21513ED8} - System32\Tasks\Opera scheduled assistant Autoupdate 1620425354 => C:\Users\Tirado\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tirado\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {78866B2F-0856-4646-B3E8-380A32F942F3} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7F5FC704-5922-4404-B206-559D8BD049B9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {885FD6B7-018C-48C5-BD1E-4DB3E3935AE5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {91A47E40-F28C-4B2B-8B4C-E92DEEC35FE8} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {9C685636-D8F0-45C7-B97B-4ABE35C4E5F8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989424 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DE50C02-0DA2-4027-A447-A2D89CF0D3DD} - System32\Tasks\ioloAVDefsDownloader => C:\Program Files\Norton Utilities Premium\SSDefs.exe
Task: {A9A2261B-757C-41B9-8DB1-1A2A39E52695} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD1BF219-9B4F-4CD6-965F-538CE89E4472} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {C33D621B-4256-453B-A62F-7A4EE8FF704E} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {C715D4D6-B77E-4EAD-A89B-6C980BD32CAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-07] (Google LLC -> Google LLC)
Task: {C73370B6-4D73-45EB-AA8A-ED679BBC385C} - System32\Tasks\ioloSystemShield => C:\Program Files\Norton Utilities Premium\ioloSSTray.exe
Task: {C97015F3-E404-4F25-952D-E1E4705125E1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {C9A27B95-8B06-40D6-88D4-11F5380D44F6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{5578d9d3-16b1-4e0f-95c9-46a65a697a58}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{7b1535d6-4a9f-47ee-8d1a-c19bd020c06a}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{f2c63a28-7f1a-4c39-b456-46a1cc557829}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\Tirado\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-24]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Tirado\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-17]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-27]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Ningún archivo]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default [2021-08-24]
CHR Notifications: Default -> hxxps://app.edutin.com; hxxps://forospyware.com; hxxps://meet.google.com; hxxps://seriesretro.com
CHR Extension: (Presentaciones) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-07]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-07-01]
CHR Extension: (Documentos) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-07]
CHR Extension: (Google Drive) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-07]
CHR Extension: (YouTube) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-07]
CHR Extension: (Hojas de cálculo) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-27]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-08-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-17]
CHR Extension: (uTorrent Link Sender) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\jakpnimgfpjlkigbndhbfhhamkdfokpb [2021-06-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-07]
CHR Extension: (Gmail) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-25]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-24]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-08-23]
CHR Extension: (Presentaciones) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-19]
CHR Extension: (Documentos) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-19]
CHR Extension: (Google Drive) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-19]
CHR Extension: (YouTube) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-19]
CHR Extension: (Adobe Acrobat) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-19]
CHR Extension: (Hojas de cálculo) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-19]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-19]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-19]
CHR Extension: (Gmail) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-19]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable [2021-08-23]
OPR Extension: (Rich Hints Agent) - C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-05-07]
OPR Extension: (Safe Torrent Scanner) - C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabaecgmgbeapjghcfhohnbljcocknl [2021-05-07]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-08-05] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 Avid DMF Service; C:\Program Files\Avid\Editor Transcode\Dynamic Media Files\DMFService.exe [818504 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Broker; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe [299456 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Db Engine; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe [298960 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
S3 Avid Editor Transcode Service; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorTranscode.exe [664016 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Transcode Status; C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe [299480 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2019-08-30] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2019-08-30] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [426528 2021-07-13] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3834400 2021-07-13] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [452640 2021-07-13] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1020584 2021-07-05] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-05-27] (Dell Inc -> )
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\FileSyncHelper.exe [2382200 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-17] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\OneDriveUpdaterService.exe [2739576 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [405136 2016-12-16] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1261200 2016-12-14] (SafeNet Canada, Inc. -> SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-08-07] (Dell Inc -> Dell Inc.)
S3 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\elevation_service.exe" [X]
S2 AvastWscReporter; "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AndDiag; C:\WINDOWS\System32\drivers\lganddiag64.sys [27648 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [117472 2020-10-12] (Tenorshare Co.,Ltd. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-08-18] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-18] (Malwarebytes Inc -> Malwarebytes)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [52960 2020-10-12] (Tenorshare Co.,Ltd. -> QUALCOMM Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-08-24 23:34 - 2021-08-24 23:36 - 000033767 _____ C:\Users\Tirado\Desktop\FRST.txt
2021-08-24 23:33 - 2021-08-24 23:35 - 000000000 ____D C:\FRST
2021-08-24 23:32 - 2021-08-24 23:32 - 002300928 _____ (Farbar) C:\Users\Tirado\Desktop\FRST64.exe
2021-08-24 23:27 - 2021-08-24 23:29 - 000002587 _____ C:\Users\Tirado\Desktop\FSS.txt
2021-08-24 21:45 - 2021-08-24 21:45 - 016753226 _____ C:\Users\Tirado\Downloads\Archivos Proyecto.zip
2021-08-24 19:12 - 2021-08-24 21:56 - 000002587 _____ C:\Users\Tirado\Downloads\FSS.txt
2021-08-24 19:12 - 2021-08-24 19:12 - 000909824 _____ (Farbar) C:\Users\Tirado\Desktop\FSS.exe
2021-08-23 16:36 - 2021-08-23 16:36 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-08-23 04:39 - 2021-08-23 04:39 - 000000000 ____D C:\Users\Tirado\Desktop\Tweaking.com - Windows Repair
2021-08-23 04:39 - 2021-08-12 15:22 - 007341216 _____ (Tweaking.com) C:\Users\Tirado\Desktop\Repair_Windows.exe
2021-08-23 04:27 - 2021-08-23 04:27 - 048177891 _____ C:\Users\Tirado\Downloads\tweaking.com_windows_repair_aio.zip
2021-08-22 03:40 - 2021-08-22 03:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon
2021-08-22 03:39 - 2021-08-22 03:41 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R22
2021-08-22 03:38 - 2021-08-22 03:38 - 000001250 _____ C:\Users\Tirado\Desktop\Adobe After Effects 2021.lnk
2021-08-22 03:19 - 2021-08-24 22:12 - 000004220 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{2F4E5A1C-8A11-48DF-9C97-BB80AE2A1532}
2021-08-22 02:22 - 2021-08-22 02:26 - 000000000 ____D C:\Users\Tirado\Downloads\Adobe After Effects 2021 18.0.0.39
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\Documents\MC First Avid Projects
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\Documents\Avid Projects
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\AppData\Local\AvidMediaComposer
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Public\Documents\Avid SearchData
2021-08-21 05:45 - 2021-08-21 05:45 - 000000000 ____D C:\Users\Public\Documents\Shared LUTs
2021-08-21 05:11 - 2021-08-21 05:11 - 000002747 _____ C:\Users\Public\Desktop\Avid Media Composer.lnk
2021-08-21 05:11 - 2021-08-21 05:11 - 000000000 ____D C:\WINDOWS\system32\.exe
2021-08-21 05:00 - 2021-08-23 17:30 - 000000000 ____D C:\Users\Public\Documents\Avid Media Composer
2021-08-21 05:00 - 2021-08-21 05:43 - 000000000 ____D C:\Users\Public\Documents\AVX Plug-Ins Data
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\MEDIA
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\Users\Public\Documents\Transcode Service Worker
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\Users\Public\Documents\Shared Avid Projects
2021-08-21 04:32 - 2021-08-21 04:32 - 000000000 ____D C:\ProgramData\PACE
2021-08-21 04:16 - 2021-08-21 05:43 - 000000000 ____D C:\Users\Tirado\AppData\Local\Avid
2021-08-21 04:14 - 2021-08-21 04:16 - 000000000 ___HD C:\AvidDownloads
2021-08-21 04:13 - 2021-08-22 02:56 - 000000000 ____D C:\ProgramData\Avid
2021-08-21 04:13 - 2021-08-21 04:13 - 000000000 ____D C:\Users\Tirado\AppData\Local\Downloaded Installations
2021-08-21 04:08 - 2021-08-21 04:08 - 000002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2021-08-21 04:08 - 2021-08-21 04:08 - 000002074 _____ C:\Users\Public\Desktop\iLok License Manager.lnk
2021-08-21 04:08 - 2021-08-21 04:08 - 000000000 ____D C:\Program Files (x86)\iLok License Manager
2021-08-21 04:07 - 2021-08-21 04:07 - 000000000 ____D C:\ProgramData\Apple
2021-08-21 04:06 - 2021-08-21 04:06 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2021-08-21 04:06 - 2021-08-21 04:06 - 000000000 ____D C:\Program Files (x86)\SafeNet Sentinel
2021-08-21 04:05 - 2021-08-21 04:05 - 000000000 ____D C:\Users\Tirado\Documents\Downloaded Installations
2021-08-21 03:59 - 2021-08-21 03:59 - 000000000 ____D C:\Users\Tirado\Downloads\MediaComposer
2021-08-21 03:59 - 2021-06-13 22:55 - 002046592 ____N (Avid Technology, Inc.) C:\Users\Tirado\Downloads\Install Media Composer.exe
2021-08-21 03:33 - 2021-08-21 03:54 - 2762531406 _____ C:\Users\Tirado\Downloads\Media_Composer_21.6.0_Win.zip
2021-08-21 02:51 - 2021-08-23 16:21 - 000000000 ____D C:\Users\Tirado\AppData\LocalLow\uTorrent
2021-08-20 02:22 - 2021-08-20 02:22 - 000001765 _____ C:\Users\Public\Desktop\Defraggler.lnk
2021-08-20 02:22 - 2021-08-20 02:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2021-08-20 02:22 - 2021-08-20 02:22 - 000000000 ____D C:\Program Files\Defraggler
2021-08-20 02:21 - 2021-08-20 02:21 - 007466056 _____ (Piriform Software Ltd) C:\Users\Tirado\Downloads\dfsetup222.exe
2021-08-19 23:37 - 2021-08-19 23:37 - 000000000 ____D C:\Program Files (x86)\Intel
2021-08-19 23:36 - 2021-08-19 23:36 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-08-19 23:22 - 2021-08-19 23:22 - 000000000 ____D C:\Program Files\Intel
2021-08-19 23:18 - 2021-08-19 23:18 - 000000000 ____D C:\Users\Tirado\Intel
2021-08-19 23:06 - 2021-08-19 23:06 - 000000000 ____D C:\ProgramData\PCDr
2021-08-19 23:02 - 2021-08-19 23:02 - 000003914 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2021-08-19 23:02 - 2021-08-19 23:02 - 000000000 ____D C:\ProgramData\Dell Inc
2021-08-19 23:01 - 2021-08-19 23:17 - 000000000 ____D C:\ProgramData\Dell
2021-08-19 23:01 - 2021-08-19 23:03 - 000000000 ____D C:\Program Files\Dell
2021-08-19 23:01 - 2021-08-19 23:01 - 000000000 ____D C:\Program Files (x86)\Dell
2021-08-19 23:00 - 2021-08-19 23:00 - 000000000 ____D C:\ProgramData\SupportAssist
2021-08-19 22:52 - 2021-08-19 22:52 - 000022846 _____ C:\Users\Tirado\Documents\cc_20210819_225215.reg
2021-08-19 22:19 - 2021-08-19 22:19 - 000000000 ____D C:\Users\Tirado\AppData\Local\ElevatedDiagnostics
2021-08-19 21:12 - 2021-08-19 21:14 - 000001378 _____ C:\Users\Tirado\Desktop\Rkill.txt
2021-08-19 21:12 - 2021-08-19 21:12 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Tirado\Downloads\rkill.exe
2021-08-19 20:27 - 2021-08-19 20:34 - 000000975 _____ C:\Users\Tirado\Desktop\kprm-20210819202707.txt
2021-08-19 20:27 - 2021-08-19 20:27 - 000000000 ____D C:\KPRM
2021-08-19 20:25 - 2021-08-19 20:25 - 002811112 _____ (kernel-panik) C:\Users\Tirado\Downloads\kprm_2.9.2 (1).exe
2021-08-19 20:23 - 2021-08-19 20:23 - 016753226 _____ C:\Users\Tirado\Downloads\Archivos Proyecto.zip 1era clase after effects
2021-08-19 20:15 - 2021-08-24 22:31 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Megacursos
2021-08-19 20:15 - 2021-08-19 20:15 - 000002347 _____ C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Megacursos.lnk
2021-08-19 20:15 - 2021-08-19 20:15 - 000002339 _____ C:\Users\Tirado\Desktop\Megacursos.lnk
2021-08-19 20:15 - 2021-08-19 20:15 - 000000000 ____D C:\Users\Tirado\AppData\Local\megacursos-updater
2021-08-19 20:12 - 2021-08-19 20:14 - 047891799 _____ C:\Users\Tirado\Downloads\MegacursosPlayer (Windows) FullHD Installer.zip
2021-08-19 17:17 - 2021-08-19 17:39 - 2583472654 _____ C:\Users\Tirado\Downloads\DaVinci_Resolve_17.2.2_Windows.zip
2021-08-19 16:40 - 2021-08-19 16:40 - 000012099 _____ C:\Users\Tirado\Downloads\gardenfreude.zip
2021-08-19 16:39 - 2021-08-19 16:39 - 000022565 _____ C:\Users\Tirado\Downloads\solid_3d.zip
2021-08-19 16:32 - 2021-08-19 16:32 - 000006916 _____ C:\Users\Tirado\Downloads\illegal_curves.zip
2021-08-19 16:30 - 2021-08-19 16:30 - 000023159 _____ C:\Users\Tirado\Downloads\baise.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 004035299 _____ C:\Users\Tirado\Downloads\arturo.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000916615 _____ C:\Users\Tirado\Downloads\black_brutal.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000087440 _____ C:\Users\Tirado\Downloads\j_m_nexus_grotesque.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000030947 _____ C:\Users\Tirado\Downloads\ostrich_sans.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000018606 _____ C:\Users\Tirado\Downloads\comfort.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000010264 _____ C:\Users\Tirado\Downloads\ponymaker.zip
2021-08-19 16:23 - 2021-08-19 16:23 - 000024347 _____ C:\Users\Tirado\Downloads\franchise_2.zip
2021-08-19 16:23 - 2021-08-19 16:23 - 000013494 _____ C:\Users\Tirado\Downloads\neon_led_light.zip
2021-08-19 02:42 - 2021-08-19 02:42 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-08-19 01:13 - 2021-08-19 01:13 - 000016148 _____ C:\Users\Tirado\Downloads\Lista egresados Chavón.xlsx
2021-08-18 21:58 - 2021-08-18 21:59 - 000000000 ____D C:\WINDOWS\pss
2021-08-18 19:12 - 2021-08-18 19:12 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-18 19:11 - 2021-08-18 19:11 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-18 19:11 - 2021-08-18 19:11 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-18 19:11 - 2021-08-18 19:11 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-18 19:10 - 2021-08-18 19:10 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-18 19:10 - 2021-08-18 19:10 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-18 19:09 - 2021-08-18 19:09 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-18 18:50 - 2021-08-18 18:50 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-DESKTOP-K4U02BT-Windows-10-Home-(64-bit).dat
2021-08-18 18:49 - 2021-08-18 18:49 - 000000000 ____D C:\RegBackup
2021-08-18 18:48 - 2021-08-18 18:48 - 000002308 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2021-08-18 18:48 - 2021-08-18 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2021-08-18 18:48 - 2021-08-18 18:48 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2021-08-18 18:39 - 2021-08-18 18:39 - 000000000 ____D C:\Users\Mia\AppData\Local\Adobe
2021-08-18 18:31 - 2021-08-18 18:31 - 000000000 ____D C:\Users\Mia\AppData\Local\Comms
2021-08-18 18:19 - 2021-08-18 18:20 - 000000000 ____D C:\Users\Mia\AppData\Local\CrashDumps
2021-08-18 18:18 - 2021-08-18 18:18 - 000000000 ____D C:\Users\Mia\AppData\Local\Publishers
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\VirtualStore
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\D3DSCache
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\AVAST Software
2021-08-18 18:16 - 2021-08-18 18:41 - 000000000 ____D C:\Users\Mia\AppData\Local\Packages
2021-08-18 18:16 - 2021-08-18 18:39 - 000000000 ____D C:\Users\Mia\AppData\Roaming\Adobe
2021-08-18 18:16 - 2021-08-18 18:28 - 000000000 __SHD C:\Users\Mia\IntelGraphicsProfiles
2021-08-18 18:16 - 2021-08-18 18:19 - 000000000 ____D C:\Users\Mia
2021-08-18 18:16 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\ConnectedDevicesPlatform
2021-08-18 18:16 - 2021-08-18 18:16 - 000000020 ___SH C:\Users\Mia\ntuser.ini
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Reciente
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Plantillas
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Mis documentos
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Menú Inicio
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Impresoras
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Entorno de red
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mis vídeos
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mis imágenes
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mi música
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Datos de programa
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Configuración local
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Historial
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Datos de programa
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Archivos temporales de Internet
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 ____D C:\Users\Mia\AppData\LocalLow\Intel
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 ____D C:\Users\Mia\AppData\Local\Google
2021-08-18 18:16 - 2021-08-07 02:31 - 000000000 ___RD C:\Users\Mia\OneDrive
2021-08-18 18:03 - 2021-08-18 18:03 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-18 18:02 - 2021-08-18 18:02 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-08-18 17:40 - 2021-08-18 17:41 - 007333288 _____ (Tweaking.com) C:\Users\Tirado\Downloads\tweaking.com_registry_backup_setup.exe
2021-08-17 23:23 - 2021-08-18 00:03 - 1509808241 _____ C:\Users\Tirado\Downloads\The.Departed.2006.lati.mp4
2021-08-17 23:19 - 2021-08-18 02:37 - 2053006465 _____ C:\Users\Tirado\Downloads\Goodfellas.1990.lati.mp4
2021-08-17 22:45 - 2021-08-18 00:16 - 1859304310 _____ C:\Users\Tirado\Downloads\Casino.1995.lati.mp4
2021-08-17 20:24 - 2021-08-17 20:24 - 000000552 _____ C:\Users\Tirado\Documents\cc_20210817_202404.reg
2021-08-17 20:21 - 2021-08-17 20:21 - 000002702 _____ C:\Users\Tirado\Documents\cc_20210817_202133.reg
2021-08-17 20:20 - 2021-08-17 20:20 - 000049844 _____ C:\Users\Tirado\Documents\cc_20210817_202021.reg
2021-08-17 19:59 - 2021-08-24 19:59 - 000000000 ____D C:\Program Files\CCleaner
2021-08-17 19:59 - 2021-08-17 19:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-08-17 19:59 - 2021-08-17 19:59 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-08-17 19:59 - 2021-08-17 19:59 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-08-17 19:59 - 2021-08-17 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-08-17 19:23 - 2021-08-17 19:23 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-17 19:23 - 2021-08-17 19:23 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-17 19:22 - 2021-08-18 18:11 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-17 19:22 - 2021-08-17 19:21 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-17 19:22 - 2021-08-17 19:21 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-17 19:20 - 2021-08-17 19:20 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-10 17:22 - 2021-08-10 17:22 - 000738411 _____ C:\Users\Tirado\Desktop\reel prueba 2.mp4
2021-08-10 17:09 - 2021-08-10 17:09 - 001829515 _____ C:\Users\Tirado\Desktop\reel prueba 1.mp4
2021-08-06 18:54 - 2021-08-06 18:54 - 000065908 _____ C:\Users\Tirado\Downloads\Mia Bella Romero CV (1).pdf
2021-08-06 18:12 - 2021-08-06 18:12 - 082496826 _____ C:\Users\Tirado\Desktop\Mia Romero-Editor demo reel .mp4
2021-08-06 18:06 - 2021-08-06 18:06 - 000212548 _____ C:\Users\Tirado\Desktop\reel Mia_work in progress Copy.prproj
2021-08-06 18:06 - 2021-08-06 18:06 - 000212546 _____ C:\Users\Tirado\Desktop\reel Mia_1 Copy.prproj
2021-08-05 22:06 - 2021-08-05 22:06 - 082510454 _____ C:\Users\Tirado\Desktop\Mia Romero- Editor demo reel.mp4
2021-08-05 21:58 - 2021-08-19 20:26 - 000213210 _____ C:\Users\Tirado\Desktop\reel Mia_1.prproj
2021-08-05 21:58 - 2021-08-19 20:26 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Auto-Save
2021-08-05 20:12 - 2021-08-05 20:12 - 000659594 _____ C:\Users\Tirado\Downloads\MIA.mov
2021-08-05 18:23 - 2021-08-05 18:23 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-08-05 17:59 - 2021-08-10 16:59 - 000001299 _____ C:\Users\Tirado\Desktop\Adobe Premiere Pro 2020.lnk
2021-08-05 17:59 - 2021-08-05 17:59 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2021-08-05 17:08 - 2021-08-05 17:08 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2019.lnk
2021-08-05 17:06 - 2021-08-05 17:06 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2021-08-05 16:59 - 2021-08-05 17:22 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-08-05 16:59 - 2021-08-05 17:22 - 000001352 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2021-08-05 16:28 - 2021-08-05 16:28 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk
2021-08-05 16:26 - 2021-08-05 16:23 - 005887488 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\DataExchangeHost.exe
2021-08-05 16:25 - 2021-08-05 16:24 - 001035776 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\LaunchTM.exe
2021-08-05 16:23 - 2021-08-17 19:49 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Cached files
2021-08-05 16:20 - 2021-08-05 16:20 - 000000000 ____D C:\Program Files (x86)\Adobe]
2021-08-05 03:04 - 2021-08-20 00:44 - 000000000 ____D C:\Users\Tirado\Desktop\Icarly
2021-08-05 03:03 - 2021-08-05 03:11 - 000000000 ____D C:\Users\Tirado\Desktop\Gossip girl
2021-08-05 03:02 - 2021-08-05 04:27 - 1752671305 _____ C:\Users\Tirado\Downloads\iCarly.2021.S01E05.HDR.2160p.WEB.H265-GGWP.mkv
2021-08-05 00:54 - 2021-08-17 22:22 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-08-05 00:53 - 2021-08-24 22:42 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-03 18:54 - 2021-08-03 18:54 - 000065908 _____ C:\Users\Tirado\Downloads\Mia Bella Romero CV .pdf
2021-08-02 20:20 - 2021-08-02 20:20 - 000066430 _____ C:\Users\Tirado\Downloads\CV Mia Bella Romero.pdf
2021-08-02 18:29 - 2021-08-02 18:29 - 000104135 _____ C:\Users\Tirado\Downloads\tarifa primavera 2021.pdf
2021-08-02 18:10 - 2021-08-05 00:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-08-02 18:08 - 2021-08-02 18:08 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-08-02 18:08 - 2021-08-02 18:08 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2021-08-02 18:08 - 2021-08-02 18:08 - 000002091 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-08-02 17:44 - 2021-08-02 17:47 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Acrobat XI
2021-08-02 17:06 - 2021-08-02 18:17 - 000056077 _____ C:\Users\Tirado\Downloads\Screen Shot 2020-08-04 at 10.51.23 AM.pdf
2021-07-30 15:22 - 2021-07-30 15:22 - 000071069 _____ C:\Users\Tirado\Downloads\Azul Minimalista Infografía Currículum.pdf
2021-07-30 03:03 - 2021-07-30 03:03 - 000000000 _____ C:\WINDOWS\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2021-07-29 23:14 - 2021-07-29 23:14 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2021-07-29 23:14 - 2021-07-29 23:14 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-07-29 01:32 - 2021-07-29 01:32 - 000000000 ____D C:\SUPERDelete
2021-07-28 19:52 - 2021-07-30 03:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2021-07-28 19:52 - 2021-07-28 19:52 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2021-07-28 19:15 - 2021-07-28 19:26 - 000000000 ____D C:\Users\Tirado\AppData\Local\NPE
2021-07-28 19:05 - 2021-07-28 19:40 - 000000000 ____D C:\ProgramData\NortonInstaller
2021-07-28 18:55 - 2021-07-28 18:55 - 000004060 _____ C:\WINDOWS\system32\Tasks\ioloAVDefsDownloader
2021-07-28 18:55 - 2021-07-28 18:55 - 000003478 _____ C:\WINDOWS\system32\Tasks\ioloSystemShield
2021-07-28 18:51 - 2021-08-17 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NortonLifeLock
2021-07-28 18:51 - 2021-07-28 18:55 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Norton
2021-07-28 18:51 - 2021-07-28 18:51 - 000000000 ____D C:\Program Files\Common Files\Norton
2021-07-28 18:50 - 2021-08-17 19:11 - 000000000 ____D C:\ProgramData\Norton
2021-07-28 18:37 - 2021-07-28 18:43 - 000002162 _____ C:\WINDOWS\epplauncher.mif
2021-07-28 02:24 - 2021-07-28 02:24 - 000000000 ____D C:\Users\Tirado\Downloads\One.Day.at.Disney.2019.1080p.WEB.h264-WALT[TGx]
2021-07-26 18:20 - 2021-07-26 18:20 - 000188336 _____ C:\Users\Tirado\Downloads\Caja Chica.pdf
2021-07-26 18:15 - 2021-07-26 18:15 - 000188336 _____ C:\Users\Tirado\Downloads\Inversion ciclo 7 Vanessa Garcia_organized (1).pdf
2021-07-26 18:14 - 2021-07-26 18:14 - 000446681 _____ C:\Users\Tirado\Downloads\Inversion ciclo 7 Vanessa Garcia_organized.pdf
2021-07-26 16:59 - 2021-07-26 16:59 - 000633800 _____ C:\Users\Tirado\Downloads\Inversion ciclo 7 Vanessa Garcia.pdf
2021-07-26 16:56 - 2021-07-26 16:56 - 002144204 _____ C:\Users\Tirado\Downloads\OneDrive-2021-07-26 (2).zip
2021-07-26 16:33 - 2021-07-26 16:33 - 002295609 _____ C:\Users\Tirado\Downloads\Viaticos Ciclo 7 Vanessa Garcia.pdf
2021-07-26 16:33 - 2021-07-26 16:33 - 002295609 _____ C:\Users\Tirado\Downloads\organized.pdf
2021-07-26 16:30 - 2021-07-26 16:32 - 002295609 _____ C:\Users\Tirado\Downloads\PDF Viaticos ciclo7 Vanessa Garcia
2021-07-26 16:25 - 2021-07-26 16:25 - 000112605 _____ C:\Users\Tirado\Downloads\Image (4)_2.pdf
2021-07-26 16:17 - 2021-07-26 16:17 - 000263645 _____ C:\Users\Tirado\Downloads\Image (4) (1).pdf
2021-07-26 16:16 - 2021-07-26 16:16 - 001124518 _____ C:\Users\Tirado\Downloads\OneDrive-2021-07-26 (1).zip
2021-07-26 16:13 - 2021-07-26 16:13 - 000152253 _____ C:\Users\Tirado\Downloads\Image (2)_2.pdf
2021-07-26 16:06 - 2021-07-26 16:06 - 002012542 _____ C:\Users\Tirado\Downloads\Image (1).pdf
2021-07-26 16:01 - 2021-07-26 16:01 - 008144824 _____ C:\Users\Tirado\Downloads\OneDrive-2021-07-26.zip
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-08-24 22:46 - 2020-09-27 08:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-24 22:38 - 2021-05-07 18:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-24 22:28 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-24 18:28 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-24 16:58 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-24 16:22 - 2021-06-27 23:08 - 001677940 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-24 16:22 - 2019-12-07 11:03 - 000749562 _____ C:\WINDOWS\system32\perfh00A.dat
2021-08-24 16:22 - 2019-12-07 11:03 - 000145368 _____ C:\WINDOWS\system32\perfc00A.dat
2021-08-24 16:22 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-24 16:14 - 2020-04-22 11:19 - 000000000 __SHD C:\Users\Tirado\IntelGraphicsProfiles
2021-08-24 16:13 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-24 16:13 - 2020-09-19 07:01 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-24 16:13 - 2020-04-22 11:19 - 000000000 ____D C:\Intel
2021-08-24 16:13 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-08-24 16:10 - 2019-12-07 05:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-24 02:55 - 2021-05-13 20:06 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-08-24 01:44 - 2021-06-27 21:09 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\uTorrent
2021-08-23 19:54 - 2021-05-07 18:24 - 000000000 ____D C:\Users\Tirado\AppData\Local\BitTorrentHelper
2021-08-23 03:55 - 2021-05-13 22:10 - 000000000 ____D C:\Users\Tirado\AppData\Local\CrashDumps
2021-08-23 03:10 - 2021-06-27 23:18 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-08-23 03:10 - 2021-05-13 20:06 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-22 03:57 - 2020-11-04 15:08 - 000000000 ____D C:\Users\Tirado\Desktop\vane cumple
2021-08-22 03:45 - 2021-05-07 18:53 - 000000000 ____D C:\Users\Tirado\AppData\Local\D3DSCache
2021-08-22 03:45 - 2021-05-07 18:40 - 000000000 ____D C:\Users\Tirado\AppData\Local\Adobe
2021-08-22 03:45 - 2021-05-07 15:33 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Adobe
2021-08-22 03:45 - 2020-04-22 17:56 - 000000000 ____D C:\Users\Tirado\Documents\Adobe
2021-08-22 03:41 - 2021-05-07 18:53 - 000000000 ____D C:\Program Files\Adobe
2021-08-22 03:38 - 2021-05-07 18:56 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-08-22 03:38 - 2020-04-22 17:55 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-08-22 03:35 - 2021-05-07 18:40 - 000000000 ____D C:\ProgramData\Adobe
2021-08-22 03:32 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-22 03:32 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-22 03:25 - 2021-05-07 18:48 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-08-22 02:56 - 2021-06-30 23:12 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Avid
2021-08-22 00:29 - 2021-06-27 22:55 - 000000000 ____D C:\Users\Tirado
2021-08-22 00:19 - 2020-09-27 08:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-22 00:19 - 2020-09-27 08:53 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-21 05:49 - 2021-06-30 23:12 - 000000000 ____D C:\Program Files\Avid
2021-08-21 05:49 - 2020-11-19 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid
2021-08-21 05:21 - 2020-09-27 08:50 - 000465656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-21 05:00 - 2021-06-30 23:12 - 000000000 ____D C:\Program Files\Common Files\Avid
2021-08-21 04:13 - 2021-05-07 15:53 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-21 04:09 - 2021-07-01 00:13 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2021-08-21 04:08 - 2019-04-11 21:02 - 000033544 _____ C:\WINDOWS\system32\Drivers\iLokDrvr.sys
2021-08-21 04:07 - 2021-07-01 00:11 - 000000000 ____D C:\Program Files\Bonjour
2021-08-21 04:07 - 2021-07-01 00:11 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-08-20 15:53 - 2021-05-07 15:33 - 000000000 ____D C:\Users\Tirado\AppData\Local\Packages
2021-08-20 15:53 - 2020-09-27 08:54 - 000000000 ____D C:\ProgramData\Packages
2021-08-20 01:47 - 2021-02-11 15:35 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Audio Previews
2021-08-20 01:47 - 2020-11-12 17:15 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Video Previews
2021-08-20 00:46 - 2021-07-10 04:49 - 000000000 ____D C:\Users\Tirado\Downloads\peliculas
2021-08-20 00:43 - 2021-06-25 23:53 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\vlc
2021-08-19 23:06 - 2020-12-13 00:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2021-08-19 22:19 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-08-19 21:48 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-19 02:11 - 2021-06-30 18:42 - 000002390 _____ C:\Users\Tirado\Desktop\Mia Bella (mia) - Chrome.lnk
2021-08-19 01:17 - 2020-05-15 23:45 - 000000000 ____D C:\Users\Tirado\Documents\Blocs de notas de OneNote
2021-08-18 22:36 - 2020-11-17 15:01 - 000000000 ____D C:\Users\Tirado\Desktop\Drake & Josh
2021-08-18 20:36 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-18 19:13 - 2020-05-30 03:50 - 000000000 ____D C:\Users\Tirado\AppData\LocalLow\Temp
2021-08-18 18:31 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-08-18 18:20 - 2021-07-05 03:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-18 18:13 - 2021-07-05 03:43 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-18 17:48 - 2021-06-27 21:19 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\uTorrent Web
2021-08-17 22:45 - 2021-06-27 22:03 - 000001884 _____ C:\Users\Tirado\Desktop\uTorrent Web.lnk
2021-08-17 22:45 - 2020-05-04 04:19 - 000001870 _____ C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2021-08-17 19:22 - 2021-06-29 01:46 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-17 19:22 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-17 19:11 - 2021-06-27 22:55 - 000000000 ____D C:\Users\postgres
2021-08-17 19:03 - 2021-05-07 18:06 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-08-17 19:03 - 2020-04-22 14:35 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-16 19:24 - 2021-05-13 19:49 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-16 17:55 - 2020-09-27 08:53 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 17:55 - 2020-09-27 08:53 - 000003456 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-16 17:38 - 2020-04-22 11:15 - 000000000 ___RD C:\Users\Tirado\OneDrive
2021-08-07 02:31 - 2021-04-06 15:01 - 000000000 ___RD C:\Users\postgres\OneDrive
2021-08-07 02:31 - 2020-11-02 01:43 - 000000000 ___RD C:\Users\Default\OneDrive
2021-08-05 18:23 - 2021-05-07 15:46 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Zoom
2021-08-05 18:23 - 2020-12-15 03:56 - 000001934 _____ C:\Users\Tirado\Desktop\Zoom.lnk
2021-08-05 17:02 - 2021-07-09 01:01 - 000000000 ____D C:\Users\Tirado\Downloads\One.Day.at.Disney.Shorts.S01.COMPLETE.720p.DSNP.WEBRip.x264-GalaxyTV[TGx]
2021-08-05 00:33 - 2021-06-27 23:18 - 000003558 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-05 00:33 - 2021-06-27 23:18 - 000003434 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-05 00:26 - 2021-07-02 01:48 - 000002470 _____ C:\Users\Tirado\Desktop\Stremio.lnk
2021-08-03 17:07 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-08-02 18:11 - 2020-10-04 23:27 - 000000000 ____D C:\Users\Tirado\AppData\LocalLow\Adobe
2021-07-30 17:44 - 2021-07-02 19:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-30 03:03 - 2021-06-27 21:10 - 000002854 _____ C:\Users\Tirado\Desktop\µTorrent.lnk
2021-07-29 03:03 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2021-07-29 02:35 - 2021-07-05 04:14 - 000000000 ____D C:\Users\Tirado\AppData\Local\license
2021-07-28 19:27 - 2021-07-04 01:28 - 000000000 _RSHD C:\Users\Tirado\AppData\Roaming\Google
2021-07-28 18:59 - 2021-07-08 21:27 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stremio
2021-07-28 18:59 - 2021-06-27 21:33 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebTorrent
2021-07-28 18:59 - 2021-04-06 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.5
2021-07-28 18:59 - 2021-03-29 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2021-07-28 18:59 - 2021-03-22 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Storage Format Tool 5.2
2021-07-28 18:59 - 2021-03-10 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\digiCamControl
2021-07-28 18:59 - 2020-11-27 00:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCareFone for WhatsApp Transfer
2021-07-28 18:59 - 2020-11-26 20:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-07-28 18:59 - 2020-11-22 20:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2021-07-28 18:59 - 2020-11-22 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2021-07-28 18:59 - 2020-11-20 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2021-07-28 18:59 - 2020-11-14 01:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizTree
2021-07-28 18:59 - 2020-11-05 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard
2021-07-28 18:59 - 2020-10-04 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
2021-07-28 18:59 - 2020-10-04 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2021-07-28 18:59 - 2020-08-31 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macromedia
2021-07-28 18:59 - 2020-05-05 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soundplant 47
2021-07-28 18:59 - 2020-04-23 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-LAN
2021-07-28 18:59 - 2020-04-22 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-07-28 00:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-28 00:01 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-26 15:32 - 2021-05-07 15:44 - 000000000 ____D C:\Users\Tirado\AppData\Local\PlaceholderTileLogoFolder
==================== Archivos en la raíz de algunos directorios ========
2021-08-21 04:09 - 2021-08-21 04:43 - 000274924 _____ () C:\Users\Tirado\AppData\Roaming\AvidCloudClientServices_Install.log
2021-08-21 04:14 - 2021-08-21 05:50 - 001677782 _____ () C:\Users\Tirado\AppData\Roaming\AvidLink_Install.log
2021-08-21 04:09 - 2021-08-21 04:43 - 000018544 _____ () C:\Users\Tirado\AppData\Roaming\Avid_CCS_Service_Stop.log
2021-08-21 04:26 - 2021-08-21 05:00 - 000004065 _____ () C:\Users\Tirado\AppData\Roaming\Avid_Editor_Transcode_Services_Stop.log
2021-08-05 16:26 - 2021-08-05 16:23 - 005887488 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\DataExchangeHost.exe
2021-08-05 16:25 - 2021-08-05 16:24 - 001035776 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\LaunchTM.exe
2021-08-21 04:15 - 2021-08-21 05:15 - 040460306 _____ () C:\Users\Tirado\AppData\Roaming\MediaComposer_Install.log
2021-05-07 18:48 - 2021-07-04 01:14 - 000000615 _____ () C:\Users\Tirado\AppData\Local\oobelibMkey.log
2021-07-17 05:00 - 2021-07-17 05:00 - 000007601 _____ () C:\Users\Tirado\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================
Hola nuevamente
Revisando los reportes te comento que podría será algo complicado dejar Windows Defender al 100%. Te daré varios pasos para ir reparando, procura hacerlos todos aunque el problema parezca solucionarse.
Realiza lo siguiente:
Crea una copia de seguridad del registro con Registry Backup, no importa si es la versión portable o instalable:
- Después de instalar o descomprimir ejecuta el programa (de ser portable es el ejecutable TweakingRegistryBackup.exe).
- Asegurate que en la pestaña Registry Backup este todo moarcado.
- En Backup Name puedes dejarlo por defecto o asignar algún nombre
- Presiona el botón BackUp now
Deshabilita nuevamente tu antivirus: ¿Cómo deshabilitar temporalmente su Antivirus?
En el equipo, con los demás programas cerrados abra el notepad; puede abrirlo en la barra de búsqueda de windows y escribiendo notepad.exe
Posteriormente, copie y pegue este script de reparación dentro del Notepad comenzando en Start y terminando en End:
Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
S3 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\elevation_service.exe" [X]
S2 AvastWscReporter; "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
2021-08-21 05:11 - 2021-08-21 05:11 - 000000000 ____D C:\WINDOWS\system32\.exe
StartRegedit:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SecurityHealthService]
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"Description"="@%systemroot%\\system32\\SecurityHealthAgent.dll,-1001"
"DisplayName"="@%systemroot%\\system32\\SecurityHealthAgent.dll,-1002"
"ErrorControl"=dword:00000001
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\
74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,53,\
00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,48,00,65,00,61,00,6c,00,74,00,\
68,00,53,00,65,00,72,00,76,00,69,00,63,00,65,00,2e,00,65,00,78,00,65,00,00,\
00
"LaunchProtected"=dword:00000002
"ObjectName"="LocalSystem"
"RequiredPrivileges"=hex(7):53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,\
00,6e,00,61,00,74,00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
65,00,00,00,53,00,65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,\
00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,\
74,00,6f,00,72,00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,\
00,00,00,53,00,65,00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,\
69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,\
00,65,00,4e,00,6f,00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,\
6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,\
00,74,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,\
53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,50,00,72,00,69,00,6d,00,61,\
00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,00,72,00,69,00,76,00,69,00,\
6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,63,00,62,00,50,00,72,00,69,\
00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,79,00,73,00,\
74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,6f,00,6e,00,6d,00,65,00,6e,\
00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
65,00,53,00,68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,\
00,69,00,6c,00,65,00,67,00,65,00,00,00,00,00
"ServiceSidType"=dword:00000001
"Start"=dword:00000003
"Type"=dword:00000010
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SecurityHealthService\Security]
"Security"=hex:01,00,14,80,1c,01,00,00,28,01,00,00,14,00,00,00,30,00,00,00,02,\
00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
00,00,02,00,ec,00,08,00,00,00,00,00,18,00,9d,00,02,00,01,02,00,00,00,00,00,\
05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
02,00,00,00,00,14,00,9d,00,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
14,00,9d,00,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,fd,01,02,\
00,01,06,00,00,00,00,00,05,50,00,00,00,e5,fe,79,5f,a0,ae,0d,3b,22,fa,0a,c9,\
01,5a,41,3a,e5,a6,4a,b7,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,57,00,77,6e,c0,02,64,87,00,00,\
28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,00,00,00,db,8c,74,0f,c2,72,73,\
f3,2b,26,b9,44,77,1e,4f,02,76,63,b5,21,01,01,00,00,00,00,00,05,12,00,00,00,\
01,01,00,00,00,00,00,05,12,00,00,00
EndRegedit:
StartRegedit:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend]
"DisplayName"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-310"
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):22,00,25,00,50,00,72,00,6f,00,67,00,72,00,61,00,6d,00,46,00,\
69,00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,\
00,20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72,00,5c,00,4d,00,73,00,\
4d,00,70,00,45,00,6e,00,67,00,2e,00,65,00,78,00,65,00,22,00,00,00
"Start"=dword:00000002
"Type"=dword:00000010
"Description"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-240"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"ObjectName"="LocalSystem"
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,4c,00,6f,00,61,00,64,00,44,00,72,00,69,\
00,76,00,65,00,72,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
00,00,53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,\
00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,74,00,6f,00,72,00,\
65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,\
00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,\
67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,\
00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,50,\
00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,\
68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,6e,00,63,00,72,00,65,00,61,00,\
73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,\
50,00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,\
00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,\
63,00,62,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,\
00,65,00,53,00,79,00,73,00,74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,\
6f,00,6e,00,6d,00,65,00,6e,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,\
00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"LaunchProtected"=dword:00000003
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend\Security]
"Security"=hex:01,00,14,80,f4,00,00,00,00,01,00,00,14,00,00,00,30,00,00,00,02,\
00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
00,00,02,00,c4,00,07,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,\
05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
14,00,9d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,ff,01,0f,\
00,01,06,00,00,00,00,00,05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,\
57,00,77,6e,c0,02,64,87,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
00,00,00,bf,55,08,72,3b,e0,28,d0,89,79,4b,f8,91,89,6e,7c,40,25,ec,f4,01,01,\
00,00,00,00,00,05,12,00,00,00,01,01,00,00,00,00,00,05,12,00,00,00
EndRegedit:
CMD: dir "C:\ProgramData\Microsoft\Windows Defender\Platform"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
EmptyTemp:
End- Vaya a Archivo y selecciona Guardar Como.
- En la parte de Codificación eliga Unicode o UTF8 según le de la opción.
- Guardelo bajo el nombre de fixlist.txt en el escritorio al igual que FRST. Esto es muy importante.
¡
ATENCIÓN! El anterior Script de reparación fue hecho específicamente por un miembro del Staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
- Ejecute Frst.exe. y presione el botón Fix / Corregir
- Espere pacientemente a que termine y no use el equipo. Al terminar el equipo podría reiniciarse
- La Herramienta guardara el reporte en su escritorio (Fixlog.txt).
Revisa en windows update si hay alguna actualización disponible: Actualizar Windows - Soporte técnico de Microsoft
En la barra de búsqueda escribe cmd y en la primera opción que aparezca da clic derecho y elige Ejecutar como administrador. Se abrirá una ventana negra. Copia y pega los siguientes comandos linea por linea:
dism /online /cleanup-image /restorehealth
dism /online /cleanup-image /startcomponentcleanup
sfc /scannow
Si alguno te pide reiniciar procedes. Revisa si el ultimo comando te informa si encontro alguna infracción y si la pudo reparar.
Nos traerías:
- El reporte de FRST (fixlog).
- Comentarios si el ultimo comando encontró algún problema y lo pudo reparar.
- Comentarios de como sigue el problema.
Saludos
Aqui te va el fixlog, mi windows denfender ya funciona, el ultimo comando encontró problemas y los pudo reparar pero mi computadora se esta congelando mucho y esta mas lenta.
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 21-08-2021
Ejecutado por Tirado (26-08-2021 07:23:18) Run:1
Ejecutado desde C:\Users\Tirado\Desktop
Perfiles cargados: Tirado & postgres & Mia
Modo de Inicio: Normal
==============================================
fixlist contenido:
*****************
Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
S3 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\elevation_service.exe" [X]
S2 AvastWscReporter; "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
2021-08-21 05:11 - 2021-08-21 05:11 - 000000000 ____D C:\WINDOWS\system32\.exe
StartRegedit:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SecurityHealthService]
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"Description"="@%systemroot%\\system32\\SecurityHealthAgent.dll,-1001"
"DisplayName"="@%systemroot%\\system32\\SecurityHealthAgent.dll,-1002"
"ErrorControl"=dword:00000001
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\
74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,53,\
00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,48,00,65,00,61,00,6c,00,74,00,\
68,00,53,00,65,00,72,00,76,00,69,00,63,00,65,00,2e,00,65,00,78,00,65,00,00,\
00
"LaunchProtected"=dword:00000002
"ObjectName"="LocalSystem"
"RequiredPrivileges"=hex(7):53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,\
00,6e,00,61,00,74,00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
65,00,00,00,53,00,65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,\
00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,\
74,00,6f,00,72,00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,\
00,00,00,53,00,65,00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,\
69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,\
00,65,00,4e,00,6f,00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,\
6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,\
00,74,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,\
53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,50,00,72,00,69,00,6d,00,61,\
00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,00,72,00,69,00,76,00,69,00,\
6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,63,00,62,00,50,00,72,00,69,\
00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,79,00,73,00,\
74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,6f,00,6e,00,6d,00,65,00,6e,\
00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
65,00,53,00,68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,\
00,69,00,6c,00,65,00,67,00,65,00,00,00,00,00
"ServiceSidType"=dword:00000001
"Start"=dword:00000003
"Type"=dword:00000010
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SecurityHealthService\Security]
"Security"=hex:01,00,14,80,1c,01,00,00,28,01,00,00,14,00,00,00,30,00,00,00,02,\
00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
00,00,02,00,ec,00,08,00,00,00,00,00,18,00,9d,00,02,00,01,02,00,00,00,00,00,\
05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
02,00,00,00,00,14,00,9d,00,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
14,00,9d,00,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,fd,01,02,\
00,01,06,00,00,00,00,00,05,50,00,00,00,e5,fe,79,5f,a0,ae,0d,3b,22,fa,0a,c9,\
01,5a,41,3a,e5,a6,4a,b7,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,57,00,77,6e,c0,02,64,87,00,00,\
28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,00,00,00,db,8c,74,0f,c2,72,73,\
f3,2b,26,b9,44,77,1e,4f,02,76,63,b5,21,01,01,00,00,00,00,00,05,12,00,00,00,\
01,01,00,00,00,00,00,05,12,00,00,00
EndRegedit:
StartRegedit:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend]
"DisplayName"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-310"
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):22,00,25,00,50,00,72,00,6f,00,67,00,72,00,61,00,6d,00,46,00,\
69,00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,\
00,20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72,00,5c,00,4d,00,73,00,\
4d,00,70,00,45,00,6e,00,67,00,2e,00,65,00,78,00,65,00,22,00,00,00
"Start"=dword:00000002
"Type"=dword:00000010
"Description"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-240"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"ObjectName"="LocalSystem"
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,4c,00,6f,00,61,00,64,00,44,00,72,00,69,\
00,76,00,65,00,72,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
00,00,53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,\
00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,74,00,6f,00,72,00,\
65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,\
00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,\
67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,\
00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,50,\
00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,\
68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,6e,00,63,00,72,00,65,00,61,00,\
73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,00,72,00,69,00,76,00,69,00,6c,\
00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,\
50,00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,\
00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,\
63,00,62,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,\
00,65,00,53,00,79,00,73,00,74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,\
6f,00,6e,00,6d,00,65,00,6e,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,\
00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"LaunchProtected"=dword:00000003
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend\Security]
"Security"=hex:01,00,14,80,f4,00,00,00,00,01,00,00,14,00,00,00,30,00,00,00,02,\
00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
00,00,02,00,c4,00,07,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,\
05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
14,00,9d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,ff,01,0f,\
00,01,06,00,00,00,00,00,05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,\
57,00,77,6e,c0,02,64,87,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
00,00,00,bf,55,08,72,3b,e0,28,d0,89,79,4b,f8,91,89,6e,7c,40,25,ec,f4,01,01,\
00,00,00,00,00,05,12,00,00,00,01,01,00,00,00,00,00,05,12,00,00,00
EndRegedit:
CMD: dir "C:\ProgramData\Microsoft\Windows Defender\Platform"
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
EmptyTemp:
End
*****************
SystemRestore: On => completado
El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
HKLM\System\CurrentControlSet\Services\avast => eliminado correctamente
avast => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\avastm => eliminado correctamente
avastm => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\AvastSecureBrowserElevationService => eliminado correctamente
AvastSecureBrowserElevationService => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\AvastWscReporter => eliminado correctamente
AvastWscReporter => servicio eliminado correctamente
C:\WINDOWS\system32\.exe => movido correctamente
Registro ====> La operaci�n se complet� correctamente.
Registro ====> La operaci�n se complet� correctamente.
========= dir "C:\ProgramData\Microsoft\Windows Defender\Platform" =========
El volumen de la unidad C no tiene etiqueta.
El número de serie del volumen es: 549B-42EE
Directorio de C:\ProgramData\Microsoft\Windows Defender\Platform
07/05/2021 03:46 p. m. <DIR> .
07/05/2021 03:46 p. m. <DIR> ..
0 archivos 0 bytes
2 dirs 131,461,976,064 bytes libres
========= Final de CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.
Adaptador de Ethernet Ethernet:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 1:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 2:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Wi-Fi:
Sufijo DNS espec¡fico para la conexi¢n. . :
V¡nculo: direcci¢n IPv6 local. . . : fe80::5807:962c:5345:8704%12
Direcci¢n IPv4. . . . . . . . . . . . . . : 10.0.0.227
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : 10.0.0.1
Adaptador de Ethernet Conexi¢n de red Bluetooth:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
Unable to cancel {6F10CD0A-F73D-4E67-975E-F5EACA910E27}.
0 out of 1 jobs canceled.
========= Final de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 58361478 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 46554354 B
Edge => 0 B
Chrome => 502220344 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5286 B
NetworkService => 5286 B
Tirado => 903961358 B
postgres => 903961358 B
Mia => 903961358 B
RecycleBin => 97026735 B
EmptyTemp: => 3.2 GB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 07:26:38 ====
Hola nuevamente,
Ejecuta nuevamente FRST y realiza un escaneo.
En tu próxima respuesta nos traerías los dos reportes que genere.
Saludos
frst.txt
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 01-09-2021
Ejecutado por Tirado (administrador) sobre DESKTOP-K4U02BT (Dell Inc. Inspiron 5570) (02-09-2021 05:34:16)
Ejecutado desde C:\Users\Tirado\Desktop
Perfiles cargados: Tirado
Platform: Windows 10 Home Versión 21H1 19043.1165 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Avid Link\Avid Link.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe <2>
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe <2>
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d023eec6358b3ae0\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d023eec6358b3ae0\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_38ead153fbd01418\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1fac62ebeda54cee\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1fac62ebeda54cee\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) C:\Program Files (x86)\ManyCam\ManyCam.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Piriform Software Ltd -> Piriform) C:\Program Files\CCleaner\CCUpdate.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Red Giant LLC -> Red Giant LLC) C:\Program Files\Red Giant\Services\Red Giant Service.exe
(SafeNet Canada, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1235160 2019-09-26] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-08-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-22] (Adobe Inc. -> )
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2196344 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [utweb] => C:\Users\Tirado\AppData\Roaming\uTorrent Web\utweb.exe [5898272 2021-07-26] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [uTorrent] => C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe [2151976 2021-08-21] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [btweb] => C:\Users\Tirado\AppData\Roaming\BitTorrent Web\btweb.exe [5885472 2021-04-19] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tirado\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4079824 2021-07-07] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [886768 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [ut] => C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe [2151976 2021-08-21] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [16790840 2021-06-01] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65096 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-17] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2021-08-21]
ShortcutTarget: Avid Application Manager.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Background Services Manager.lnk [2021-08-21]
ShortcutTarget: Avid Background Services Manager.lnk -> C:\Windows\Installer\{93F854EA-DC70-4E33-96B3-BEB62B378BB6}\NewShortcut1_4CE83F107C544E87A6F35E0E551E78CA.exe (Avid Technology, Inc. -> Flexera)
Startup: C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2021-08-18]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0C200F5F-5A09-4388-A5DD-CBB1EB6BE0D4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053744 2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {19CDC807-55F7-450E-A5B1-51B80685CC1A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\OneDrive Per-Machine Standalone Update Task" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1620425354" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1620425341" /ENABLE
Task: {2CEB4274-3548-4BC7-A483-65C892E27668} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {44365E31-1FD6-4B0F-8E6F-4DA3A6E2E3C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {45E52DB4-B140-4F8D-B8C8-2CD9304326D4} - System32\Tasks\Opera scheduled Autoupdate 1620425341 => C:\Users\Tirado\AppData\Local\Programs\Opera\launcher.exe
Task: {51034CAF-0770-41E0-A3DF-5CEB9DEC81E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {59BBD0DC-9983-4A26-9641-6CA48CBC9CAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-07] (Google LLC -> Google LLC)
Task: {5A468300-48EF-4F36-8BAD-FA6F1FB3DCCF} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-08-20] (Dell Inc -> Dell Inc.)
Task: {5CC9E504-59AC-45FF-9FCC-99C60CD1A055} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053744 2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F4DAD36-F2E0-4B31-A84E-1EE3F2B92BEB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {624BCDD1-300D-4D48-975B-837D4C24D03B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {77E5303A-C6EC-4A6D-BC83-038B21513ED8} - System32\Tasks\Opera scheduled assistant Autoupdate 1620425354 => C:\Users\Tirado\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tirado\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {78866B2F-0856-4646-B3E8-380A32F942F3} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {81FAB306-B857-40B3-BE32-FC9FC7CCC24D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139128 2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {91A47E40-F28C-4B2B-8B4C-E92DEEC35FE8} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {92BF6018-14A2-4F2A-93A7-C06384F407C5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139128 2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C685636-D8F0-45C7-B97B-4ABE35C4E5F8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989424 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DE50C02-0DA2-4027-A447-A2D89CF0D3DD} - System32\Tasks\ioloAVDefsDownloader => C:\Program Files\Norton Utilities Premium\SSDefs.exe
Task: {A9A2261B-757C-41B9-8DB1-1A2A39E52695} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C33D621B-4256-453B-A62F-7A4EE8FF704E} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {C715D4D6-B77E-4EAD-A89B-6C980BD32CAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-07] (Google LLC -> Google LLC)
Task: {C73370B6-4D73-45EB-AA8A-ED679BBC385C} - System32\Tasks\ioloSystemShield => C:\Program Files\Norton Utilities Premium\ioloSSTray.exe
Task: {C97015F3-E404-4F25-952D-E1E4705125E1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {DE616306-A324-43EF-B2D3-74268FE35BA5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{5578d9d3-16b1-4e0f-95c9-46a65a697a58}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{7b1535d6-4a9f-47ee-8d1a-c19bd020c06a}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{f2c63a28-7f1a-4c39-b456-46a1cc557829}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\Tirado\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Tirado\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-17]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-27]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Ningún archivo]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default [2021-09-02]
CHR Notifications: Default -> hxxps://app.edutin.com; hxxps://forospyware.com; hxxps://meet.google.com; hxxps://seriesretro.com
CHR Extension: (Safe Torrent Scanner) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-07-01]
CHR Extension: (Google Drive) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-07]
CHR Extension: (YouTube) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-07]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-08-17]
CHR Extension: (uTorrent Link Sender) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\jakpnimgfpjlkigbndhbfhhamkdfokpb [2021-06-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-07]
CHR Extension: (Gmail) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-25]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-02]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-08-26]
CHR Extension: (Presentaciones) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-19]
CHR Extension: (Documentos) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-19]
CHR Extension: (Google Drive) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-19]
CHR Extension: (YouTube) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-19]
CHR Extension: (Adobe Acrobat) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-19]
CHR Extension: (Hojas de cálculo) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-19]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-19]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-19]
CHR Extension: (Gmail) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-19]
CHR Profile: C:\Users\Tirado\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable [2021-08-23]
OPR Extension: (Rich Hints Agent) - C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-05-07]
OPR Extension: (Safe Torrent Scanner) - C:\Users\Tirado\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabaecgmgbeapjghcfhohnbljcocknl [2021-05-07]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-08-05] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 Avid DMF Service; C:\Program Files\Avid\Editor Transcode\Dynamic Media Files\DMFService.exe [818504 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Broker; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe [299456 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Db Engine; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe [298960 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
S3 Avid Editor Transcode Service; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorTranscode.exe [664016 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 Avid Editor Transcode Status; C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe [299480 2021-06-13] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2019-08-30] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2019-08-30] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9166736 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [426528 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3835424 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [452640 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1020584 2021-07-28] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-07-20] (Dell Inc -> )
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\FileSyncHelper.exe [2382200 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-17] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\OneDriveUpdaterService.exe [2739576 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
R2 Red Giant Service; C:\Program Files\Red Giant\Services\Red Giant Service.exe [5950024 2021-08-26] (Red Giant LLC -> Red Giant LLC)
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [405136 2016-12-16] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1261200 2016-12-14] (SafeNet Canada, Inc. -> SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-08-20] (Dell Inc -> Dell Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AndDiag; C:\WINDOWS\System32\drivers\lganddiag64.sys [27648 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [117472 2020-10-12] (Tenorshare Co.,Ltd. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-08-18] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-08-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-18] (Malwarebytes Inc -> Malwarebytes)
R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-28] (ManyCam -> Visicom Media Inc.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [52960 2020-10-12] (Tenorshare Co.,Ltd. -> QUALCOMM Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsla379faf1; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B464E711-A300-462A-8930-8A9CEDEBFEF2}\MpKslDrv.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-09-02 05:25 - 2021-09-02 05:25 - 000000000 ____D C:\Users\Tirado\Desktop\FRST-OlderVersion
2021-09-02 05:24 - 2021-09-02 05:24 - 000000000 ____D C:\Users\Tirado\Documents\Dell
2021-09-02 03:09 - 2021-09-02 03:09 - 000066174 _____ C:\Users\Tirado\Downloads\Mia Bella Romero Currículum (1).pdf
2021-08-29 19:16 - 2021-08-29 19:16 - 000066398 _____ C:\Users\Tirado\Downloads\Mia Bella Romero Currículum.pdf
2021-08-29 19:14 - 2021-08-29 19:15 - 000066420 _____ C:\Users\Tirado\Downloads\Azul Minimalista Infografía Currículum (1).pdf
2021-08-28 02:48 - 2021-08-28 02:48 - 000000015 _____ C:\Users\Tirado\AppData\Roaming\obs-virtualcam.txt
2021-08-28 02:36 - 2021-08-28 02:36 - 000000000 ____D C:\Users\Tirado\AppData\Local\Visicom Media
2021-08-28 02:31 - 2021-08-28 02:31 - 000001060 _____ C:\Users\Public\Desktop\ManyCam.lnk
2021-08-28 02:31 - 2021-08-28 02:31 - 000000000 ____D C:\Users\Tirado\AppData\Local\ManyCam
2021-08-28 02:31 - 2021-08-28 02:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
2021-08-28 02:30 - 2021-08-28 02:31 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\ManyCam
2021-08-28 02:30 - 2021-08-28 02:31 - 000000000 ____D C:\Program Files (x86)\ManyCam
2021-08-28 02:30 - 2021-08-28 02:30 - 000000000 ____D C:\ProgramData\ManyCam
2021-08-28 02:28 - 2021-08-28 02:29 - 098170288 _____ (Visicom Media Inc.) C:\Users\Tirado\Downloads\ManyCamSetup.exe
2021-08-28 02:01 - 2021-08-28 02:01 - 000137899 _____ C:\Users\Tirado\Desktop\Untitled.prproj
2021-08-26 07:41 - 2021-08-26 07:41 - 000000000 ___HD C:\$WinREAgent
2021-08-26 07:23 - 2021-08-26 07:26 - 000012375 _____ C:\Users\Tirado\Desktop\Fixlog.txt
2021-08-26 07:17 - 2021-08-26 07:17 - 007333288 _____ (Tweaking.com) C:\Users\Tirado\Downloads\tweaking.com_registry_backup_setup (1).exe
2021-08-26 07:17 - 2021-08-26 07:17 - 000018147 _____ C:\WINDOWS\Tweaking.com - Registry Backup Setup Log.txt
2021-08-26 06:55 - 2021-06-28 03:51 - 040485507 _____ C:\Users\Tirado\Downloads\motion-factory setup.zip
2021-08-26 06:38 - 2021-08-26 06:51 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\MotionFactory
2021-08-26 06:36 - 2021-08-26 06:36 - 000000000 ____D C:\Program Files (x86)\ZXPInstaller
2021-08-26 06:30 - 2021-08-26 06:36 - 000001124 _____ C:\Users\Public\Desktop\ZXPInstaller.lnk
2021-08-26 06:30 - 2021-08-26 06:35 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\ZXPInstaller
2021-08-26 06:30 - 2021-08-26 06:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZXPInstaller
2021-08-26 06:29 - 2021-08-26 06:30 - 047069298 _____ C:\Users\Tirado\Downloads\ZXPInstaller.Setup.exe
2021-08-26 06:28 - 2021-08-26 06:35 - 000000000 ____D C:\Users\Tirado\Downloads\MotionFactory
2021-08-26 06:27 - 2021-08-26 06:28 - 040272988 _____ C:\Users\Tirado\Downloads\MotionFactory.zip
2021-08-26 06:22 - 2021-08-26 06:22 - 000000000 ____D C:\Program Files (x86)\Pixflow Studio
2021-08-26 06:03 - 2021-08-26 06:03 - 000000000 ____D C:\Users\Tirado\AppData\Local\Red Giant
2021-08-26 06:01 - 2021-08-26 06:03 - 000000000 ____D C:\Program Files\Red Giant
2021-08-26 06:01 - 2021-08-26 06:02 - 000403768 _____ (Intel Corporation) C:\WINDOWS\system32\tbb.dll
2021-08-26 06:01 - 2021-08-26 06:02 - 000234808 _____ (Intel Corporation) C:\WINDOWS\system32\tbbmalloc.dll
2021-08-26 06:01 - 2021-08-26 06:01 - 000000074 _____ C:\ProgramData\WnHqYU0nH4
2021-08-26 06:01 - 2021-08-26 06:01 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Red Giant
2021-08-26 06:01 - 2021-08-26 06:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
2021-08-26 05:52 - 2021-08-26 06:03 - 000000000 ____D C:\ProgramData\Red Giant
2021-08-26 05:44 - 2021-08-26 05:51 - 000000000 ____D C:\Users\Tirado\Downloads\Red Giant Trapcode Suite 15.1.7 (x64) + Serial Keys [SadeemPC]
2021-08-26 05:43 - 2021-08-26 05:44 - 234670524 _____ (Pixflow Studio) C:\Users\Tirado\Downloads\Motion-Factory-Setup.exe
2021-08-26 03:56 - 2021-08-26 03:56 - 097026735 _____ C:\Users\Tirado\Desktop\clase 2 after effects
2021-08-26 03:13 - 2021-08-26 06:23 - 000000000 ___RD C:\Users\Tirado\Creative Cloud Files
2021-08-26 03:11 - 2021-08-26 03:11 - 000001064 _____ C:\Users\Tirado\Desktop\Adobe Photoshop 2020.lnk
2021-08-26 02:51 - 2021-08-26 03:13 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Photoshop 2020 v21.0.2.57 (x64) Pre-Cracked
2021-08-26 02:51 - 2021-08-26 02:51 - 000000000 ____D C:\Users\Tirado\AppData\Local\UXP
2021-08-26 02:51 - 2021-08-26 02:51 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-08-26 02:49 - 2021-08-26 02:49 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2021-08-26 02:49 - 2021-08-26 02:49 - 000002481 _____ C:\Users\Tirado\Desktop\Adobe Illustrator 2020.lnk
2021-08-25 00:17 - 2021-08-25 00:17 - 000002651 _____ C:\Users\Tirado\Desktop\ForoSpyware.lnk
2021-08-25 00:17 - 2021-08-25 00:17 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
2021-08-25 00:07 - 2021-08-25 00:07 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Maxon
2021-08-24 23:38 - 2021-08-24 23:41 - 000047306 _____ C:\Users\Tirado\Desktop\Addition.txt
2021-08-24 23:34 - 2021-09-02 05:44 - 000031265 _____ C:\Users\Tirado\Desktop\FRST.txt
2021-08-24 23:33 - 2021-09-02 05:39 - 000000000 ____D C:\FRST
2021-08-24 23:32 - 2021-09-02 05:25 - 002302464 _____ (Farbar) C:\Users\Tirado\Desktop\FRST64.exe
2021-08-24 23:27 - 2021-08-24 23:29 - 000002587 _____ C:\Users\Tirado\Desktop\FSS.txt
2021-08-24 21:45 - 2021-08-24 21:45 - 016753226 _____ C:\Users\Tirado\Downloads\Archivos Proyecto.zip
2021-08-24 19:12 - 2021-08-24 21:56 - 000002587 _____ C:\Users\Tirado\Downloads\FSS.txt
2021-08-24 19:12 - 2021-08-24 19:12 - 000909824 _____ (Farbar) C:\Users\Tirado\Desktop\FSS.exe
2021-08-23 16:36 - 2021-08-23 16:36 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-08-23 04:39 - 2021-08-23 04:39 - 000000000 ____D C:\Users\Tirado\Desktop\Tweaking.com - Windows Repair
2021-08-23 04:39 - 2021-08-12 15:22 - 007341216 _____ (Tweaking.com) C:\Users\Tirado\Desktop\Repair_Windows.exe
2021-08-23 04:27 - 2021-08-23 04:27 - 048177891 _____ C:\Users\Tirado\Downloads\tweaking.com_windows_repair_aio.zip
2021-08-22 03:40 - 2021-08-22 03:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon
2021-08-22 03:39 - 2021-08-22 03:41 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R22
2021-08-22 03:38 - 2021-08-22 03:38 - 000001250 _____ C:\Users\Tirado\Desktop\Adobe After Effects 2021.lnk
2021-08-22 03:19 - 2021-09-02 05:26 - 000004220 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{2F4E5A1C-8A11-48DF-9C97-BB80AE2A1532}
2021-08-22 02:22 - 2021-08-22 02:26 - 000000000 ____D C:\Users\Tirado\Downloads\Adobe After Effects 2021 18.0.0.39
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\Documents\MC First Avid Projects
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\Documents\Avid Projects
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Tirado\AppData\Local\AvidMediaComposer
2021-08-21 05:47 - 2021-08-21 05:47 - 000000000 ____D C:\Users\Public\Documents\Avid SearchData
2021-08-21 05:45 - 2021-08-21 05:45 - 000000000 ____D C:\Users\Public\Documents\Shared LUTs
2021-08-21 05:11 - 2021-08-21 05:11 - 000002747 _____ C:\Users\Public\Desktop\Avid Media Composer.lnk
2021-08-21 05:00 - 2021-08-23 17:30 - 000000000 ____D C:\Users\Public\Documents\Avid Media Composer
2021-08-21 05:00 - 2021-08-21 05:43 - 000000000 ____D C:\Users\Public\Documents\AVX Plug-Ins Data
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\MEDIA
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\Users\Public\Documents\Transcode Service Worker
2021-08-21 05:00 - 2021-08-21 05:00 - 000000000 ____D C:\Users\Public\Documents\Shared Avid Projects
2021-08-21 04:32 - 2021-08-21 04:32 - 000000000 ____D C:\ProgramData\PACE
2021-08-21 04:16 - 2021-08-21 05:43 - 000000000 ____D C:\Users\Tirado\AppData\Local\Avid
2021-08-21 04:14 - 2021-08-21 04:16 - 000000000 ___HD C:\AvidDownloads
2021-08-21 04:13 - 2021-08-22 02:56 - 000000000 ____D C:\ProgramData\Avid
2021-08-21 04:13 - 2021-08-21 04:13 - 000000000 ____D C:\Users\Tirado\AppData\Local\Downloaded Installations
2021-08-21 04:08 - 2021-08-21 04:08 - 000002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2021-08-21 04:08 - 2021-08-21 04:08 - 000002074 _____ C:\Users\Public\Desktop\iLok License Manager.lnk
2021-08-21 04:08 - 2021-08-21 04:08 - 000000000 ____D C:\Program Files (x86)\iLok License Manager
2021-08-21 04:07 - 2021-08-21 04:07 - 000000000 ____D C:\ProgramData\Apple
2021-08-21 04:06 - 2021-08-21 04:06 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2021-08-21 04:06 - 2021-08-21 04:06 - 000000000 ____D C:\Program Files (x86)\SafeNet Sentinel
2021-08-21 04:05 - 2021-08-21 04:05 - 000000000 ____D C:\Users\Tirado\Documents\Downloaded Installations
2021-08-21 03:59 - 2021-08-21 03:59 - 000000000 ____D C:\Users\Tirado\Downloads\MediaComposer
2021-08-21 03:59 - 2021-06-13 22:55 - 002046592 ____N (Avid Technology, Inc.) C:\Users\Tirado\Downloads\Install Media Composer.exe
2021-08-21 03:33 - 2021-08-21 03:54 - 2762531406 _____ C:\Users\Tirado\Downloads\Media_Composer_21.6.0_Win.zip
2021-08-21 02:51 - 2021-08-26 02:34 - 000000000 ____D C:\Users\Tirado\AppData\LocalLow\uTorrent
2021-08-20 02:22 - 2021-08-20 02:22 - 000001765 _____ C:\Users\Public\Desktop\Defraggler.lnk
2021-08-20 02:22 - 2021-08-20 02:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2021-08-20 02:22 - 2021-08-20 02:22 - 000000000 ____D C:\Program Files\Defraggler
2021-08-20 02:21 - 2021-08-20 02:21 - 007466056 _____ (Piriform Software Ltd) C:\Users\Tirado\Downloads\dfsetup222.exe
2021-08-19 23:37 - 2021-08-19 23:37 - 000000000 ____D C:\Program Files (x86)\Intel
2021-08-19 23:36 - 2021-08-19 23:36 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-08-19 23:22 - 2021-08-19 23:22 - 000000000 ____D C:\Program Files\Intel
2021-08-19 23:18 - 2021-08-19 23:18 - 000000000 ____D C:\Users\Tirado\Intel
2021-08-19 23:06 - 2021-08-19 23:06 - 000000000 ____D C:\ProgramData\PCDr
2021-08-19 23:02 - 2021-08-19 23:02 - 000003914 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2021-08-19 23:02 - 2021-08-19 23:02 - 000000000 ____D C:\ProgramData\Dell Inc
2021-08-19 23:01 - 2021-08-30 16:27 - 000000000 ____D C:\ProgramData\Dell
2021-08-19 23:01 - 2021-08-30 16:26 - 000000000 ____D C:\Program Files\Dell
2021-08-19 23:01 - 2021-08-19 23:01 - 000000000 ____D C:\Program Files (x86)\Dell
2021-08-19 23:00 - 2021-08-19 23:00 - 000000000 ____D C:\ProgramData\SupportAssist
2021-08-19 22:52 - 2021-08-19 22:52 - 000022846 _____ C:\Users\Tirado\Documents\cc_20210819_225215.reg
2021-08-19 22:19 - 2021-08-19 22:19 - 000000000 ____D C:\Users\Tirado\AppData\Local\ElevatedDiagnostics
2021-08-19 21:12 - 2021-08-19 21:14 - 000001378 _____ C:\Users\Tirado\Desktop\Rkill.txt
2021-08-19 21:12 - 2021-08-19 21:12 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Tirado\Downloads\rkill.exe
2021-08-19 20:27 - 2021-08-19 20:34 - 000000975 _____ C:\Users\Tirado\Desktop\kprm-20210819202707.txt
2021-08-19 20:27 - 2021-08-19 20:27 - 000000000 ____D C:\KPRM
2021-08-19 20:25 - 2021-08-19 20:25 - 002811112 _____ (kernel-panik) C:\Users\Tirado\Downloads\kprm_2.9.2 (1).exe
2021-08-19 20:23 - 2021-08-19 20:23 - 016753226 _____ C:\Users\Tirado\Downloads\Archivos Proyecto.zip 1era clase after effects
2021-08-19 20:15 - 2021-08-26 07:20 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Megacursos
2021-08-19 20:15 - 2021-08-19 20:15 - 000002347 _____ C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Megacursos.lnk
2021-08-19 20:15 - 2021-08-19 20:15 - 000002339 _____ C:\Users\Tirado\Desktop\Megacursos.lnk
2021-08-19 20:15 - 2021-08-19 20:15 - 000000000 ____D C:\Users\Tirado\AppData\Local\megacursos-updater
2021-08-19 20:12 - 2021-08-19 20:14 - 047891799 _____ C:\Users\Tirado\Downloads\MegacursosPlayer (Windows) FullHD Installer.zip
2021-08-19 17:17 - 2021-08-19 17:39 - 2583472654 _____ C:\Users\Tirado\Downloads\DaVinci_Resolve_17.2.2_Windows.zip
2021-08-19 16:40 - 2021-08-19 16:40 - 000012099 _____ C:\Users\Tirado\Downloads\gardenfreude.zip
2021-08-19 16:39 - 2021-08-19 16:39 - 000022565 _____ C:\Users\Tirado\Downloads\solid_3d.zip
2021-08-19 16:32 - 2021-08-19 16:32 - 000006916 _____ C:\Users\Tirado\Downloads\illegal_curves.zip
2021-08-19 16:30 - 2021-08-19 16:30 - 000023159 _____ C:\Users\Tirado\Downloads\baise.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 004035299 _____ C:\Users\Tirado\Downloads\arturo.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000916615 _____ C:\Users\Tirado\Downloads\black_brutal.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000087440 _____ C:\Users\Tirado\Downloads\j_m_nexus_grotesque.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000030947 _____ C:\Users\Tirado\Downloads\ostrich_sans.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000018606 _____ C:\Users\Tirado\Downloads\comfort.zip
2021-08-19 16:29 - 2021-08-19 16:29 - 000010264 _____ C:\Users\Tirado\Downloads\ponymaker.zip
2021-08-19 16:23 - 2021-08-19 16:23 - 000024347 _____ C:\Users\Tirado\Downloads\franchise_2.zip
2021-08-19 16:23 - 2021-08-19 16:23 - 000013494 _____ C:\Users\Tirado\Downloads\neon_led_light.zip
2021-08-19 02:42 - 2021-08-19 02:42 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-08-19 01:13 - 2021-08-19 01:13 - 000016148 _____ C:\Users\Tirado\Downloads\Lista egresados Chavón.xlsx
2021-08-18 21:58 - 2021-08-18 21:59 - 000000000 ____D C:\WINDOWS\pss
2021-08-18 19:12 - 2021-08-18 19:12 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-18 19:11 - 2021-08-18 19:11 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-18 19:11 - 2021-08-18 19:11 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-18 19:11 - 2021-08-18 19:11 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-18 19:10 - 2021-08-18 19:10 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-18 19:10 - 2021-08-18 19:10 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-18 19:09 - 2021-08-18 19:09 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-18 18:50 - 2021-08-18 18:50 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-DESKTOP-K4U02BT-Windows-10-Home-(64-bit).dat
2021-08-18 18:49 - 2021-08-18 18:49 - 000000000 ____D C:\RegBackup
2021-08-18 18:48 - 2021-08-26 07:17 - 000002308 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2021-08-18 18:48 - 2021-08-18 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2021-08-18 18:48 - 2021-08-18 18:48 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2021-08-18 18:39 - 2021-08-18 18:39 - 000000000 ____D C:\Users\Mia\AppData\Local\Adobe
2021-08-18 18:31 - 2021-08-18 18:31 - 000000000 ____D C:\Users\Mia\AppData\Local\Comms
2021-08-18 18:19 - 2021-08-18 18:20 - 000000000 ____D C:\Users\Mia\AppData\Local\CrashDumps
2021-08-18 18:18 - 2021-08-18 18:18 - 000000000 ____D C:\Users\Mia\AppData\Local\Publishers
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\VirtualStore
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\D3DSCache
2021-08-18 18:17 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\AVAST Software
2021-08-18 18:16 - 2021-08-18 18:41 - 000000000 ____D C:\Users\Mia\AppData\Local\Packages
2021-08-18 18:16 - 2021-08-18 18:39 - 000000000 ____D C:\Users\Mia\AppData\Roaming\Adobe
2021-08-18 18:16 - 2021-08-18 18:28 - 000000000 __SHD C:\Users\Mia\IntelGraphicsProfiles
2021-08-18 18:16 - 2021-08-18 18:19 - 000000000 ____D C:\Users\Mia
2021-08-18 18:16 - 2021-08-18 18:17 - 000000000 ____D C:\Users\Mia\AppData\Local\ConnectedDevicesPlatform
2021-08-18 18:16 - 2021-08-18 18:16 - 000000020 ___SH C:\Users\Mia\ntuser.ini
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Reciente
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Plantillas
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Mis documentos
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Menú Inicio
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Impresoras
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Entorno de red
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mis vídeos
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mis imágenes
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Documents\Mi música
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Datos de programa
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\Configuración local
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Historial
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Datos de programa
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 _SHDL C:\Users\Mia\AppData\Local\Archivos temporales de Internet
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 ____D C:\Users\Mia\AppData\LocalLow\Intel
2021-08-18 18:16 - 2021-08-18 18:16 - 000000000 ____D C:\Users\Mia\AppData\Local\Google
2021-08-18 18:16 - 2021-08-07 02:31 - 000000000 ___RD C:\Users\Mia\OneDrive
2021-08-18 18:03 - 2021-08-18 18:03 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-08-18 18:02 - 2021-08-18 18:02 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-08-18 17:40 - 2021-08-18 17:41 - 007333288 _____ (Tweaking.com) C:\Users\Tirado\Downloads\tweaking.com_registry_backup_setup.exe
2021-08-17 23:23 - 2021-08-18 00:03 - 1509808241 _____ C:\Users\Tirado\Downloads\The.Departed.2006.lati.mp4
2021-08-17 23:19 - 2021-08-18 02:37 - 2053006465 _____ C:\Users\Tirado\Downloads\Goodfellas.1990.lati.mp4
2021-08-17 22:45 - 2021-08-18 00:16 - 1859304310 _____ C:\Users\Tirado\Downloads\Casino.1995.lati.mp4
2021-08-17 20:24 - 2021-08-17 20:24 - 000000552 _____ C:\Users\Tirado\Documents\cc_20210817_202404.reg
2021-08-17 20:21 - 2021-08-17 20:21 - 000002702 _____ C:\Users\Tirado\Documents\cc_20210817_202133.reg
2021-08-17 20:20 - 2021-08-17 20:20 - 000049844 _____ C:\Users\Tirado\Documents\cc_20210817_202021.reg
2021-08-17 19:59 - 2021-09-02 05:35 - 000000000 ____D C:\Program Files\CCleaner
2021-08-17 19:59 - 2021-08-17 19:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-08-17 19:59 - 2021-08-17 19:59 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-08-17 19:59 - 2021-08-17 19:59 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-08-17 19:59 - 2021-08-17 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-08-17 19:23 - 2021-08-17 19:23 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-17 19:23 - 2021-08-17 19:23 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-17 19:22 - 2021-08-18 18:11 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-08-17 19:22 - 2021-08-17 19:21 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-08-17 19:22 - 2021-08-17 19:21 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-08-17 19:20 - 2021-08-17 19:20 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-10 17:22 - 2021-08-10 17:22 - 000738411 _____ C:\Users\Tirado\Desktop\reel prueba 2.mp4
2021-08-10 17:09 - 2021-08-10 17:09 - 001829515 _____ C:\Users\Tirado\Desktop\reel prueba 1.mp4
2021-08-06 18:54 - 2021-08-06 18:54 - 000065908 _____ C:\Users\Tirado\Downloads\Mia Bella Romero CV (1).pdf
2021-08-06 18:12 - 2021-08-06 18:12 - 082496826 _____ C:\Users\Tirado\Desktop\Mia Romero-Editor demo reel .mp4
2021-08-06 18:06 - 2021-08-06 18:06 - 000212548 _____ C:\Users\Tirado\Desktop\reel Mia_work in progress Copy.prproj
2021-08-06 18:06 - 2021-08-06 18:06 - 000212546 _____ C:\Users\Tirado\Desktop\reel Mia_1 Copy.prproj
2021-08-05 22:06 - 2021-08-05 22:06 - 082510454 _____ C:\Users\Tirado\Desktop\Mia Romero- Editor demo reel.mp4
2021-08-05 21:58 - 2021-08-28 02:15 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Auto-Save
2021-08-05 21:58 - 2021-08-19 20:26 - 000213210 _____ C:\Users\Tirado\Desktop\reel Mia_1.prproj
2021-08-05 20:12 - 2021-08-05 20:12 - 000659594 _____ C:\Users\Tirado\Downloads\MIA.mov
2021-08-05 18:23 - 2021-08-05 18:23 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-08-05 17:59 - 2021-08-10 16:59 - 000001299 _____ C:\Users\Tirado\Desktop\Adobe Premiere Pro 2020.lnk
2021-08-05 17:59 - 2021-08-05 17:59 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2021-08-05 17:08 - 2021-08-05 17:08 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2019.lnk
2021-08-05 17:06 - 2021-08-05 17:06 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2021-08-05 16:59 - 2021-08-05 17:22 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-08-05 16:59 - 2021-08-05 17:22 - 000001352 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2021-08-05 16:28 - 2021-08-05 16:28 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk
2021-08-05 16:26 - 2021-08-05 16:23 - 005887488 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\DataExchangeHost.exe
2021-08-05 16:25 - 2021-08-05 16:24 - 001035776 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\LaunchTM.exe
2021-08-05 16:23 - 2021-08-17 19:49 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Cached files
2021-08-05 16:20 - 2021-08-05 16:20 - 000000000 ____D C:\Program Files (x86)\Adobe]
2021-08-05 03:04 - 2021-08-20 00:44 - 000000000 ____D C:\Users\Tirado\Desktop\Icarly
2021-08-05 03:03 - 2021-08-05 03:11 - 000000000 ____D C:\Users\Tirado\Desktop\Gossip girl
2021-08-05 03:02 - 2021-08-05 04:27 - 1752671305 _____ C:\Users\Tirado\Downloads\iCarly.2021.S01E05.HDR.2160p.WEB.H265-GGWP.mkv
2021-08-05 00:54 - 2021-08-17 22:22 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-08-05 00:53 - 2021-08-31 23:12 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-03 18:54 - 2021-08-03 18:54 - 000065908 _____ C:\Users\Tirado\Downloads\Mia Bella Romero CV .pdf
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-09-02 05:41 - 2021-06-27 23:08 - 001677940 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-02 05:41 - 2019-12-07 11:03 - 000749562 _____ C:\WINDOWS\system32\perfh00A.dat
2021-09-02 05:41 - 2019-12-07 11:03 - 000145368 _____ C:\WINDOWS\system32\perfc00A.dat
2021-09-02 05:41 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-02 05:38 - 2021-05-07 18:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-02 05:33 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-02 05:32 - 2020-04-22 11:19 - 000000000 __SHD C:\Users\Tirado\IntelGraphicsProfiles
2021-09-02 05:31 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-02 05:31 - 2020-09-19 07:01 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-02 05:31 - 2020-04-22 11:19 - 000000000 ____D C:\Intel
2021-09-02 05:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-09-02 05:28 - 2019-12-07 05:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-02 05:23 - 2020-09-27 08:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-01 15:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-01 03:53 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-31 05:15 - 2021-06-27 22:55 - 000000000 ____D C:\Users\Tirado
2021-08-30 16:25 - 2021-05-07 15:53 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-30 02:12 - 2020-12-13 00:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2021-08-30 01:34 - 2020-04-22 11:15 - 000000000 ___RD C:\Users\Tirado\OneDrive
2021-08-30 00:28 - 2021-05-13 19:49 - 000000000 ____D C:\Program Files\Microsoft Office
2021-08-29 23:49 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-29 23:14 - 2020-09-27 08:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-29 23:14 - 2020-09-27 08:53 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-28 02:53 - 2021-05-07 15:56 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\obs-studio
2021-08-28 02:01 - 2021-02-11 15:35 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Audio Previews
2021-08-28 02:01 - 2020-11-12 17:15 - 000000000 ____D C:\Users\Tirado\Desktop\Adobe Premiere Pro Video Previews
2021-08-26 22:11 - 2021-05-07 18:53 - 000000000 ____D C:\Users\Tirado\AppData\Local\D3DSCache
2021-08-26 20:56 - 2021-05-07 18:06 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-08-26 20:56 - 2020-04-22 14:35 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-26 20:56 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-08-26 07:47 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-08-26 07:23 - 2021-05-07 18:24 - 000000000 ____D C:\Users\Tirado\AppData\Local\BitTorrentHelper
2021-08-26 07:22 - 2021-06-27 21:09 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\uTorrent
2021-08-26 07:10 - 2021-05-07 15:33 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Adobe
2021-08-26 03:17 - 2020-04-22 17:56 - 000000000 ____D C:\Users\Tirado\Documents\Adobe
2021-08-26 03:07 - 2021-05-07 18:53 - 000000000 ____D C:\Program Files\Adobe
2021-08-26 02:49 - 2021-05-07 18:56 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-08-25 00:21 - 2021-05-07 15:33 - 000000000 ____D C:\Users\Tirado\AppData\Local\Packages
2021-08-25 00:13 - 2020-09-12 10:26 - 000000000 ____D C:\Users\Tirado\Desktop\recortes
2021-08-24 02:55 - 2021-05-13 20:06 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-08-23 03:55 - 2021-05-13 22:10 - 000000000 ____D C:\Users\Tirado\AppData\Local\CrashDumps
2021-08-23 03:10 - 2021-06-27 23:18 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-08-23 03:10 - 2021-05-13 20:06 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-22 03:57 - 2020-11-04 15:08 - 000000000 ____D C:\Users\Tirado\Desktop\vane cumple
2021-08-22 03:45 - 2021-05-07 18:40 - 000000000 ____D C:\Users\Tirado\AppData\Local\Adobe
2021-08-22 03:38 - 2020-04-22 17:55 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-08-22 03:35 - 2021-05-07 18:40 - 000000000 ____D C:\ProgramData\Adobe
2021-08-22 03:32 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-22 03:25 - 2021-05-07 18:48 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-08-22 02:56 - 2021-06-30 23:12 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Avid
2021-08-21 05:49 - 2021-06-30 23:12 - 000000000 ____D C:\Program Files\Avid
2021-08-21 05:49 - 2020-11-19 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid
2021-08-21 05:21 - 2020-09-27 08:50 - 000465656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-21 05:00 - 2021-06-30 23:12 - 000000000 ____D C:\Program Files\Common Files\Avid
2021-08-21 04:09 - 2021-07-01 00:13 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2021-08-21 04:08 - 2019-04-11 21:02 - 000033544 _____ C:\WINDOWS\system32\Drivers\iLokDrvr.sys
2021-08-21 04:07 - 2021-07-01 00:11 - 000000000 ____D C:\Program Files\Bonjour
2021-08-21 04:07 - 2021-07-01 00:11 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-08-20 15:53 - 2020-09-27 08:54 - 000000000 ____D C:\ProgramData\Packages
2021-08-20 00:46 - 2021-07-10 04:49 - 000000000 ____D C:\Users\Tirado\Downloads\peliculas
2021-08-20 00:43 - 2021-06-25 23:53 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\vlc
2021-08-19 22:19 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-19 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-08-19 21:48 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-19 21:46 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-19 02:11 - 2021-06-30 18:42 - 000002390 _____ C:\Users\Tirado\Desktop\Mia Bella (mia) - Chrome.lnk
2021-08-19 01:17 - 2020-05-15 23:45 - 000000000 ____D C:\Users\Tirado\Documents\Blocs de notas de OneNote
2021-08-18 22:36 - 2020-11-17 15:01 - 000000000 ____D C:\Users\Tirado\Desktop\Drake & Josh
2021-08-18 19:13 - 2020-05-30 03:50 - 000000000 ____D C:\Users\Tirado\AppData\LocalLow\Temp
2021-08-18 18:31 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-08-18 18:20 - 2021-07-05 03:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-18 18:13 - 2021-07-05 03:43 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-18 17:48 - 2021-06-27 21:19 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\uTorrent Web
2021-08-17 22:45 - 2021-06-27 22:03 - 000001884 _____ C:\Users\Tirado\Desktop\uTorrent Web.lnk
2021-08-17 22:45 - 2020-05-04 04:19 - 000001870 _____ C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2021-08-17 19:22 - 2021-06-29 01:46 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-17 19:22 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-08-17 19:11 - 2021-07-28 18:50 - 000000000 ____D C:\ProgramData\Norton
2021-08-17 19:11 - 2021-06-27 22:55 - 000000000 ____D C:\Users\postgres
2021-08-17 19:10 - 2021-07-28 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NortonLifeLock
2021-08-16 17:55 - 2020-09-27 08:53 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-16 17:55 - 2020-09-27 08:53 - 000003456 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-07 02:31 - 2021-04-06 15:01 - 000000000 ___RD C:\Users\postgres\OneDrive
2021-08-07 02:31 - 2020-11-02 01:43 - 000000000 ___RD C:\Users\Default\OneDrive
2021-08-05 18:23 - 2021-05-07 15:46 - 000000000 ____D C:\Users\Tirado\AppData\Roaming\Zoom
2021-08-05 18:23 - 2020-12-15 03:56 - 000001934 _____ C:\Users\Tirado\Desktop\Zoom.lnk
2021-08-05 17:02 - 2021-07-09 01:01 - 000000000 ____D C:\Users\Tirado\Downloads\One.Day.at.Disney.Shorts.S01.COMPLETE.720p.DSNP.WEBRip.x264-GalaxyTV[TGx]
2021-08-05 00:37 - 2021-08-02 18:10 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-08-05 00:33 - 2021-06-27 23:18 - 000003558 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-05 00:33 - 2021-06-27 23:18 - 000003434 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-05 00:26 - 2021-07-02 01:48 - 000002470 _____ C:\Users\Tirado\Desktop\Stremio.lnk
2021-08-03 17:07 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== Archivos en la raíz de algunos directorios ========
2021-08-21 04:09 - 2021-08-21 04:43 - 000274924 _____ () C:\Users\Tirado\AppData\Roaming\AvidCloudClientServices_Install.log
2021-08-21 04:14 - 2021-08-21 05:50 - 001677782 _____ () C:\Users\Tirado\AppData\Roaming\AvidLink_Install.log
2021-08-21 04:09 - 2021-08-21 04:43 - 000018544 _____ () C:\Users\Tirado\AppData\Roaming\Avid_CCS_Service_Stop.log
2021-08-21 04:26 - 2021-08-21 05:00 - 000004065 _____ () C:\Users\Tirado\AppData\Roaming\Avid_Editor_Transcode_Services_Stop.log
2021-08-05 16:26 - 2021-08-05 16:23 - 005887488 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\DataExchangeHost.exe
2021-08-05 16:25 - 2021-08-05 16:24 - 001035776 _____ (Microsoft Corporation) C:\Users\Tirado\AppData\Roaming\LaunchTM.exe
2021-08-21 04:15 - 2021-08-21 05:15 - 040460306 _____ () C:\Users\Tirado\AppData\Roaming\MediaComposer_Install.log
2021-08-28 02:48 - 2021-08-28 02:48 - 000000015 _____ () C:\Users\Tirado\AppData\Roaming\obs-virtualcam.txt
2021-05-07 18:48 - 2021-07-04 01:14 - 000000615 _____ () C:\Users\Tirado\AppData\Local\oobelibMkey.log
2021-07-17 05:00 - 2021-07-17 05:00 - 000007601 _____ () C:\Users\Tirado\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================
addition.txt
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 01-09-2021
Ejecutado por Tirado (02-09-2021 05:49:13)
Ejecutado desde C:\Users\Tirado\Desktop
Windows 10 Home Versión 21H1 19043.1165 (X64) (2021-06-28 03:19:13)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
(Si una entrada es incluida en el fixlist, será eliminada.)
9364732284504D1AABA9 (S-1-5-21-2879950493-2689463129-398557555-1009 - Limited - Enabled)
Administrador (S-1-5-21-2879950493-2689463129-398557555-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2879950493-2689463129-398557555-1002 - Limited - Disabled)
DE18F2CC239C4BD8AC92 (S-1-5-21-2879950493-2689463129-398557555-1003 - Limited - Enabled)
DefaultAccount (S-1-5-21-2879950493-2689463129-398557555-503 - Limited - Disabled)
Invitado (S-1-5-21-2879950493-2689463129-398557555-501 - Limited - Disabled)
Mia (S-1-5-21-2879950493-2689463129-398557555-1007 - Limited - Enabled) => C:\Users\Mia
postgres (S-1-5-21-2879950493-2689463129-398557555-1006 - Limited - Enabled) => C:\Users\postgres
Tirado (S-1-5-21-2879950493-2689463129-398557555-1001 - Administrator - Enabled) => C:\Users\Tirado
WDAGUtilityAccount (S-1-5-21-2879950493-2689463129-398557555-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\uTorrent) (Version: 3.5.5.46068 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_0) (Version: 18.0 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.5.0.617 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_1_2) (Version: 24.1.2 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0_3) (Version: 14.0.3 - Adobe Inc.)
Adobe Premiere Pro 2021 (HKLM-x32\...\{2B1EBFAA-E2D6-494D-9E24-DA06217F5FA2}) (Version: 1.0.0 - IGI)
Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_2) (Version: 15.2 - Adobe Inc.)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_1) (Version: 13.0.1 - Adobe Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 91.0.10364.115 - Los creadores de Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Avid Cloud Client Services (HKLM\...\{66E7D4F4-F044-428D-A734-59138A626A52}) (Version: 2.4.1.65 - Avid Technology, Inc.)
Avid Link (HKLM\...\{852D24C6-60A0-4822-B05D-A005A6CD2F87}) (Version: 21.6.1.2152 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{93F854EA-DC70-4E33-96B3-BEB62B378BB6}) (Version: 21.6.0.55401 - Avid Technology)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.83 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dell SupportAssist (HKLM\...\{9EF0AEB0-9AD2-40E6-8667-D7520C508941}) (Version: 3.10.3.3 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{900D0BCD-0B86-4DAA-B639-89BE70449569}) (Version: 5.4.1.14954 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{ec40a028-983b-4213-af2c-77ed6f6fe1d5}) (Version: 5.4.1.14954 - Dell Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000110-0210-1034-84C8-B8D95FA3C8C3}) (Version: 21.110.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{4a50fa17-2911-43ed-a2a1-d3a34411e2bb}) (Version: 21.110.2.1 - Intel Corporation) Hidden
Malwarebytes version 4.4.4.126 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.4.126 - Malwarebytes)
ManyCam 7.8.6 (HKLM-x32\...\ManyCam) (Version: 7.8.6 - Visicom Media Inc.)
Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.12253.1 - Waves Audio Ltd.) Hidden
Megacursos 1.1.0 (HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\2f4d73e9-79a8-50cf-a1ef-2e1387c70dcd) (Version: 1.1.0 - Suotta Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.84 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14326.20238 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.150.0725.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Motion Factory (HKLM-x32\...\{64356D78-E83D-4A5D-BC70-CC72B361306E}) (Version: 2.39 - Pixflow Studio)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
PACE License Support Win64 (HKLM\...\{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9107.1 - Realtek Semiconductor Corp.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Sentinel Protection Installer 7.6.9 (HKLM-x32\...\{FF9C78D7-858D-4B49-A4B6-847638353AFE}) (Version: 7.6.9 - SafeNet, Inc.)
Stremio (HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\Stremio) (Version: 4.4.142 - Smart Code Ltd)
Trapcode Suite (HKLM\...\Trapcode Suite v15.1.7) (Version: - Red Giant LLC)
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 4.0.0 - Tweaking.com)
uTorrent Web (HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\utweb) (Version: 1.2.3 - BitTorrent, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\ZoomUMX) (Version: 5.7.4 (804) - Zoom Video Communications, Inc.)
ZXPInstaller (HKLM-x32\...\ZXPInstaller) (Version: - )
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-08-05] (Adobe Systems Incorporated)
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-09-01] (INTEL CORP) [Startup Task]
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.10.6.0_x64__htrsf667h5kn2 [2021-08-30] (Dell Inc)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-08-20] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-08-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-09-01] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-07-17] (Netflix, Inc.)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-ACF8FEE77CBA} -> [Creative Cloud Files] => C:\Users\Tirado\Creative Cloud Files [2021-08-26 03:13]
CustomCLSID: HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
CustomCLSID: HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-05] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-05] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-05] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b31ddd6f2a24807e\OptaneShellExt.dll [2021-02-09] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-05] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-08-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b31ddd6f2a24807e\OptaneShellExt.dll [2021-02-09] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-05] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-08-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\Tirado\Desktop\ForoSpyware.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl
ShortcutWithArgument: C:\Users\Tirado\Desktop\Mia Bella (mia) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Tirado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\ForoSpyware.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl
==================== Módulos cargados (Lista blanca) =============
2018-11-22 05:13 - 2018-11-22 05:13 - 001263104 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\avcodec-57.dll
2018-11-22 05:13 - 2018-11-22 05:13 - 000304128 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\avformat-57.dll
2018-11-22 05:13 - 2018-11-22 05:13 - 000345088 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\avutil-55.dll
2018-03-21 08:28 - 2018-03-21 08:28 - 000134144 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\LIBBZ2.dll
2019-03-07 14:34 - 2019-03-07 14:34 - 000015872 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\libEGL.DLL
2019-03-07 14:34 - 2019-03-07 14:34 - 002785792 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\libGLESv2.dll
2019-01-22 04:53 - 2019-01-22 04:53 - 000765952 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\live555.dll
2019-02-07 03:55 - 2019-02-07 03:55 - 001940480 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\opencv_core2413.dll
2019-02-07 03:55 - 2019-02-07 03:55 - 002009600 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\opencv_highgui2413.dll
2019-02-07 03:55 - 2019-02-07 03:55 - 001618432 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\opencv_imgproc2413.dll
2019-02-07 03:55 - 2019-02-07 03:55 - 000507392 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\opencv_objdetect2413.dll
2019-02-07 03:55 - 2019-02-07 03:55 - 000308736 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\opencv_video2413.dll
2018-11-22 05:13 - 2018-11-22 05:13 - 000102400 _____ () [Archivo no firmado] C:\Program Files (x86)\ManyCam\swresample-2.dll
2019-08-30 11:49 - 2019-08-30 11:49 - 004942848 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryCog.acf
2019-08-30 11:46 - 2019-08-30 11:46 - 002111488 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryInterfaceCog.acf
2019-08-30 11:40 - 2019-08-30 11:40 - 004502528 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetCog.acf
2019-08-30 11:43 - 2019-08-30 11:43 - 002041856 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetInterfaceCog.acf
2019-08-30 11:47 - 2019-08-30 11:47 - 002012160 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\CompressionCog.acf
2019-08-30 11:47 - 2019-08-30 11:47 - 001701376 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\FileMgrCog.acf
2019-08-30 11:39 - 2019-08-30 11:39 - 004383744 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\NetworkInterfaceCog.acf
2019-08-30 11:44 - 2019-08-30 11:44 - 002758144 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncCog.acf
2019-08-30 11:45 - 2019-08-30 11:45 - 002073088 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncInterfaceCog.acf
2017-04-03 22:16 - 2017-04-03 22:16 - 000098304 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\PXFPlugin.acf
2019-08-30 11:41 - 2019-08-30 11:41 - 001780224 _____ () [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\TransportCog.acf
2021-06-13 22:59 - 2021-06-13 22:59 - 008450560 _____ () [Archivo no firmado] c:\program files\avid\editor transcode\transcodeservice\jre\bin\server\jvm.dll
2015-03-16 18:34 - 2015-03-16 18:34 - 000013824 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2017-04-03 22:13 - 2017-04-03 22:13 - 000099840 _____ (Avid Technology, Inc.) [Archivo no firmado] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\ACFString.avx
2020-10-12 04:26 - 2020-10-12 04:26 - 004140032 _____ (Google Inc.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\pdfium.dll
2019-04-11 02:10 - 2019-04-11 02:10 - 000264192 _____ (Home) [Archivo no firmado] C:\Program Files (x86)\ManyCam\P7x32.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000153088 _____ (N/A) [Archivo no firmado] c:\program files\avid\editor transcode\transcodeservice\jre\bin\java.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000030720 _____ (N/A) [Archivo no firmado] C:\Program Files\Avid\Editor Transcode\TranscodeService\jre\bin\management.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000089600 _____ (N/A) [Archivo no firmado] C:\Program Files\Avid\Editor Transcode\TranscodeService\jre\bin\net.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000054272 _____ (N/A) [Archivo no firmado] C:\Program Files\Avid\Editor Transcode\TranscodeService\jre\bin\nio.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000128512 _____ (N/A) [Archivo no firmado] C:\Program Files\Avid\Editor Transcode\TranscodeService\jre\bin\sunec.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000025600 _____ (N/A) [Archivo no firmado] C:\Program Files\Avid\Editor Transcode\TranscodeService\jre\bin\sunmscapi.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000043008 _____ (N/A) [Archivo no firmado] c:\program files\avid\editor transcode\transcodeservice\jre\bin\verify.dll
2021-06-13 22:59 - 2021-06-13 22:59 - 000071680 _____ (N/A) [Archivo no firmado] c:\program files\avid\editor transcode\transcodeservice\jre\bin\zip.dll
2021-08-05 14:17 - 2021-08-05 14:17 - 001638912 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files\Dell\SupportAssistAgent\bin\x64\SQLite.Interop.dll
2018-12-01 09:40 - 2018-12-01 09:40 - 000911698 _____ (SQLite Development Team) [Archivo no firmado] C:\Program Files (x86)\ManyCam\sqlite3.dll
2018-12-26 00:19 - 2018-12-26 00:19 - 001241600 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\ManyCam\LIBEAY32.dll
2018-12-26 00:19 - 2018-12-26 00:19 - 000281600 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\ManyCam\SSLEAY32.dll
2021-08-26 06:01 - 2021-08-26 06:00 - 002080256 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files\Red Giant\Services\LIBEAY32.dll
2019-03-07 15:50 - 2019-03-07 15:50 - 000047104 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\audio\qtaudio_windows.dll
2019-03-07 14:46 - 2019-03-07 14:46 - 000025600 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qgif.dll
2019-03-07 15:09 - 2019-03-07 15:09 - 000034816 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qicns.dll
2019-03-07 14:46 - 2019-03-07 14:46 - 000025600 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qico.dll
2019-03-07 14:48 - 2019-03-07 14:48 - 000364032 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qjpeg.dll
2019-03-07 15:08 - 2019-03-07 15:08 - 000021504 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qsvg.dll
2019-03-07 15:09 - 2019-03-07 15:09 - 000019968 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qtga.dll
2019-03-07 15:09 - 2019-03-07 15:09 - 000331776 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qtiff.dll
2019-03-07 15:09 - 2019-03-07 15:09 - 000019456 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qwbmp.dll
2019-03-07 15:09 - 2019-03-07 15:09 - 000414720 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\imageformats\qwebp.dll
2019-03-07 14:49 - 2019-03-07 14:49 - 001190912 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\platforms\qwindows.dll
2021-06-01 07:41 - 2021-06-01 07:41 - 005087232 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Core.dll
2019-03-07 14:40 - 2019-03-07 14:40 - 005342720 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Gui.dll
2019-03-07 15:48 - 2019-03-07 15:48 - 000576512 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Multimedia.dll
2019-03-07 14:40 - 2019-03-07 14:40 - 001042432 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Network.dll
2019-03-07 16:02 - 2019-03-07 16:02 - 000260096 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Positioning.dll
2019-03-07 14:45 - 2019-03-07 14:45 - 000267776 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5PrintSupport.dll
2019-03-07 15:35 - 2019-03-07 15:35 - 003362304 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Qml.dll
2019-03-07 15:27 - 2019-03-07 15:27 - 003179520 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Quick.dll
2019-03-07 15:29 - 2019-03-07 15:29 - 000059904 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5QuickWidgets.dll
2019-03-07 14:36 - 2019-03-07 14:36 - 000156672 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Sql.dll
2019-03-07 15:08 - 2019-03-07 15:08 - 000264192 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Svg.dll
2019-03-07 15:48 - 2019-03-07 15:48 - 000090112 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WebChannel.dll
2019-03-07 18:45 - 2019-03-07 18:45 - 000302080 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WebEngine.dll
2019-03-07 18:41 - 2019-03-07 18:41 - 057156608 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WebEngineCore.dll
2019-03-07 18:47 - 2019-03-07 18:47 - 000186880 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WebEngineWidgets.dll
2019-03-07 15:46 - 2019-03-07 15:46 - 000125440 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WebSockets.dll
2019-03-07 14:44 - 2019-03-07 14:44 - 004532224 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Widgets.dll
2019-03-07 15:58 - 2019-03-07 15:58 - 000444416 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5WinExtras.dll
2019-03-07 14:36 - 2019-03-07 14:36 - 000147456 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\Qt5Xml.dll
2019-03-07 14:47 - 2019-03-07 14:47 - 000892416 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files (x86)\ManyCam\sqldrivers\qsqlite.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer (Lista blanca) ==========
URLSearchHook: [S-1-5-21-2879950493-2689463129-398557555-1007] ATENCIÓN => No se encuentra URLSearchHook predeterminado
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-06-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-30] (Microsoft Corporation -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\localhost -> localhost
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2021-05-07 15:46 - 2021-08-19 02:08 - 000000852 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-2879950493-2689463129-398557555-1006\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: XblGameSave => 3
MSCONFIG\Services: XboxGipSvc => 3
HKLM\...\StartupApproved\StartupFolder: => "WSAppHelper.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WSAndroidAppHelper.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\StartupFolder: => "Enviar a OneNote.lnk"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "sws"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "btweb"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "ServicesDim32.exe"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "Services64System.exe"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-2879950493-2689463129-398557555-1001\...\StartupApproved\Run: => "ut"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{34842E96-74C1-4B10-AAB6-F009E52419DA}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{693BFAC2-F784-43A8-8806-A5B2EC99B8D3}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7C1D5A92-A05F-4CAF-81A8-5E04A9B82ACE}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{3E3D3809-7E31-469E-9DAB-6A94A8DE9D39}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BC17B37D-4B50-4002-B5E0-64454A0A9A54}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{12BE04E5-7091-46F0-8AAC-892DB2BB9387}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9A10EFE3-5652-4C68-B81F-8E88A640A93F}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A9D8F045-5761-4F2D-8BDE-EBB5AAFA1005}] => (Allow) C:\Users\Tirado\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{B0D1B9EE-0A9B-4B8E-AA31-4AA158CB3C55}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe => Ningún archivo
FirewallRules: [{6138EBE3-3944-46FA-BE43-06E2EE333014}] => (Allow) C:\Users\Tirado\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{9A08BAE1-1E54-4D72-AB18-22F869F52788}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E22C48A9-9580-48DF-9776-CC8A479CAE04}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{37679928-DB74-4D0C-A288-33A77EC0DC4B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BD897278-E503-4E2B-80BD-57B41F0F9137}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F16DA006-9461-476C-A8FC-381E9A5D0356}] => (Allow) C:\Users\Tirado\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3765A2E1-5E98-440D-947A-8A55A5EFB5FB}] => (Allow) C:\Users\Tirado\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{32EABFDC-9791-4AA2-8138-062830568F75}C:\users\tirado\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\tirado\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime)
FirewallRules: [UDP Query User{0635E0AF-DCBB-4DEB-A583-0BD50208F04C}C:\users\tirado\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\tirado\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime)
FirewallRules: [TCP Query User{23952725-C783-400A-9737-39146FA1B561}C:\programdata\regid.1993-06.com.microsoft\svrwebui.exe] => (Allow) C:\programdata\regid.1993-06.com.microsoft\svrwebui.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [UDP Query User{3016619B-5ADE-4482-A1FD-1616C8A133C6}C:\programdata\regid.1993-06.com.microsoft\svrwebui.exe] => (Allow) C:\programdata\regid.1993-06.com.microsoft\svrwebui.exe (NetSupport Ltd -> NetSupport Ltd)
FirewallRules: [{2858F0E9-139F-4316-93EC-C20CA5354D72}] => (Allow) C:\Users\Tirado\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{885095A7-7DE4-430D-B3DD-BE30ADD45325}] => (Allow) C:\Users\Tirado\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{56CD97CE-7422-4404-B905-D7FC2BB401DC}] => (Allow) C:\Users\Tirado\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8072F2C8-CEAF-4800-A50A-6C67E2A3E86B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C97D0B8F-4EA6-4B0E-8584-E659AC760703}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet Canada, Inc. -> SafeNet, Inc)
FirewallRules: [{5CA86607-B1BC-430E-ABD9-DB0F838548B3}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet Canada, Inc. -> SafeNet, Inc)
FirewallRules: [{4CDC4977-4E15-45CD-8580-45F69DBEC537}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet Canada, Inc. -> SafeNet, Inc.)
FirewallRules: [{F005115A-08B6-4DB6-9A6C-C55B6A10879A}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet Canada, Inc. -> SafeNet, Inc.)
FirewallRules: [{47AE3A88-D317-427A-9929-1E00A160C830}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3998D522-2787-4DCD-9974-B6545BF81244}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{855ED301-4920-4631-9958-7E8ACBF00A06}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4BE0F8EF-7679-4B16-86ED-9852014D8EAC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CAD6C8CA-758A-4032-9B01-6BD0E94659F9}] => (Allow) C:\Program Files\Avid\Cloud Client Services\Hub.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{24C0778B-7189-4CE6-8B4B-AE1372F5D587}] => (Allow) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [TCP Query User{10AF820D-741E-4638-8D17-AC7165B198A0}C:\program files\avid\avid link\avidappmanhelper.exe] => (Allow) C:\program files\avid\avid link\avidappmanhelper.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [UDP Query User{119B0B88-0E93-4F5B-A4DC-02A713DCA32E}C:\program files\avid\avid link\avidappmanhelper.exe] => (Allow) C:\program files\avid\avid link\avidappmanhelper.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{358A5F9D-12DE-4499-A085-155AED154B53}] => (Allow) C:\Program Files\Avid\Avid Link\jre\bin\java.exe
FirewallRules: [{BEA5369C-0E13-4C8A-81F2-4F6ACB9136B6}] => (Allow) C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{C6A75826-919B-40C4-9051-730D1EC50DA4}] => (Allow) C:\Program Files\Avid\Avid Link\AvidAppManHelper.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [TCP Query User{3F9FAA19-D9BD-4BC0-AA59-678FBB3D90C6}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [UDP Query User{5007AC93-609C-4EE3-99C8-AEE6D4D37E98}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [{E7031070-5255-4876-AA43-3F15C835F4CE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{48F8382F-21BB-4144-9A9B-7BB35FA3DE4F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{80B23C6E-780C-4610-B256-0C970FA15E11}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{87EA51E1-6778-4E44-8F73-2E61381ADC7E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF126575-1898-4371-B2FA-07FBF48E13B6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Puntos de Restauración =========================
26-08-2021 06:09:40 Installed Motion Factory.
26-08-2021 06:21:09 Installed Motion Factory.
26-08-2021 08:16:03 Instalador de Módulos de Windows
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (09/02/2021 05:51:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa WinStore.App.exe (versión 0.0.0.0) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.
Id. de proceso: 2adc
Hora de Inicio: 01d79fdfe22a7af2
Hora de finalización: 4294967295
Ruta de la aplicación: C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
Id. de informe: a554ccbc-38ef-401c-a899-1344cbc3ab94
Nombre completo del paquete con errores: Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe
Id. de la aplicación relativa al paquete con errores: App
Tipo de bloqueo: Activation
Error: (08/31/2021 01:34:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15562
Error: (08/31/2021 01:34:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15562
Error: (08/31/2021 01:34:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/30/2021 04:27:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
.
Operación:
Ejecutando operación asincrónica
Contexto:
Estado actual: DoSnapshotSet
Error: (08/30/2021 02:47:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 77594
Error: (08/30/2021 02:47:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 77594
Error: (08/30/2021 02:47:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Errores del sistema:
=============
Error: (08/31/2021 02:50:37 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio NcbService se cerró con el siguiente error:
Uno de los dispositivos conectados al sistema no funciona.
Error: (08/31/2021 02:50:16 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 01:25:52 a. m. del 31/08/2021 resultó inesperado.
Error: (08/30/2021 05:26:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-K4U02BT)
Description: El servidor Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe!App no se registró con DCOM dentro del tiempo de espera requerido.
Error: (08/30/2021 02:07:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Dell Hardware Support no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (08/30/2021 02:07:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (60000 ms) para la conexión con el servicio Dell Hardware Support.
Error: (08/30/2021 02:07:16 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-K4U02BT)
Description: El servidor {94269C4E-071A-4116-90E6-52E557067E4E} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (08/30/2021 02:06:34 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Dell Data Vault Processor no respondió después de iniciar.
Error: (08/30/2021 01:58:44 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 01:50:31 a. m. del 30/08/2021 resultó inesperado.
Windows Defender:
================
Date: 2021-09-01 04:27:15
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {5E17D4E8-E964-4B95-9ADB-B02C938B4AD4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2021-09-01 03:50:31
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {2BCDBC7F-9E14-43BD-8824-4892A14C619B}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2021-09-01 01:14:28
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {5D78AA46-FCB8-4E3B-92F0-17E0219FDD52}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2021-09-01 00:01:15
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {27DA509E-E29D-4AFF-8A42-8C3A675E087E}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2021-08-30 18:22:17
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {F3F95667-8DBC-4573-9093-97493552E9FD}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2021-09-02 05:32:06
Description:
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80070057
Descripción del error: El parámetro no es correcto.
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2021-09-01 20:33:45
Description:
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80070057
Descripción del error: El parámetro no es correcto.
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2021-08-31 23:29:05
Description:
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80070057
Descripción del error: El parámetro no es correcto.
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2021-08-31 02:50:57
Description:
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80070057
Descripción del error: El parámetro no es correcto.
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
Date: 2021-08-30 01:59:37
Description:
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80070057
Descripción del error: El parámetro no es correcto.
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.
CodeIntegrity:
===============
Date: 2021-09-02 05:53:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
==================== Información de la memoria ===========================
BIOS: Dell Inc. 1.3.1 10/05/2020
Placa base: Dell Inc. 0D65FD
Procesador: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Porcentaje de memoria en uso: 47%
RAM física total: 11941.62 MB
RAM física disponible: 6258.39 MB
Virtual total: 14329.62 MB
Virtual disponible: 7671.05 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:930.28 GB) (Free:124.02 GB) NTFS
\\?\Volume{0dc7ade0-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0DC7ADE0)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================
Hola nuevamente,
Disculpa la demora pero ya revise tus reportes. Te comento que parece que podrían haber restos de comodo antivirus por lo que recomiendo que ejecutes su herramienta de desinstalación antes de proseguir:
Adicional a esto ve archivos de Norton Utilities Premium pero no me parece verlo en los programas instalados así que pregunto: ¿Conoces y usas este software?
Ya ejecutada la herramienta de desinstalación realiza lo siguiente:
Crea otra copia de seguridad del registro con Registry Backup
Deshabilita nuevamente tu antivirus: ¿Cómo deshabilitar temporalmente su Antivirus?
En el equipo, con los demás programas cerrados abra el notepad; puede abrirlo en la barra de búsqueda de windows y escribiendo notepad.exe
Posteriormente, copie y pegue este script de reparación dentro del Notepad comenzando en Start y terminando en End:
Start
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
Task: {9DE50C02-0DA2-4027-A447-A2D89CF0D3DD} - System32\Tasks\ioloAVDefsDownloader => C:\Program Files\Norton Utilities Premium\SSDefs.exe
Task: {C73370B6-4D73-45EB-AA8A-ED679BBC385C} - System32\Tasks\ioloSystemShield => C:\Program Files\Norton Utilities Premium\ioloSSTray.exe
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Ningún archivo]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Ningún archivo]
S3 MpKsla379faf1; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B464E711-A300-462A-8930-8A9CEDEBFEF2}\MpKslDrv.sys [X]
AV: COMODO Antivirus (Disabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}.
CustomCLSID: HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Ningún archivo
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
EmptyTemp:
End- Vaya a Archivo y selecciona Guardar Como.
- En la parte de Codificación eliga Unicode o UTF8 según le de la opción.
- Guardelo bajo el nombre de fixlist.txt en el escritorio al igual que FRST. Esto es muy importante.
¡
- Ejecute Frst.exe. y presione el botón Fix / Corregir
- Espere pacientemente a que termine y no use el equipo. Al terminar el equipo podría reiniciarse
- La Herramienta guardara el reporte en su escritorio (Fixlog.txt).
Nos traerías:
- El reporte de fixlog
- Comentarios de si tuviste problema con la herramienta de desinstalación de Comodo y tus comentarios sobre Norton.
- Comentarios de como sigue el sistema.
Saludos
Hola el equipo sigue igual y no recuerdo haber descargado ningun app que se llame Norton, seguramente se instalo con otra app. Estuve buscandola en los archivos del equipo pero no encuentro nada.
SystemRestore: On => completado
El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9DE50C02-0DA2-4027-A447-A2D89CF0D3DD}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DE50C02-0DA2-4027-A447-A2D89CF0D3DD}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\ioloAVDefsDownloader => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ioloAVDefsDownloader" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C73370B6-4D73-45EB-AA8A-ED679BBC385C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C73370B6-4D73-45EB-AA8A-ED679BBC385C}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\ioloSystemShield => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ioloSystemShield" => eliminado correctamente
HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect => eliminado correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3 => eliminado correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9 => eliminado correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect => eliminado correctamente
HKLM\System\CurrentControlSet\Services\MpKsla379faf1 => eliminado correctamente
MpKsla379faf1 => servicio eliminado correctamente
"AV: COMODO Antivirus (Disabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}." => no encontrado
HKU\S-1-5-21-2879950493-2689463129-398557555-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13} => eliminado correctamente
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.
Adaptador de Ethernet Ethernet:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 1:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 2:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Wi-Fi:
Sufijo DNS espec¡fico para la conexi¢n. . :
V¡nculo: direcci¢n IPv6 local. . . : fe80::5807:962c:5345:8704%12
Direcci¢n IPv4. . . . . . . . . . . . . . : 10.0.0.227
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : 10.0.0.1
Adaptador de Ethernet Conexi¢n de red Bluetooth:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
Unable to cancel {3DE27B85-F088-433C-A9C0-349CDBDCB96F}.
Unable to cancel {6F10CD0A-F73D-4E67-975E-F5EACA910E27}.
0 out of 2 jobs canceled.
========= Final de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 55041062 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 11613614 B
Edge => 0 B
Chrome => 204177367 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2974 B
NetworkService => 35614190 B
Tirado => 415724016 B
postgres => 415724016 B
Mia => 415724016 B
RecycleBin => 17042345 B
EmptyTemp: => 1.5 GB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 02:50:17 ====
Hola nuevamente.
Siendo ese el caso realiza lo realiza lo siguiente (si necesitas imprime, saca captura o revisa las siguientes instrucciones desde tu móvil)::
Repite los pasos anteriores de mi respuesta (#17) con FRST pero ahora utiliza este texto para realizar el script:
Start
CreateRestorePoint:
CloseProcesses:
C:\Program Files\Norton Utilities Premium
C:\ProgramData\Norton
Reboot:
End
Descarga y descomprime Windows Repair Portable en cualquier lugar de fácil acceso.
Inicia en modo seguro: Iniciar el PC en modo seguro
Abre la carpeta de Windows Repair e inicia Repair_Windows. Espera a que inicie y ve a la pestaña Repairs-Main y selecciona la opción Open Repairs.
- 01 - Reset Registry Permissions
- 02 - Reset File Permissions
- 03 - Reset Service Permissions
- 04 - Register SystemFiles
- 05 - Repair WMI
- 06 - Repair Windows Firewall
- 10 - Remove Policies set by Infections
- 14 - Remove Temp Files
- 16 - Repair Windows Update
- 18 - Repair Volume Shadow Copy Service
- 25 - Restore Important Windows Services
- 26 - Set Windows Services to default Startup
- 31 - Restore UAC (User Account Control) Settings
- 32 - Repair Performance Counters
Ya con esto seleccionado das en Start Repairs. Espera pacientemente a que termine. Una vez que lo haga reinicia en modo normal.
Nos traerías el nuevo reporte de FixLog junto con tus comentarios de como te fue y como sigue el sistema.
Saludos