Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 05-02-2022 Ejecutado por HUGO PAVEZ (administrador) sobre DESKTOP-I0NO1KD (Dell Inc. Inspiron 5400 AIO) (07-02-2022 21:40:57) Ejecutado desde C:\Users\HUGO PAVEZ\Desktop Perfiles cargados: HUGO PAVEZ Plataforma: Microsoft Windows 10 Home Single Language Versión 21H2 19044.1466 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (DroidMonkey Apps, LLC -> ) D:\KeePassXC\keepassxc-proxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiClient.exe <3> (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe (Glarysoft LTD -> Glarysoft Ltd) D:\Glary Utilities\GUBootService.exe (Glarysoft LTD -> Glarysoft Ltd) D:\Glary Utilities\GUPMService.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <25> (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (Learsy) [Archivo no firmado] D:\MuralPix\MpAgent.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mstsc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SnippingTool.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) D:\Descargas\AnyDesk.exe (voidtools -> voidtools) D:\Everything\Everything.exe <2> (www.shadowexplorer.com) [Archivo no firmado] D:\ShadowExplorer\sesvc.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2022-01-17] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [QuickFinder Scheduler] => d:\Corel\WordPerfect Office 2021\Programs\QFSCHD210.EXE [243352 2021-04-29] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [Everything] => D:\Everything\Everything.exe [2262176 2021-12-16] (voidtools -> voidtools) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe [1203952 2020-11-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_b2ae1335863dd30f\WavesSvc64.exe [1776736 2020-10-15] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [MuralPixAgent] => d:\MuralPix\MpAgent.exe [102400 2006-12-30] (Learsy) [Archivo no firmado] HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2022-01-28] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 0 HKLM\...\Policies\Explorer: [NoThumbnailCache] 0 HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2593128 2022-01-26] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => %ProgramFiles%\Windows Mail\wab.exe /Upgrade (Ningún archivo) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2593128 2022-01-26] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => %ProgramFiles%\Windows Mail\wab.exe /Upgrade (Ningún archivo) HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Run: [WPPAgent] => D:\WallPapa\WPPAgent.exe [22016 2009-06-12] (Phoeniixz) [Archivo no firmado] HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Run: [GUDelayStartup] => d:\Glary Utilities\StartupManager.exe [44416 2021-12-26] (Glarysoft LTD -> Glarysoft Ltd) HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Run: [Microsoft Edge Update] => C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\EdgeUpdate\1.3.155.77\MicrosoftEdgeUpdateCore.exe [247696 2022-02-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [NoTrayContextMenu] 0 HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [NoSetTaskbar] 0 HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [NoThumbnailCache] 0 HKU\S-1-5-21-2370890299-1269050725-739441219-1001\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2021-11-12] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-12] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> HKLM\Software\...\Authentication\Credential Provider Filters: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-01-26] ShortcutTarget: AnyDesk.lnk -> D:\Program Files (x86)\AnyDesk\AnyDesk.exe (Ningún archivo) Startup: C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2022-01-27] () <==== ATENCIÓN [cero bytes Archivo/Carpeta] GroupPolicy: Restricción ? <==== ATENCIÓN Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {025BC7BA-0BA9-4E8D-B6E3-FA8547462844} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2370890299-1269050725-739441219-1001Core => C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2022-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {05919BB4-3289-4FEE-9CBA-153467E93222} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {09E85169-5AAE-49DD-9EC3-BE5BFE590722} - System32\Tasks\CCleaner Update => D:\CCleaner\CCUpdate.exe [684976 2022-01-14] (Piriform Software Ltd -> Piriform) Task: {224A414B-0A21-49CF-8D31-1AA9F626052F} - System32\Tasks\HappyLink => C:\Users\HUGO PAVEZ\AppData\Local\happyLink\node.exe [24556184 2020-02-11] (Node.js Foundation -> Node.js) -> "C:\Users\HUGO PAVEZ\AppData\Local\happyLink\main.js" Task: {2598ABA2-B3BE-490F-8D15-0B7CEACD45AB} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\98.0.1108.43\Installer\setup.exe [3195784 2022-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {2C15B56F-729B-42FF-B74F-D07D5E43CB7E} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => D:\Program Files\ruxim\ruximics.exe /nonetwork (Ningún archivo) Task: {2E1F3698-B535-4513-905D-9FA8ACECE172} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => D:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078456 2022-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {374EEAD2-5F8C-421E-9A7D-54862D989403} - System32\Tasks\CCleanerSkipUAC - HUGO PAVEZ => D:\CCleaner\CCleaner.exe [29453952 2022-01-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {44058C20-21D8-41AD-B3E3-4CAFA91D6D6A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2370890299-1269050725-739441219-1001 => D:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078456 2022-02-05] (Microsoft Corporation -> Microsoft Corporation) Task: {56802EE2-EE58-42BB-9DBF-E1C16BBFCA2A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {57F0AA56-DA0A-495B-BFF8-5B503F13D9ED} - System32\Tasks\CorelUpdateHelperTask-DF625DB116B22B1FB7EC1F0D92B72208 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3782368 2021-03-18] (Corel Corporation -> Corel Corporation) Task: {6BB9E009-42EF-466F-BCF8-488C7D9D08AA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) Task: {74F8EDC4-8FD3-4776-AB94-82E9FD7F9FFE} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => D:\Program Files\Windows Media Player\wmpnscfg.exe (Ningún archivo) Task: {7D7E7EDB-E873-4D07-B138-087998CD1CF5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-30] (Google LLC -> Google LLC) Task: {8C0324F7-9F86-494E-84D7-8AFA5C281947} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => D:\Program Files\ruxim\ruximics.exe /onlyloadcampaigns (Ningún archivo) Task: {9816DC51-E2D2-431D-8951-4F31C0551574} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3782368 2021-03-18] (Corel Corporation -> Corel Corporation) Task: {9B4F2F49-69E0-439F-911A-952371E68FA5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) Task: {9BA56137-BF47-4AD8-99AA-79D8AC0CD60D} - System32\Tasks\StartupStar Firewall => C:\ProgramData\Abelssoft\StartupStar\Program\StartupStar.exe [815616 2021-11-23] () [Archivo no firmado] Task: {BFCD17BE-8351-4966-A864-106A4A4CD217} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Ningún archivo) Task: {BFE86073-AA03-47A7-A62E-10AC6B3F7330} - System32\Tasks\Uninstaller_SkipUac_HUGO_PAVEZ => D:\IObit\IObit Uninstaller\IObitUninstaler.exe [7208448 2021-08-27] (IObit) [Archivo no firmado] Task: {CCD36E27-5808-4FED-99ED-6A0A623AFD23} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {DA093535-E648-41FA-BE15-B23479FB7703} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) Task: {DCAE0800-AEA8-4B32-8BFF-04C3CDADCAB2} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2370890299-1269050725-739441219-1001UA => C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2022-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {E001C114-D718-42D2-8269-C3D8460901C8} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} Task: {FB7DCB4D-3C1C-4A7E-BF6D-8AF1C16F143A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-30] (Google LLC -> Google LLC) Task: {FE8876FD-CBD6-4D98-B9AA-F80D21283C92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-01-17] (Microsoft Corporation -> Microsoft Corporation) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 200.28.4.129 200.28.4.130 Tcpip\..\Interfaces\{113106f2-3edc-4aaa-968e-7b6c7140ba35}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{367d26a8-d506-4d8d-9ddb-83cd886b408a}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{3b7c0855-7259-4c15-a5aa-ce542767a153}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{72810601-32dd-4594-9120-8542955040aa}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{935ff15e-f25f-4bd9-9e9a-0841adb59fe8}: [NameServer] 13.179.200.50,13.179.200.181,200.28.4.129,200.28.4.130 Tcpip\..\Interfaces\{935ff15e-f25f-4bd9-9e9a-0841adb59fe8}: [DhcpNameServer] 200.28.4.129 200.28.4.130 Tcpip\..\Interfaces\{a27fae6d-34b2-4e72-80c4-54d323fb5395}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{b9103b1b-50eb-4d17-90af-43ee3b775ed7}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{c082a87c-4617-4b96-9bdf-3fb6eeff4149}: [NameServer] 13.179.200.50,13.179.200.181,200.28.4.130,200.28.4.129 Tcpip\..\Interfaces\{c082a87c-4617-4b96-9bdf-3fb6eeff4149}: [DhcpNameServer] 200.28.4.130 200.28.4.129 Tcpip\..\Interfaces\{c6a7c3df-e503-41e2-ae95-bb554dde7380}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{e0563337-03f9-4d4f-9188-269a88407b9d}: [NameServer] 13.179.200.50,13.179.200.181 Tcpip\..\Interfaces\{fce94e46-8436-4b6b-96bf-c1cb9b095969}: [NameServer] 13.179.200.50,13.179.200.181 Edge: ======= Edge Profile: C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-07] Edge HomePage: Default -> about:newtab?source=home Edge Extension: (Modern Design for Wikipedia) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emdkdnnopdnajipoapepbeeiemahbjcn [2022-01-09] Edge Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2022-01-09] Edge Extension: (AdGuard AdBlocker (Beta)) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gfggjaccafhcbfogfkogggoepomehbjl [2022-02-04] Edge Extension: (AdBlock 360) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghfkgecdjkmgjkhbdpjdhimeleinmmkl [2022-01-22] Edge Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-01-13] Edge Extension: (Corrector ortográfico y gramatical — LanguageTool) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfjadhjooeceemgojogkhlppanjkbobc [2022-01-27] Edge Extension: (IObit Surfing Protection) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\imgpenhngnbnmhdkpdfnfhdpmfgmihdn [2022-01-09] Edge Extension: (Absolute Enable Right Click & Copy) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2022-01-09] Edge Extension: (Popup Blocker) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jpbljkibifeiicihjcoikonmahmceiee [2022-01-22] Edge Extension: (uBlock Origin) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-01-18] Edge Extension: (AdBlocker Ultimate) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2022-01-09] Edge Extension: (KeePassXC-Browser) - C:\Users\HUGO PAVEZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffhmdngciaglkoonimfcmckehcpafo [2022-01-09] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] StartMenuInternet: Microsoft Edge - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe FireFox: ======== FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-11-12] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-01-17] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> d:\Vlc\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-01-28] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2008-06-17] (Adobe Systems, Inc.) [Archivo no firmado] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-01-17] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-01-17] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-01-28] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default [2022-02-07] CHR Notifications: Default -> hxxps://forospyware.com; hxxps://www.enmimaquinafunciona.com; hxxps://www.megawarez.org CHR HomePage: Default -> about:newtab?source=home CHR StartupUrls: Default -> "about:newtab?source=home","hxxps://www.google.com/","hxxps://mail.ru/cnt/10445?gp=811570" CHR Session Restore: Default -> está habilitado. CHR Extension: (Presentaciones) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-30] CHR Extension: (Safe Torrent Scanner) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-04] CHR Extension: (Documentos) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-30] CHR Extension: (Google Drive) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-30] CHR Extension: (SaveFrom.net helper) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkemklnfmefiejflhjpelnoopmehdkaf [2022-01-27] CHR Extension: (YouTube) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-30] CHR Extension: (Sticky Password manager & safe) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2022-01-14] CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12] CHR Extension: (uBlock Origin) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-01-14] CHR Extension: (Adobe Acrobat: herramientas de conversión, edición y firma de PDF) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-02-04] CHR Extension: (Modern Design for Wikipedia) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\emdkdnnopdnajipoapepbeeiemahbjcn [2022-01-01] CHR Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2022-01-01] CHR Extension: (Hojas de cálculo) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-30] CHR Extension: (AdGuard AdBlocker (Beta)) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfggjaccafhcbfogfkogggoepomehbjl [2022-02-04] CHR Extension: (Documentos de Google sin conexión) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-19] CHR Extension: (IObit Surfing Protection) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\imgpenhngnbnmhdkpdfnfhdpmfgmihdn [2021-12-24] CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2021-11-30] CHR Extension: (Popup Blocker) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpbljkibifeiicihjcoikonmahmceiee [2022-01-22] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-30] CHR Extension: (KeePassXC-Browser) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\oboonakemofpalcgghocfoadofidjkkk [2021-12-30] CHR Extension: (AdBlocker Ultimate) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2021-12-08] CHR Extension: (Corrector ortográfico y gramatical — LanguageTool) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2022-01-21] CHR Extension: (Gmail) - C:\Users\HUGO PAVEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-30] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - D:\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 Adguard Service; D:\Adguard\AdguardSvc.exe [467416 2021-12-16] (Adguard Software Limited -> Adguard Software Ltd) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2022-01-28] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3803376 2022-01-25] (philandro Software GmbH -> AnyDesk Software GmbH) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2021-10-28] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-01-17] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-01-17] (ESET, spol. s r.o. -> ESET) R3 EPMVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{B6AED01E-E924-42EE-A3B3-3360417C6B44} [21312 2021-10-06] (Microsoft Windows -> Microsoft Corporation) S4 Everything; D:\Everything\Everything.exe [2262176 2021-12-16] (voidtools -> voidtools) R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [141712 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 FileSyncHelper; D:\Program Files\Microsoft OneDrive\22.012.0116.0001\FileSyncHelper.exe [3374496 2022-02-05] (Microsoft Corporation -> Microsoft Corporation) R2 GUBootService; D:\Glary Utilities\GUBootService.exe [875392 2021-12-26] (Glarysoft LTD -> Glarysoft Ltd) R2 GUPMService; d:\Glary Utilities\GUPMService.exe [65408 2021-12-26] (Glarysoft LTD -> Glarysoft Ltd) S4 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_eddaa0f6dbdf4dd1\\AS\\IAS\\IntelAudioService.exe [529592 2022-01-08] (Intel Corporation -> Intel) S3 OneDrive Updater Service; D:\Program Files\Microsoft OneDrive\22.012.0116.0001\OneDriveUpdaterService.exe [3842456 2022-02-05] (Microsoft Corporation -> Microsoft Corporation) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 sesvc; d:\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [Archivo no firmado] S3 VBoxSDS; D:\VirtualBox\VBoxSDS.exe [746736 2022-01-17] (Oracle Corporation -> Oracle Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-30] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-07-25] (Intel Corporation -> Intel Corporation) S4 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_342213cff1444f9e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_342213cff1444f9e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S3 WMPNetworkSvc; "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe" [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [98840 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado] R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [184464 2022-01-17] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [122944 2022-01-17] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-10-25] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201976 2022-01-17] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43904 2022-01-17] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69704 2022-01-17] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110560 2022-01-17] (ESET, spol. s r.o. -> ESET) S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2020-12-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [33712 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [160440 2021-08-09] (Fortinet, Inc. -> Fortinet Inc) R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [101384 2021-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Fortinet Inc) S3 FortiTransCtrl; C:\WINDOWS\System32\drivers\FortiTransCtrl.sys [64680 2021-08-09] (Fortinet, Inc. -> Fortinet Inc) R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [67472 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70368 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation) R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [30720 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-12-20] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_6aaa077086f20c55\IntcUSB.sys [878248 2022-01-08] (Intel Corporation -> Intel(R) Corporation) R1 ISODrive; d:\UltraISO\drivers\ISODrv64.sys [135600 2021-08-08] (Shenzhen Yibo Digital Systems Development Co., Ltd. -> EZB Systems, Inc.) R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2020-03-10] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239648 2022-01-17] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249560 2022-01-17] (Oracle Corporation -> Oracle Corporation) R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1046416 2022-01-17] (Oracle Corporation -> Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435424 2021-11-30] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-30] (Microsoft Windows -> Microsoft Corporation) S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2022-02-07 21:40 - 2022-02-07 21:41 - 000035431 _____ C:\Users\HUGO PAVEZ\Desktop\FRST.txt 2022-02-07 21:38 - 2022-02-07 21:41 - 000000000 ____D C:\FRST 2022-02-07 21:37 - 2022-02-07 21:37 - 002311680 _____ (Farbar) C:\Users\HUGO PAVEZ\Desktop\FRST64.exe 2022-02-07 16:49 - 2022-02-07 16:49 - 000001114 _____ C:\Users\HUGO PAVEZ\Desktop\AnyDesk - Acceso directo.lnk 2022-02-06 18:00 - 2022-02-07 08:09 - 000003850 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2370890299-1269050725-739441219-1001UA 2022-02-06 18:00 - 2022-02-07 08:09 - 000003796 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2370890299-1269050725-739441219-1001Core 2022-02-06 11:06 - 2022-02-06 18:02 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\qBittorrent 2022-02-06 11:06 - 2022-02-06 11:07 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\qBittorrent 2022-02-06 11:06 - 2022-02-06 11:06 - 000000000 ____D D:\Program Files\qBittorrent 2022-02-06 11:06 - 2022-02-06 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2022-02-06 10:56 - 2022-02-06 10:57 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe 2022-02-06 02:17 - 2022-02-06 02:17 - 000000030 _____ C:\AUTOEXEC.BAT 2022-02-06 02:17 - 2022-02-06 02:17 - 000000027 _____ C:\CONFIG.SYS 2022-02-06 02:17 - 2022-02-06 02:17 - 000000000 ___HD C:\WINDOWS\PIF 2022-02-06 02:17 - 2022-02-06 02:17 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4DOS 2022-02-06 01:30 - 2022-02-06 01:30 - 000000836 _____ C:\Users\HUGO PAVEZ\Desktop\4nt.lnk 2022-02-05 20:24 - 2022-02-06 20:01 - 000000000 ____D D:\Program Files\Microsoft OneDrive 2022-02-05 17:06 - 2022-02-05 17:07 - 000000000 ____D C:\ProgramData\EaseUS Todo PCTrans 2022-02-05 16:55 - 2022-02-05 16:58 - 000000000 ____D D:\Program Files (x86)\EaseUS 2022-02-05 16:55 - 2022-02-05 16:55 - 000000999 _____ C:\Users\Public\Desktop\EaseUS Todo PCTrans.lnk 2022-02-05 16:55 - 2022-02-05 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans 2022-02-05 14:46 - 2022-02-05 14:46 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL GmbH 2022-02-05 12:45 - 2022-02-05 12:45 - 000000000 __HDL C:\Correo 2022-02-04 12:14 - 2022-02-05 12:58 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\The Bat! 2022-02-04 12:14 - 2022-02-04 12:14 - 000000630 _____ C:\Users\HUGO PAVEZ\Desktop\The Bat!.LNK 2022-02-04 12:14 - 2022-02-04 12:14 - 000000630 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Bat!.LNK 2022-02-04 11:57 - 2022-02-04 11:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ritlabs The Bat! 2022-02-04 11:29 - 2022-02-04 11:29 - 000000184 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\ex_log.txt 2022-02-04 10:43 - 2022-02-04 10:43 - 000002202 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Complete Internet Repair.lnk 2022-02-04 10:43 - 2022-02-04 10:43 - 000002178 _____ C:\Users\HUGO PAVEZ\Desktop\Complete Internet Repair.lnk 2022-02-04 10:43 - 2022-02-04 10:43 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Rizonesoft 2022-02-03 23:26 - 2022-02-03 23:26 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Clover 2022-02-03 20:06 - 2022-02-03 20:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2022-01-31 14:03 - 2022-02-05 17:06 - 000000000 ____D C:\ProgramData\SystemAcCrux 2022-01-31 14:03 - 2020-12-08 00:00 - 000076344 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUDCPEPM.sys 2022-01-31 14:03 - 2020-02-23 14:54 - 000033712 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUEDKEPM.sys 2022-01-31 14:02 - 2022-01-31 14:02 - 000000731 _____ C:\Users\Public\Desktop\EaseUS Partition Master.lnk 2022-01-31 14:02 - 2022-01-31 14:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 2022-01-31 14:02 - 2021-10-28 12:42 - 006009480 _____ C:\WINDOWS\system32\BootMan.exe 2022-01-31 14:02 - 2021-10-28 12:42 - 003994760 _____ C:\WINDOWS\SysWOW64\BootMan.exe 2022-01-31 14:02 - 2021-10-28 12:42 - 000024712 _____ C:\WINDOWS\SysWOW64\EuEpmGdi.dll 2022-01-31 14:02 - 2021-10-28 12:42 - 000021128 _____ C:\WINDOWS\system32\EuEpmGdi.dll 2022-01-31 14:02 - 2021-10-27 11:02 - 000174216 _____ C:\WINDOWS\system32\setupepmdrvx64.exe 2022-01-31 14:02 - 2020-12-16 09:03 - 000000057 _____ C:\WINDOWS\system32\setupepmdrv.ini 2022-01-31 14:02 - 2020-02-23 14:49 - 000036280 _____ C:\WINDOWS\system32\epmdkdrv.sys 2022-01-31 14:02 - 2020-02-23 14:49 - 000030136 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\EPMVolFl.sys 2022-01-31 13:39 - 2022-01-31 13:39 - 000000920 _____ C:\Users\HUGO PAVEZ\Desktop\MpManag - Acceso directo.lnk 2022-01-31 10:52 - 2022-01-31 10:52 - 000000727 _____ C:\Users\HUGO PAVEZ\Desktop\CrystalDiskInfo.lnk 2022-01-31 10:52 - 2022-01-31 10:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2022-01-30 15:19 - 2022-01-30 15:19 - 000000000 ____D C:\Users\HUGO PAVEZ\Desktop\Modo Dios.{ED7BA470-8E54-465E-825C-99712043E01C} 2022-01-30 12:43 - 2022-01-30 12:43 - 000001499 _____ C:\Users\Public\Desktop\WashAndGo.lnk 2022-01-30 12:43 - 2022-01-30 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WashAndGo 2022-01-30 04:52 - 2022-01-30 04:52 - 000000065 _____ C:\WINDOWS\wininit.ini 2022-01-29 17:03 - 2022-01-29 17:03 - 000000646 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk 2022-01-29 17:03 - 2022-01-29 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2022-01-29 17:03 - 2022-01-17 04:12 - 001046416 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxSup.sys 2022-01-29 17:03 - 2022-01-17 04:12 - 000188184 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2022-01-29 15:10 - 2022-02-07 07:46 - 001772862 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-29 15:07 - 2022-01-29 15:07 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-01-29 15:05 - 2022-02-07 07:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-29 15:05 - 2022-02-05 20:24 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2370890299-1269050725-739441219-1001 2022-01-29 15:05 - 2022-02-05 20:24 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-01-29 15:05 - 2022-02-05 10:09 - 000004782 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask 2022-01-29 15:05 - 2022-01-29 15:05 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2022-01-29 15:05 - 2022-01-29 15:05 - 000007623 _____ C:\WINDOWS\diagerr.xml 2022-01-29 15:05 - 2022-01-29 15:05 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-01-29 15:05 - 2022-01-29 15:05 - 000003610 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-01-29 15:05 - 2022-01-29 15:05 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-01-29 15:05 - 2022-01-29 15:05 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-01-29 15:05 - 2022-01-29 15:05 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-01-29 15:05 - 2022-01-29 15:05 - 000003020 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-01-29 15:05 - 2022-01-29 15:05 - 000002894 _____ C:\WINDOWS\system32\Tasks\StartupStar Firewall 2022-01-29 15:05 - 2022-01-29 15:05 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-01-29 15:05 - 2022-01-29 15:05 - 000002586 _____ C:\WINDOWS\system32\Tasks\HappyLink 2022-01-29 15:05 - 2022-01-29 15:05 - 000002534 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-DF625DB116B22B1FB7EC1F0D92B72208 2022-01-29 15:05 - 2022-01-29 15:05 - 000002528 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_HUGO_PAVEZ 2022-01-29 15:05 - 2022-01-29 15:05 - 000002500 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTaskCore 2022-01-29 15:05 - 2022-01-29 15:05 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - HUGO PAVEZ 2022-01-29 15:05 - 2022-01-29 15:05 - 000000020 ___SH C:\Users\HUGO PAVEZ\ntuser.ini 2022-01-29 15:05 - 2022-01-29 15:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking 2022-01-29 15:05 - 2022-01-29 15:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-01-29 15:01 - 2022-01-29 15:01 - 000000000 ____D C:\WINDOWS\system32\lxss 2022-01-29 15:00 - 2022-02-07 16:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-29 15:00 - 2022-01-29 15:00 - 000545600 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-01-29 14:50 - 2022-02-06 03:13 - 000000000 ____D C:\Users\HUGO PAVEZ 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Reciente 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Plantillas 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Mis documentos 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Menú Inicio 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Impresoras 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Entorno de red 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Datos de programa 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\Configuración local 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\AppData\Local\Historial 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\AppData\Local\Datos de programa 2022-01-29 14:50 - 2022-01-29 14:50 - 000000000 _SHDL C:\Users\HUGO PAVEZ\AppData\Local\Archivos temporales de Internet 2022-01-29 14:50 - 2022-01-29 11:00 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2022-01-29 14:49 - 2022-01-29 14:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2022-01-29 14:48 - 2022-01-29 14:48 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-01-29 14:46 - 2022-01-29 14:46 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-01-29 14:46 - 2022-01-29 14:46 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-01-29 14:46 - 2022-01-29 14:46 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2022-01-29 14:46 - 2022-01-29 14:46 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-01-29 14:46 - 2022-01-29 14:46 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-01-29 14:45 - 2022-01-29 14:45 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2022-01-29 14:45 - 2022-01-29 14:45 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-01-29 14:40 - 2022-01-29 14:40 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2022-01-29 14:37 - 2022-01-29 14:37 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2022-01-29 14:28 - 2022-01-31 15:26 - 000000000 ___DC C:\WINDOWS\Panther 2022-01-29 14:11 - 2022-01-29 14:11 - 000000000 ___HD C:\$Windows.~WS 2022-01-29 12:38 - 2022-01-29 12:38 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Yandex 2022-01-28 20:37 - 2022-01-28 20:37 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\4kdownload.com 2022-01-28 20:34 - 2022-01-28 20:34 - 000000417 _____ C:\Users\Public\Desktop\4K Video Downloader.lnk 2022-01-28 20:34 - 2022-01-28 20:34 - 000000417 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk 2022-01-28 12:33 - 2022-01-29 11:00 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2022-01-28 12:33 - 2022-01-28 12:33 - 000000725 _____ C:\Users\HUGO PAVEZ\Desktop\JDownloader 2.lnk 2022-01-28 11:15 - 2022-01-31 14:15 - 000000000 ___RD C:\Users\HUGO PAVEZ\Creative Cloud Files 2022-01-28 11:06 - 2022-01-28 11:12 - 000001342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2022-01-27 17:29 - 2022-01-27 17:29 - 000000000 ____D C:\tmp 2022-01-27 16:02 - 2022-01-27 16:02 - 000000618 _____ C:\Users\HUGO PAVEZ\Desktop\aTube Catcher.lnk 2022-01-27 15:41 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher 2022-01-27 15:41 - 2022-01-27 15:41 - 000000706 _____ C:\Users\Public\Desktop\Music Search MP3.lnk 2022-01-27 15:41 - 2022-01-27 15:41 - 000000618 _____ C:\Users\Public\Desktop\aTube Catcher.lnk 2022-01-27 15:41 - 2017-11-09 12:58 - 000440320 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSock.dll 2022-01-27 15:41 - 2017-11-09 12:58 - 000401408 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSecure2.dll 2022-01-27 15:41 - 2017-11-09 12:58 - 000249856 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartCertificate.dll 2022-01-27 15:41 - 2008-08-18 19:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL 2022-01-27 11:10 - 2022-01-27 11:15 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\MuralPix 2022-01-27 11:09 - 2022-01-27 11:09 - 000000611 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuralPix Manager.lnk 2022-01-26 18:20 - 2022-02-05 20:24 - 000001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-01-26 00:09 - 2022-01-26 00:09 - 000000000 ___HD C:\$WinREAgent 2022-01-26 00:02 - 2022-01-26 00:17 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Notepad 2022-01-25 23:30 - 2022-01-25 23:30 - 000000664 _____ C:\Users\HUGO PAVEZ\Desktop\ShadowExplorer.lnk 2022-01-25 23:02 - 2022-01-31 14:13 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2022-01-25 22:35 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CheckDrive 2022-01-25 22:35 - 2022-01-25 22:35 - 000000606 _____ C:\Users\Public\Desktop\CheckDrive.lnk 2022-01-25 16:19 - 2022-02-07 17:09 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\FortiClient 2022-01-25 16:19 - 2022-01-25 16:19 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\FortiClient 2022-01-25 16:16 - 2022-01-25 16:16 - 000000000 _____ C:\WINDOWS\system32\Drivers\SET5D52.tmp 2022-01-25 16:16 - 2022-01-25 16:16 - 000000000 _____ C:\WINDOWS\system32\Drivers\SET5C58.tmp 2022-01-25 16:13 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FortiClient VPN 2022-01-25 16:13 - 2022-01-25 16:13 - 000002033 _____ C:\Users\Public\Desktop\FortiClient VPN.lnk 2022-01-25 11:11 - 2022-01-29 11:00 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2022-01-25 11:11 - 2022-01-25 11:11 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Zoom 2022-01-25 10:35 - 2022-02-07 16:50 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\AnyDesk 2022-01-25 10:35 - 2022-02-07 16:49 - 000000000 ____D C:\ProgramData\AnyDesk 2022-01-25 10:35 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk 2022-01-25 09:36 - 2022-01-25 09:36 - 000001361 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2022-01-23 11:18 - 2022-01-23 11:18 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\www.shadowexplorer.com 2022-01-23 11:17 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer 2022-01-23 01:45 - 2022-01-29 12:56 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\CrashDumps 2022-01-23 00:45 - 2022-01-23 00:45 - 000000000 ____D C:\KPRM 2022-01-22 18:59 - 2022-01-22 18:59 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\7B556167.sys 2022-01-22 18:58 - 2022-01-22 19:17 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2022-01-22 11:45 - 2022-01-22 11:45 - 000005120 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\pushdata.sqlite 2022-01-22 11:42 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Send2Phone 2022-01-22 11:42 - 2022-01-22 11:42 - 000001512 _____ C:\Users\Public\Desktop\Send2Phone.lnk 2022-01-22 09:23 - 2022-01-22 09:26 - 000000000 ____D C:\ProgramData\RogueKiller 2022-01-18 21:14 - 2022-01-18 21:14 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\OfficeTab 2022-01-18 21:11 - 2022-01-18 21:11 - 000001097 _____ C:\Users\HUGO PAVEZ\Desktop\OfficeTabCenter0310(Admin).lnk 2022-01-18 21:05 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Office Tab 2022-01-17 22:06 - 2022-01-17 22:06 - 000002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2022-01-17 22:06 - 2022-01-17 22:06 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-01-17 21:20 - 2022-01-17 21:20 - 000201976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys 2022-01-17 21:20 - 2022-01-17 21:20 - 000184464 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys 2022-01-17 21:20 - 2022-01-17 21:20 - 000110560 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys 2022-01-17 21:20 - 2022-01-17 21:20 - 000069704 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys 2022-01-17 21:20 - 2022-01-17 21:20 - 000043904 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys 2022-01-17 04:12 - 2022-01-17 04:12 - 000249560 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys 2022-01-17 04:12 - 2022-01-17 04:12 - 000239648 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys 2022-01-17 00:11 - 2022-01-17 00:11 - 000002644 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive para la Empresa.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2022-01-17 00:11 - 2022-01-17 00:11 - 000002365 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2022-01-16 23:34 - 2022-01-16 23:34 - 000002093 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2022-01-16 22:57 - 2022-01-29 11:00 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation 2022-01-16 22:57 - 2022-01-16 22:57 - 000000520 _____ C:\Users\HUGO PAVEZ\Desktop\Asistente de soporte y recuperación de Microsoft.appref-ms 2022-01-16 22:57 - 2022-01-16 22:57 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\SaRALogs 2022-01-16 22:56 - 2022-01-16 22:56 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Apps\2.0 2022-01-16 19:59 - 2022-01-16 19:59 - 000001206 _____ C:\Users\HUGO PAVEZ\Desktop\ModoSeguroAPruebaFallos.lnk 2022-01-16 19:57 - 2022-01-16 19:57 - 000001065 _____ C:\Users\HUGO PAVEZ\Desktop\OfficeTabCenter(Admin).lnk 2022-01-16 19:26 - 2022-01-16 19:26 - 000000586 _____ C:\Users\Public\Desktop\UltraISO.lnk 2022-01-16 18:48 - 2022-01-16 18:48 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\PowerISO 2022-01-16 17:09 - 2022-01-29 11:00 - 000000000 ____D C:\WINDOWS\system32\Updates 2022-01-16 15:14 - 2022-01-23 00:45 - 000000000 ____D C:\Users\HUGO PAVEZ\Desktop\Informes 2022-01-15 19:12 - 2022-01-17 21:31 - 000001399 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-01-15 19:08 - 2022-02-06 21:08 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Everything 2022-01-15 18:55 - 2022-01-16 13:01 - 000000000 ____D C:\Users\HUGO PAVEZ\Doctor Web 2022-01-15 18:36 - 2022-01-18 18:23 - 000000000 ____D C:\KVRT2020_Data 2022-01-15 14:01 - 2022-01-15 14:01 - 000000000 ___HD C:\$SysReset 2022-01-15 13:18 - 2022-02-07 20:17 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Everything 2022-01-15 13:18 - 2022-01-15 13:18 - 000000606 _____ C:\Users\Public\Desktop\Everything.lnk 2022-01-15 13:18 - 2022-01-15 13:18 - 000000606 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk 2022-01-15 12:50 - 2022-01-15 12:50 - 049569113 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2022-01-15 12:50 - 2022-01-15 12:50 - 045002608 _____ C:\WINDOWS\system32\Drivers\Netwfw10.dat 2022-01-15 12:50 - 2022-01-15 12:50 - 006556712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2022-01-15 12:50 - 2022-01-15 12:50 - 005165640 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys 2022-01-15 12:50 - 2022-01-15 12:50 - 001622088 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll 2022-01-14 21:44 - 2022-01-14 21:44 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\NVIDIA 2022-01-12 23:57 - 2022-01-12 23:57 - 010964600 _____ (Code Sector) C:\Users\HUGO PAVEZ\Downloads\teracopy3.9.exe 2022-01-12 23:56 - 2022-01-12 23:56 - 000000000 ____D C:\ProgramData\Caphyon 2022-01-12 23:51 - 2022-01-12 23:51 - 000000707 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk 2022-01-12 23:43 - 2022-01-12 23:43 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15} 2022-01-12 23:42 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Software Updater 2022-01-12 23:39 - 2022-01-12 23:39 - 000000703 _____ C:\Users\Public\Desktop\Wise Memory Optimizer.lnk 2022-01-12 23:37 - 2022-01-13 20:52 - 000000000 ____D C:\ProgramData\Ultra Adware Killer 2022-01-12 19:02 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer 2022-01-12 19:02 - 2022-01-12 23:38 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Wise Memory Optimzer 2022-01-12 01:00 - 2022-02-06 11:36 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\ElevatedDiagnostics 2022-01-12 00:31 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyKeyFinder 2022-01-12 00:31 - 2022-01-12 00:31 - 000001521 _____ C:\Users\Public\Desktop\MyKeyFinder.lnk 2022-01-09 15:27 - 2022-01-29 15:05 - 000000282 __RSH C:\ProgramData\ntuser.pol 2022-01-09 15:27 - 2022-01-09 15:27 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Rufus 2022-01-09 12:42 - 2022-01-09 12:42 - 000000000 ___HD C:\$GetCurrent 2022-01-09 10:29 - 2022-02-06 10:17 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\vlc 2022-01-09 10:28 - 2022-01-29 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2022-01-09 10:28 - 2022-01-09 10:28 - 000000534 _____ C:\Users\Public\Desktop\VLC media player.lnk 2022-01-09 01:41 - 2022-02-05 10:09 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-01-09 01:41 - 2022-02-05 10:09 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-01-09 01:05 - 2022-01-12 00:04 - 000000235 _____ C:\WINDOWS\SysWOW64\_WKERNEL.SYL 2022-01-09 01:04 - 2010-07-25 22:23 - 000544768 _____ (Stardock Corporation) C:\WINDOWS\SysWOW64\wbocx.ocx 2022-01-09 01:04 - 2010-07-25 22:23 - 000056496 _____ (Stardock.Net, Inc) C:\WINDOWS\SysWOW64\wbhelp2.dll 2022-01-09 01:04 - 2010-07-25 22:23 - 000033968 _____ (Neil Banfield) C:\WINDOWS\SysWOW64\anim.dll 2022-01-09 01:04 - 2010-07-25 22:23 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\W95INF32.DLL 2022-01-09 01:04 - 2010-07-25 22:23 - 000002272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\W95INF16.DLL 2022-01-09 00:11 - 2022-01-09 00:11 - 000003067 _____ C:\Users\HUGO PAVEZ\Desktop\Alfa eBooks Manager.lnk 2022-01-09 00:11 - 2022-01-09 00:11 - 000003027 _____ C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alfa eBooks Manager.lnk 2022-01-09 00:11 - 2022-01-09 00:11 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Alfa.NetSoft 2022-01-08 21:56 - 2022-01-08 21:56 - 001159216 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2022-01-08 20:24 - 2022-01-25 23:25 - 000000000 ____D C:\ProgramData\AVG 2022-01-08 20:21 - 2022-01-08 20:20 - 004146112 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgremoverx.exe 2022-01-08 18:22 - 2022-01-29 11:00 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-01-08 15:28 - 2022-01-31 00:01 - 000000000 ____D C:\Users\HUGO PAVEZ\.VirtualBox 2022-01-08 15:28 - 2022-01-31 00:01 - 000000000 ____D C:\ProgramData\VirtualBox 2022-01-08 13:45 - 2022-01-29 14:27 - 000000000 ____D C:\ESD ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2022-02-07 21:38 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Registration 2022-02-07 21:31 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-02-07 07:46 - 2019-12-07 11:55 - 000788218 _____ C:\WINDOWS\system32\perfh00A.dat 2022-02-07 07:46 - 2019-12-07 11:55 - 000155606 _____ C:\WINDOWS\system32\perfc00A.dat 2022-02-07 07:46 - 2019-12-07 06:13 - 000000000 ____D C:\WINDOWS\INF 2022-02-07 07:42 - 2021-12-01 00:30 - 000008192 ___SH C:\DumpStack.log.tmp 2022-02-07 07:42 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-02-06 21:09 - 2019-12-07 06:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-02-06 02:15 - 2021-12-08 01:34 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\JPSoft 2022-02-06 01:37 - 2021-12-08 01:32 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\JP Software 2022-02-05 14:39 - 2021-12-16 21:15 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\SquirrelTemp 2022-02-05 14:39 - 2021-12-16 21:15 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\DeepL_GmbH 2022-02-05 12:05 - 2021-11-30 15:07 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\D3DSCache 2022-02-05 11:18 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-02-04 12:08 - 2021-11-30 14:43 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Packages 2022-02-03 23:55 - 2021-11-30 14:44 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\PlaceholderTileLogoFolder 2022-02-03 23:12 - 2021-12-11 00:16 - 000000000 ____D C:\ProgramData\TEMP 2022-01-30 12:43 - 2021-12-30 22:58 - 000000000 ____D C:\ProgramData\Abelssoft 2022-01-30 12:43 - 2021-12-01 21:42 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Abelssoft 2022-01-30 04:33 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\appcompat 2022-01-30 04:27 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-01-30 03:15 - 2021-12-26 00:37 - 000000620 _____ C:\Users\HUGO PAVEZ\Desktop\Bit Che.lnk 2022-01-30 03:15 - 2021-12-26 00:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bit Che 2022-01-29 15:21 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-01-29 15:05 - 2021-11-30 14:47 - 000000000 __SHD C:\Users\HUGO PAVEZ\IntelGraphicsProfiles 2022-01-29 15:05 - 2021-11-30 14:45 - 000000000 ____D C:\ProgramData\NVIDIA 2022-01-29 15:05 - 2021-11-30 14:43 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-01-29 15:05 - 2021-11-30 14:43 - 000000000 ___RD C:\Users\HUGO PAVEZ\3D Objects 2022-01-29 15:05 - 2019-12-07 06:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-01-29 15:05 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-01-29 15:05 - 2019-12-07 06:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-01-29 15:03 - 2021-11-30 14:47 - 000000000 ____D C:\Intel 2022-01-29 15:03 - 2019-12-07 06:14 - 000000000 __RSD C:\WINDOWS\Media 2022-01-29 15:01 - 2021-11-30 14:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2022-01-29 15:01 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-01-29 14:58 - 2019-12-07 06:18 - 000000000 ____D C:\WINDOWS\Setup 2022-01-29 14:56 - 2019-12-07 06:14 - 000000000 __RHD C:\Users\Public\Libraries 2022-01-29 14:56 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\USOPrivate 2022-01-29 14:50 - 2021-12-20 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2022-01-29 14:50 - 2021-12-08 00:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit 2022-01-29 14:50 - 2021-12-05 00:48 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon 2022-01-29 14:50 - 2021-12-01 18:50 - 000000000 ____D C:\WINDOWS\Firmware 2022-01-29 14:50 - 2021-11-30 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-01-29 14:48 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-01-29 14:48 - 2019-12-07 06:03 - 000000000 ____D C:\WINDOWS\servicing 2022-01-29 14:42 - 2019-12-07 11:56 - 000000000 ____D C:\WINDOWS\OCR 2022-01-29 14:40 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2022-01-29 14:40 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2022-01-29 11:00 - 2022-01-05 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandizip 2022-01-29 11:00 - 2022-01-01 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerArchiver 2022-01-29 11:00 - 2022-01-01 10:08 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFOPad 2022-01-29 11:00 - 2022-01-01 09:51 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFOlux 2022-01-29 11:00 - 2021-12-30 22:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartupStar 2022-01-29 11:00 - 2021-12-30 22:33 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder 2022-01-29 11:00 - 2021-12-30 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize 2022-01-29 11:00 - 2021-12-30 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePassXC 2022-01-29 11:00 - 2021-12-30 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2022-01-29 11:00 - 2021-12-30 01:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management 2022-01-29 11:00 - 2021-12-29 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2022-01-29 11:00 - 2021-12-29 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2022-01-29 11:00 - 2021-12-29 09:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WordPerfect Office 2021 2022-01-29 11:00 - 2021-12-27 01:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinTools.net Premium 2022-01-29 11:00 - 2021-12-26 21:12 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-01-29 11:00 - 2021-12-24 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard 2022-01-29 11:00 - 2021-12-24 00:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2022-01-29 11:00 - 2021-12-19 00:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epubor 2022-01-29 11:00 - 2021-12-18 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 9 2022-01-29 11:00 - 2021-12-18 00:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftPerfect WiFi Guard 2022-01-29 11:00 - 2021-12-16 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizTree 2022-01-29 11:00 - 2021-12-16 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Power Data Recovery 2022-01-29 11:00 - 2021-12-16 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileSeek 2022-01-29 11:00 - 2021-12-14 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander Ultima Prime 2022-01-29 11:00 - 2021-12-12 22:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2022-01-29 11:00 - 2021-12-11 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WallPapa 2022-01-29 11:00 - 2021-12-11 14:52 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2022-01-29 11:00 - 2021-12-11 12:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kutools for Word 2022-01-29 11:00 - 2021-12-08 01:34 - 000000000 ____D C:\ProgramData\regid.2002-09.com.jpsoft 2022-01-29 11:00 - 2021-12-08 01:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TCMD28 2022-01-29 11:00 - 2021-12-04 23:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2022-01-29 11:00 - 2021-12-04 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management 2022-01-29 11:00 - 2021-12-04 22:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lupas Rename 2000 2022-01-29 11:00 - 2021-12-04 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Renamer 2022-01-29 11:00 - 2021-12-01 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tagman 2022-01-29 11:00 - 2021-12-01 21:37 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Emoticon 2022-01-29 11:00 - 2021-12-01 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-01-29 11:00 - 2021-11-30 22:58 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2022-01-29 11:00 - 2021-11-30 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2022-01-29 11:00 - 2019-12-07 06:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\spool 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-01-29 11:00 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-01-29 11:00 - 2019-03-19 01:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2022-01-29 11:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2022-01-28 13:05 - 2021-12-04 23:02 - 000000000 ____D C:\ProgramData\Package Cache 2022-01-28 12:32 - 2021-12-04 20:29 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Adaware 2022-01-28 11:16 - 2021-11-30 22:58 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\Adobe 2022-01-28 11:15 - 2021-11-30 14:43 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Adobe 2022-01-28 11:14 - 2021-11-30 22:58 - 000000000 ____D C:\ProgramData\Adobe 2022-01-28 11:14 - 2021-11-30 14:48 - 000000000 ____D C:\ProgramData\Packages 2022-01-27 18:05 - 2021-12-31 19:32 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\SolidDocuments 2022-01-27 18:05 - 2021-11-30 23:00 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\LocalLow\Adobe 2022-01-27 11:09 - 2021-12-04 15:04 - 000000160 _____ C:\WINDOWS\LearsyShare.dat 2022-01-26 00:17 - 2021-12-01 08:32 - 000000583 _____ C:\Users\HUGO PAVEZ\Desktop\Nuevo documento de texto.txt 2022-01-25 22:36 - 2021-12-01 21:42 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Abelssoft 2022-01-22 21:55 - 2021-12-29 22:17 - 000000000 ____D C:\ProgramData\Glarysoft 2022-01-22 20:27 - 2021-12-08 00:52 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\IObit 2022-01-22 20:27 - 2021-12-08 00:52 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\LocalLow\IObit 2022-01-22 20:27 - 2021-12-08 00:52 - 000000000 ____D C:\ProgramData\IObit 2022-01-17 21:20 - 2021-10-27 15:14 - 000122944 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys 2022-01-17 00:11 - 2021-12-24 00:33 - 000000000 ___RD C:\Users\Default\OneDrive 2022-01-17 00:11 - 2021-11-30 14:44 - 000000000 ___RD C:\Users\HUGO PAVEZ\OneDrive 2022-01-16 20:19 - 2021-12-01 21:58 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\BitTorrentHelper 2022-01-16 18:49 - 2021-12-19 00:08 - 000000000 ____D C:\Users\HUGO PAVEZ\EpuborLog 2022-01-16 18:49 - 2021-12-19 00:08 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\.Ultimate 2022-01-16 15:43 - 2021-12-14 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2022-01-16 15:42 - 2021-12-30 13:02 - 000000000 ____D C:\ProgramData\AllDup 2022-01-16 15:13 - 2021-12-24 13:08 - 000000000 ____D C:\ProgramData\Adguard 2022-01-15 19:12 - 2021-11-30 21:47 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\ESET 2022-01-15 19:06 - 2021-12-27 00:25 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\happyLink 2022-01-15 13:15 - 2021-12-30 01:34 - 000000870 _____ C:\Users\HUGO PAVEZ\Desktop\7zFM.lnk 2022-01-14 20:51 - 2021-12-29 23:55 - 000000000 ____D C:\temp 2022-01-12 23:52 - 2021-11-30 15:07 - 000002096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-01-11 21:05 - 2021-12-01 00:02 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-01-11 21:02 - 2021-12-01 00:01 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-01-09 13:03 - 2021-12-04 23:15 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Local\calibre-cache 2022-01-09 13:03 - 2021-12-04 23:12 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\calibre 2022-01-08 20:16 - 2021-12-04 23:51 - 000000000 ____D C:\Users\HUGO PAVEZ\AppData\Roaming\Winamp ==================== Archivos en la raíz de algunos directorios ======== 2021-06-26 22:25 - 2021-06-26 22:25 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat 2022-02-04 11:29 - 2022-02-04 11:29 - 000000184 _____ () C:\Users\HUGO PAVEZ\AppData\Roaming\ex_log.txt 2022-01-22 11:45 - 2022-01-22 11:45 - 000005120 _____ () C:\Users\HUGO PAVEZ\AppData\Roaming\pushdata.sqlite 2022-01-18 18:22 - 2022-01-18 18:22 - 000000000 _____ () C:\Users\HUGO PAVEZ\AppData\Local\oobelibMkey.log 2021-12-30 22:34 - 2021-12-31 11:38 - 000028994 _____ () C:\Users\HUGO PAVEZ\AppData\Local\Temptnodlogo.png 2021-12-01 20:35 - 2021-12-01 20:35 - 000000008 __RSH () C:\Users\HUGO PAVEZ\AppData\Local\ℤ™☠ ==================== FCheck ================================ (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) FCheck: C:\WINDOWS\nl.exe [2022-01-01] <==== ATENCIÓN (cero bytes Archivo/Carpeta) FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2021-12-20] <==== ATENCIÓN (cero bytes Archivo/Carpeta) ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================