Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13.07.2024 Ejecutado por FRAN (administrador) sobre FRANTORRE (14-07-2024 20:57:24) Ejecutado desde C:\Users\FRAN\Desktop\FRST64.exe Perfiles cargados: FRAN Plataforma: Microsoft Windows 10 Pro N Versión 22H2 19045.4412 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Windows\Temp\a2b56bc43c8111ef8773b06ebfbf03b5 (C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\110\LocalDB\Binn\sqlservr.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (explorer.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe (explorer.exe ->) (Veeam Software Group GmbH -> Veeam Software Group GmbH) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Tray.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <30> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (rundll32.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe <2> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Autodesk, Inc. -> ) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Veeam Software Group GmbH -> Veeam Software Group GmbH) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe (services.exe ->) (VMware, Inc. -> ) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe (services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe (services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21998.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21998.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3> ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [339464 2017-01-17] (Autodesk, Inc. -> Autodesk, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Veeam.EndPoint.Tray.exe] => C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Tray.exe [1028688 2020-07-14] (Veeam Software Group GmbH -> Veeam Software Group GmbH) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [636712 2018-12-01] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248144 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2019-01-22] (Adobe Systems Incorporated -> Adobe Inc.) HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [119000 2020-11-17] (VMware, Inc. -> VMware, Inc.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.102\Installer\setup.exe [6806464 2024-07-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-09] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-09] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [Akamai NetSession Interface] => C:\Users\FRAN\AppData\Local\Akamai\netsession_win.exe [4586456 2018-04-17] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [f.lux] => C:\Users\FRAN\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-22] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49958368 2022-02-01] (Google LLC -> ) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [915848 2020-03-30] (Nota Inc. -> Nota Inc.) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45629344 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe [689896 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-09] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [TimeCamp.com.TimeCamp Desktop] => C:\Users\FRAN\AppData\Local\TimeCamp SA\TimeCamp Desktop\bin\TimeCampDesktop.exe [2017048 2019-04-24] (Time Solutions Sp. z o.o. -> ) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Run: [TimeCamp Desktop] => C:\Users\FRAN\AppData\Local\TimeCamp SA\TimeCamp Desktop\bin\TimeCampDesktop.exe [2017048 2019-04-24] (Time Solutions Sp. z o.o. -> ) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [1447936 2018-07-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\...\Policies\Explorer: [] HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-09] (Google LLC -> Google, Inc.) HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\...\AppCompatFlags\Custom\SWEP1RCR.EXE: [{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb] -> Star Wars Episode 1 Racer HKLM\Software\...\AppCompatFlags\InstalledSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb [2023-07-02] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC) Startup: C:\Users\FRAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bGHGEBB.lnk [2024-06-07] ShortcutTarget: bGHGEBB.lnk -> C:\ProgramData\hecbkea\Autoit3.exe (Ningún archivo) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BIMserver.center Sync.lnk [2021-06-16] ShortcutTarget: BIMserver.center Sync.lnk -> C:\Program Files\BIMserver.center Sync\BIMserver.center Sync.exe (CYPE Ingenieros, S.A. -> CYPE Ingenieros S.A.) [Archivo no firmado] <==== ATENCIÓN Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BIMserver.center.lnk [2021-12-14] ShortcutTarget: BIMserver.center.lnk -> C:\CYPE Ingenieros\Versión 2017\programas\bimservinst.exe (CYPE Ingenieros S.A.) [Archivo no firmado] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {CE9445CB-13E0-41D9-A298-3B9F8347107B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.) Task: {2CD9F2A4-B65E-4E02-9690-8E343015E40F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [1447936 2018-07-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {094B52EA-73BB-4A57-86C4-FCBD0543C65F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {416F4A42-D87F-4346-8176-FDAEE25966C1} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4454832 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {E582CD88-C2B4-4995-835B-B9D55C4A1DA0} - System32\Tasks\ASUS\AsRogAuraGpuDllServer => C:\Program Files (x86)\LightingService\1.00.23\AsRogAuraGpuDllServer.exe [247256 2017-08-17] (ASUSTeK Computer Inc. -> ) Task: {B4D2208B-4489-41FC-A950-F29AD99001C3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software) Task: {C7C5A269-F519-42AA-8B99-8F1019271077} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {E09D30FC-78A9-4F54-9BBC-50F0A1C05917} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d434873c-99d4-42b4-be97-ba550e69a1cb" --version "6.25.11131" --silent Task: {5CA2F9F5-262A-4616-92C4-A0B82B39A559} - System32\Tasks\CCleanerSkipUAC - FRAN => C:\Program Files\CCleaner\CCleaner.exe [39451552 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {9FEEFF68-502D-4B21-B5D3-82EFBB00C2BA} - System32\Tasks\Core Temp Autostart FRAN => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU) Task: {E5DA02AE-53C7-4E0C-888B-6CE24F60B99F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5672240 2024-05-19] (Microsoft Windows -> Microsoft Corporation) Task: {224C6DCA-8ABD-4B7D-8BD5-4F3F064FE2C9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) Task: {17724E40-C50A-4B06-A42D-A1555AD8D609} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) Task: {423F23DC-B977-4906-B3C7-A5B687BD9ACE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{C2E1FFF4-C5DE-44C5-B23E-7824BEB0A283} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC) Task: {DE87B4D3-C53A-4F2F-8DBF-CC63EA15C505} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2020-03-30] (Nota Inc. -> Nota Inc.) Task: {99A00EEB-FC54-4DCA-A954-5C7634B51263} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2020-03-30] (Nota Inc. -> Nota Inc.) Task: {24895764-1F6E-4B22-BBAF-D396BB9D17D2} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation) Task: {908525A2-BFD4-4095-A1A1-D4284B6AA5F3} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1649737624-4181922170-3126298985-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited) Task: {AAF76640-605C-48F4-AD3B-E328B77F5822} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {F542A3FB-6AAC-4C26-8280-C7A07D1ABB61} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {0691950B-F924-4AE0-9357-746D8877CF26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {6D9FA43B-BDB6-442C-BCDC-A50552C43213} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\Gtkyrkdfsc => C:\Windows\system32\RUNDLL32.exe [71680 2024-05-19] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\Common Files\ExtraAuto\MultiSkpd\"C:\Program Files (x86)\Common Files\ExtraAuto\MultiSkpd\DDORmArrtmsiw.dll",Wib5pydev <==== ATENCIÓN Task: {3671C1C5-9074-40CD-BE6A-927DDD9A7F3C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E396EF65-31DA-42ED-9D03-7AC16412F5C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A73242BD-E5AE-45D4-B9C0-D65A171F4BA6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {03EB2017-B75B-4EB5-A515-359375EF8259} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-06-22] (Mozilla Corporation -> Mozilla Foundation) Task: {769552FD-926C-48FF-B7D9-EBA232CE2865} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-25] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {4C7A0CE3-F89F-4419-B142-3247CDA78BFF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation) Task: {804F9E28-0319-4C62-B330-FD25506707E6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {4896680E-3B8F-45A0-8BD0-71E6A22B5281} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {F7A98E69-F1DD-409A-97F3-9975856D8BE3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {FB567A79-0CE6-44B1-BEA3-69A9DFE93B13} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {4B56C394-95A0-4E7E-81EE-3E77750C30FF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {268D5E3D-C70F-45BA-BBDD-8392E7608DBC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {DC2F4AA4-CC88-4BE2-A48D-344FDF3AA186} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {1B75F12C-42E0-45D9-8F45-DD8498AC9367} - System32\Tasks\Opera scheduled Autoupdate 1645966723 => C:\Users\FRAN\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Ningún archivo) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{b06e69f9-f07b-49d9-884d-daa24e55793b}: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{b06e69f9-f07b-49d9-884d-daa24e55793b}: [DhcpDomain] bbrouter Tcpip\..\Interfaces\{e45ea86f-5ab7-4191-bdfe-c13436b489dc}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\FRAN\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-07] Edge DownloadDir: Default -> D:\FRAN\Descargas Edge Extension: (Malwarebytes Browser Guard) - C:\Users\FRAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-06-12] Edge Extension: (Documentos de Google sin conexión) - C:\Users\FRAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-10] Edge Extension: (Edge relevant text changes) - C:\Users\FRAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-27] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: h8kr78y2.default FF ProfilePath: C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default [2024-07-14] FF Homepage: Mozilla\Firefox\Profiles\h8kr78y2.default -> hxxps://www.google.com/ FF Session Restore: Mozilla\Firefox\Profiles\h8kr78y2.default -> está habilitado. FF Notifications: Mozilla\Firefox\Profiles\h8kr78y2.default -> hxxps://mail.google.com; hxxps://web.wallapop.com; hxxps://www.cleanfox.io; hxxps://es.wallapop.com; hxxps://keepa.com; hxxps://meet.google.com; hxxps://forospyware.com FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\amptra@keepa.com.xpi [2023-12-16] FF Extension: (Spanish (Spain) Dictionary) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\es-es@dictionaries.addons.mozilla.org.xpi [2020-05-22] FF Extension: (Al traductor de Google) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-08-09] FF Extension: (Privacy Badger) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-02-03] FF Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\jid1-PmuMUcuMey5ABw@jetpack.xpi [2021-06-02] FF Extension: (Language: Español (ES) (Spanish, Spain)) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2024-07-05] FF Extension: (Kaspersky Protection) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2023-12-09] FF Extension: (uBlock Origin) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\uBlock0@raymondhill.net.xpi [2021-08-09] FF Extension: (Malwarebytes Browser Guard) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-06] FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2021-01-10] FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\FRAN\AppData\Roaming\Mozilla\Firefox\Profiles\h8kr78y2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-19] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2018-08-03] [Heredado] [no firmado] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-15] (Adobe Systems Incorporated -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-15] (Adobe Systems Incorporated -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-16] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default [2024-07-06] CHR DownloadDir: D:\FRAN\Escritorio CHR Notifications: Default -> hxxps://app.slack.com CHR Extension: (Adobe Acrobat - Crear archivos PDF) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-05-20] CHR Extension: (Documentos de Google sin conexión) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-08] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-06-20] CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-10-17] CHR Extension: (Boomerang for Gmail) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll [2024-07-04] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Extension: (Streak CRM para Gmail) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik [2024-07-06] CHR Profile: C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-08-22] CHR Profile: C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-11-01] CHR Extension: (MozBar) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2023-05-06] CHR Extension: (Documentos de Google sin conexión) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-06] CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-01] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-06] CHR Profile: C:\Users\FRAN\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-06] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKU\S-1-5-21-1649737624-4181922170-3126298985-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1162616 2018-12-01] (Autodesk, Inc. -> Autodesk Inc.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.) S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2019-01-22] (Adobe Systems Incorporated -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4577712 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2017-07-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] (Autodesk, Inc. -> ) S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-07-02] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-06-16] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-06-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S2 Cype BIM; C:\CYPE Ingenieros\Versión 2017\programas\bimserv.exe [106496 2017-06-16] (CYPE Ingenieros S.A.) [Archivo no firmado] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.) S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2184192 2017-05-29] (DIAL GmbH) [Archivo no firmado] S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\203.4.4857\DropboxElevationService.exe [1659288 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810984 2022-10-09] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [595944 2021-10-09] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.) S4 LightingService; C:\Program Files (x86)\LightingService\1.00.23\LightingService.exe [1199064 2017-08-17] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-05-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11500840 2021-04-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-04-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R2 VeeamEndpointBackupSvc; C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe [128592 2020-07-14] (Veeam Software Group GmbH -> Veeam Software Group GmbH) R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15221296 2020-11-17] (VMware, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R3 ALSysIO; C:\Users\FRAN\AppData\Local\Temp\ALSysIO64.sys [47240 2024-07-05] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATENCIÓN R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2016-11-18] (ASUSTeK Computer Inc. -> ) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 GLCKIO; C:\Program Files (x86)\ASUS\AURA\690b33e1-0462-4e84-9bea-c7552b45432a.sys [14976 2018-07-15] (ASUSTeK Computer Inc. -> ) R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S3 ksophon_x64; C:\WINDOWS\system32\drivers\ksophon_x64.sys [9986168 2022-09-15] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.) R3 MpKsl80e70fe4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CE4AAC16-F5DC-47C3-B2CB-6B370ED1B3D7}\MpKslDrv.sys [271640 2024-07-14] (Microsoft Windows -> Microsoft Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) S3 VeeamFLR; C:\Program Files\Veeam\Endpoint Backup\VeeamFCT.sys [303704 2020-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Veeam Software Group GmbH) S3 VirtualDK; C:\Program Files\Veeam\Endpoint Backup\vdk.sys [57216 2020-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Ken Kato) R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [60344 2020-11-17] (VMware, Inc. -> VMware, Inc.) R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [68544 2020-11-17] (VMware, Inc. -> VMware, Inc.) R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [105912 2020-08-11] (VMware, Inc. -> VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [54592 2020-08-11] (VMware, Inc. -> VMware, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [215864 2024-04-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-07-12 18:51 - 2024-07-12 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2024-07-12 18:49 - 2024-07-12 18:51 - 000000000 ___HD C:\$WinREAgent 2024-07-09 13:02 - 2024-07-09 13:02 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2024-07-07 18:56 - 2024-07-14 20:57 - 000000000 ____D C:\FRST 2024-07-05 20:25 - 2024-07-05 20:25 - 133169152 _____ C:\WINDOWS\system32\config\SOFTWARE 2024-07-05 19:32 - 2024-07-05 19:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-07-02 18:17 - 2024-07-02 18:17 - 000000000 ____D C:\Users\FRAN\AppData\Local\main.kts.compiled.cache 2024-07-02 17:37 - 2024-07-02 17:39 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\JetBrains 2024-07-02 17:37 - 2024-07-02 17:37 - 000000000 ____D C:\Users\FRAN\AppData\Local\JetBrains 2024-07-02 17:36 - 2024-07-02 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains 2024-07-02 17:35 - 2024-07-02 17:35 - 000000000 ____D C:\Program Files\JetBrains 2024-06-22 23:38 - 2024-07-14 17:00 - 000000000 ____D C:\Program Files\Mozilla Firefox ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-07-14 20:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-07-14 20:48 - 2018-02-18 23:34 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\Microsoft\Excel 2024-07-14 20:43 - 2018-02-13 17:52 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\Microsoft\Word 2024-07-14 19:06 - 2020-09-26 11:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-07-14 12:25 - 2018-02-03 19:37 - 000000000 ____D C:\ProgramData\NVIDIA 2024-07-14 11:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-07-14 11:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-07-12 18:51 - 2018-02-13 16:53 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\Dropbox 2024-07-12 18:51 - 2018-02-13 16:51 - 000000000 ____D C:\Users\FRAN\AppData\Local\Dropbox 2024-07-12 18:51 - 2018-02-13 16:51 - 000000000 ____D C:\Program Files (x86)\Dropbox 2024-07-12 18:49 - 2020-09-26 11:13 - 000003706 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-12 18:49 - 2020-09-26 11:13 - 000003582 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-07-09 20:51 - 2018-05-19 18:29 - 000000000 ____D C:\Users\FRAN\AppData\Local\D3DSCache 2024-07-09 19:33 - 2021-12-15 23:27 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-07-09 19:32 - 2021-09-21 18:25 - 000002179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2024-07-07 18:58 - 2019-12-07 11:12 - 000000000 ____D C:\WINDOWS\INF 2024-07-07 18:54 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-07-07 18:53 - 2018-02-04 02:24 - 000000000 ____D C:\Users\FRAN\AppData\Local\Packages 2024-07-07 17:08 - 2020-12-02 19:59 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-07-07 12:58 - 2018-02-03 20:04 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\discord 2024-07-07 12:52 - 2018-02-03 20:04 - 000000000 ____D C:\Users\FRAN\AppData\Local\Discord 2024-07-07 08:55 - 2024-05-19 19:52 - 000000000 ____D C:\Users\FRAN\AppData\Local\Battle.net 2024-07-06 21:52 - 2024-05-19 19:52 - 000000000 ____D C:\Program Files (x86)\Battle.net 2024-07-06 21:30 - 2018-04-23 21:07 - 000000000 ____D C:\Users\FRAN\AppData\Local\Google 2024-07-06 20:42 - 2018-05-09 00:57 - 000000000 ____D C:\Users\FRAN\AppData\Local\Adobe 2024-07-05 20:25 - 2018-02-19 14:13 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2024-07-05 19:32 - 2020-09-26 11:17 - 001781144 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-07-05 19:32 - 2019-12-07 16:56 - 000791108 _____ C:\WINDOWS\system32\perfh00A.dat 2024-07-05 19:32 - 2019-12-07 16:56 - 000157022 _____ C:\WINDOWS\system32\perfc00A.dat 2024-07-05 19:32 - 2018-02-03 19:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-07-05 19:32 - 2018-02-03 19:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-07-05 19:26 - 2020-10-30 21:08 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2024-07-05 19:26 - 2018-11-25 13:49 - 000000000 ____D C:\bim_projects 2024-07-05 19:26 - 2018-04-23 21:07 - 000000000 ____D C:\Program Files\CCleaner 2024-07-05 19:25 - 2022-09-20 17:54 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-07-05 19:25 - 2020-12-05 13:29 - 000000000 ____D C:\ProgramData\VMware 2024-07-05 19:25 - 2020-09-26 11:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-07-05 19:25 - 2020-09-26 11:07 - 000008192 ___SH C:\DumpStack.log.tmp 2024-07-05 19:25 - 2018-08-03 18:06 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2024-07-05 19:25 - 2018-02-13 16:51 - 000001008 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2024-07-05 19:25 - 2018-02-13 16:51 - 000001004 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2024-07-05 19:17 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-07-05 18:54 - 2023-07-29 00:14 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 2024-07-05 18:54 - 2020-09-26 11:13 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2024-07-04 18:32 - 2018-05-18 17:27 - 000000000 ____D C:\Prest88 2024-07-03 19:01 - 2024-02-28 09:10 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll 2024-07-03 19:01 - 2022-10-23 17:37 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2024-07-03 19:01 - 2022-10-23 17:37 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2024-07-03 19:01 - 2021-11-19 19:56 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2024-07-03 19:01 - 2021-11-07 19:29 - 002799208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2024-07-03 19:01 - 2021-11-07 19:29 - 000751096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2024-07-03 19:01 - 2021-11-07 19:29 - 000222824 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2024-07-03 19:01 - 2021-11-07 19:29 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2024-07-01 22:13 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-07-01 22:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2024-07-01 19:21 - 2018-02-13 17:52 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\Microsoft\UProof 2024-07-01 19:15 - 2022-10-13 20:34 - 000002149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2024-07-01 17:28 - 2022-09-20 17:54 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-07-01 17:28 - 2020-09-26 11:13 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-06-27 20:10 - 2019-02-19 00:04 - 000000033 _____ C:\Users\FRAN\AppData\Roaming\AdobeWLCMCache.dat 2024-06-27 20:10 - 2018-02-10 19:38 - 000000000 ____D C:\Users\FRAN\AppData\Local\CrashDumps 2024-06-27 17:15 - 2018-05-10 23:46 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-06-24 20:29 - 2021-04-08 18:10 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\Zoom 2024-06-20 15:21 - 2018-02-28 16:49 - 000000000 ____D C:\Users\FRAN\AppData\Roaming\obs-studio 2024-06-20 15:21 - 2018-02-03 19:45 - 000000000 ____D C:\ProgramData\Package Cache 2024-06-18 22:46 - 2020-09-26 11:13 - 000004068 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2024-06-18 22:46 - 2020-09-26 11:13 - 000003836 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2024-06-17 19:58 - 2019-09-22 19:00 - 000000000 ____D C:\Users\FRAN\AppData\Local\ElevatedDiagnostics ==================== Archivos en la raíz de algunos directorios ======== 2024-06-07 20:25 - 2024-06-07 20:25 - 003211264 _____ (as) C:\ProgramData\BFCAAEHJDB.exe 2024-06-05 23:00 - 2024-06-05 23:00 - 003211264 _____ (as) C:\ProgramData\FHJDGHIJDG.exe 2024-06-05 23:04 - 2024-06-05 23:04 - 003211264 _____ (as) C:\ProgramData\IEBAAFCAFC.exe 2021-06-01 19:31 - 2021-06-01 19:31 - 000021119 _____ () C:\Program Files (x86)\unins000.dat 2021-06-01 19:31 - 2021-06-01 19:31 - 002576280 _____ (Certificacion Energetica SL ) C:\Program Files (x86)\unins000.exe 2021-06-01 19:31 - 2021-06-01 19:31 - 000026585 _____ () C:\Program Files (x86)\unins000.msg 2021-06-01 19:32 - 2021-06-01 19:32 - 000271311 _____ () C:\Program Files (x86)\unins001.dat 2021-06-01 19:32 - 2021-06-01 19:32 - 002574856 _____ (Certificacion Energetica SL ) C:\Program Files (x86)\unins001.exe 2021-06-01 19:32 - 2021-06-01 19:32 - 000026585 _____ () C:\Program Files (x86)\unins001.msg 2021-06-01 19:32 - 2021-06-01 19:32 - 000075123 _____ () C:\Program Files (x86)\unins002.dat 2021-06-01 19:32 - 2021-06-01 19:32 - 001200169 _____ () C:\Program Files (x86)\unins002.exe 2021-06-01 19:36 - 2021-06-01 19:38 - 000010258 _____ () C:\Program Files (x86)\unins003.dat 2021-06-01 19:38 - 2021-06-01 19:38 - 000719954 _____ () C:\Program Files (x86)\unins003.exe 2021-06-01 19:47 - 2021-06-01 19:47 - 000010025 _____ () C:\Program Files (x86)\unins004.dat 2021-06-01 19:47 - 2021-06-01 19:47 - 000719954 _____ () C:\Program Files (x86)\unins004.exe 2021-06-01 19:47 - 2021-06-01 19:47 - 000050161 _____ () C:\Program Files (x86)\unins005.dat 2021-06-01 19:47 - 2021-06-01 19:47 - 001183240 _____ () C:\Program Files (x86)\unins005.exe 2021-06-01 19:47 - 2021-06-01 19:47 - 000026637 _____ () C:\Program Files (x86)\unins005.msg 2019-02-19 00:04 - 2024-06-27 20:10 - 000000033 _____ () C:\Users\FRAN\AppData\Roaming\AdobeWLCMCache.dat 2024-06-05 23:00 - 2024-06-05 23:00 - 000000032 _____ () C:\Users\FRAN\AppData\Roaming\bGHGEBB 2021-02-20 22:01 - 2021-02-20 22:01 - 000000015 _____ () C:\Users\FRAN\AppData\Roaming\obs-virtualcam.txt 2022-08-23 22:41 - 2022-08-23 22:41 - 000001144 _____ () C:\Users\FRAN\AppData\Roaming\tof_launcher.reg 2019-02-19 18:26 - 2019-02-19 18:26 - 000000000 _____ () C:\Users\FRAN\AppData\Local\oobelibMkey.log 2021-12-22 17:58 - 2021-12-22 17:58 - 000000218 _____ () C:\Users\FRAN\AppData\Local\recently-used.xbel 2018-03-28 23:23 - 2018-03-28 23:23 - 000000017 _____ () C:\Users\FRAN\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================