Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 09-09-2024 Ejecutado por alba1 (administrador) sobre DESKTOP-88PP5N4 (ASUSTeK COMPUTER INC. Strix GL703GM_GL703GM) (15-09-2024 11:47:34) Ejecutado desde C:\Users\alba1\Desktop\FRST64.exe Perfiles cargados: alba1 Plataforma: Microsoft Windows 11 Pro Versión 23H2 22631.4169 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) [Archivo no firmado] C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe (C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\96.0.0.0\crashpad_handler.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.24900.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.79\msedgewebview2.exe <6> (Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe (DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe (explorer.exe ->) (Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe (explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe <7> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.3.1.9694\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe <2> (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (services.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_fa6b3fb2c05394c2\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6c1db4160fc7f113\Intel_PIE_Service.exe (services.exe ->) (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_ed81ad204162c085\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (PURSLANE -> Purslane Ltd) C:\Program Files\RustDesk\rustdesk.exe <3> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe <2> (sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUS) C:\Program Files\WindowsApps\B9ECED6F.ROGAuraCore_2.1.30.0_x86__qmba6cd70vzyy\AuraListen.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) F:\Program Files (x86)\ASUSTeK COMPUTER INC\ROG Gaming Center\ROGGamingKey.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.4166_none_e96b0c1842c424f9\TiWorker.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe <2> (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177544 2023-10-06] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2023-10-06] (Corel Corporation -> WinZip Computing, S.L.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1775264 2021-12-16] (voidtools -> voidtools) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe [61313128 2024-08-26] (Google LLC -> Google, Inc.) HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919352 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe [61313128 2024-08-26] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919352 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919352 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\...\Run: [EpicGamesLauncher] => F:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\...\Run: [Discord] => C:\Users\alba1\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe [61313128 2024-08-26] (Google LLC -> Google, Inc.) HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\alba1\AppData\Local\Microsoft\Teams\Update.exe [2508520 2022-08-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\96.0.0.0\GoogleDriveFS.exe [61313128 2024-08-26] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2018-11-29] (pdfforge GmbH) [Archivo no firmado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\128.0.6613.138\Installer\chrmstp.exe [2024-09-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> HKLM\Software\...\Authentication\Credential Provider Filters: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RustDesk Tray.lnk [2024-08-15] ShortcutTarget: RustDesk Tray.lnk -> C:\Program Files\RustDesk\rustdesk.exe (PURSLANE -> Purslane Ltd) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2024-03-28] ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing) ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {EC46F0C4-723B-4C54-A93D-B2AAF2335428} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.) Task: {B59A34B1-92D6-4920-8E18-0B236EEEF1EB} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d48e53ede7c9f3 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [157016 2018-12-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {38B4BD3D-A69F-4C9F-8FF8-A8989A053530} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [157016 2018-12-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {8E64E759-71B2-47D9-8E0C-588462B3DD26} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {46CC55FC-F01E-4BD7-AC19-E84D6717B095} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software) Task: {FA84D53D-6F3D-4E3E-B2C3-3E6E2407D7ED} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F64703A7-C02D-44EC-88CE-36AB1EC44C97} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC) Task: {D29C3FC1-F653-4D8A-A9DB-38B075FAC2F2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {24E78996-10E2-4925-B13A-D39777CF655C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-08] (Microsoft Corporation -> Microsoft Corporation) Task: {B5EF456D-6CCF-429B-A9A9-F0C57CC425D1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-14] (Microsoft Corporation -> Microsoft Corporation) Task: {1D697AB0-7B3C-4A2A-B020-FFB6B3ADF09E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-14] (Microsoft Corporation -> Microsoft Corporation) Task: {83182E50-C218-4D85-95D6-07E3C1628FF2} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4464024 2024-08-25] (Microsoft Corporation -> Microsoft Corporation) Task: {52073264-B54F-429F-A7EF-1FBD5290E7D8} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [71368 2024-09-14] (Microsoft Corporation -> Microsoft Corporation) Task: {C7A7165F-F59D-46EB-B250-77CCC2D69C5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CB91DA72-D2FD-48A0-9782-AA49E0517374} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {68A6CB55-1236-4963-8AC8-F8085B59068B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AC7DDA56-EEEC-4FE2-9F2C-453514195097} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675744 2024-07-31] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {1D0FC0A8-22DC-46F3-8866-E2F6C8D8A411} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1371744870-1600840755-4013086918-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675744 2024-07-31] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {DDE2F0CB-857C-4089-89FF-559BFBC0C524} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-07-31] (Mozilla Corporation -> Mozilla Foundation) Task: {86D22EBA-8CF4-4368-B29A-C4743D870BEB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {711D3D12-6A31-497D-A556-A0569DFEBBF0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {35DCB9F1-0534-48E1-8F31-AEBD2F3167DE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {1C4C151E-465A-4C68-8CF0-9E45978B2718} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A5C83512-D859-41BC-BC18-D46BF3CDC079} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BA543CCC-6962-4F5E-A521-D7FA563707A7} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2ECC0B52-6285-44CA-915B-C3A8212A81CA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D98CFADE-330B-4F1D-9324-9FA930297E40} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E30E4F12-6152-43FF-B834-8CA9CF0D620F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8B34FA1E-4EF3-4E08-9C6C-D8355EC0AC81} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209208 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) Task: {DE2CCE73-83D7-4A5B-B644-623AC4B28493} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1371744870-1600840755-4013086918-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209208 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E58BE34C-7E47-4914-BB50-CB69C9ADDDAF} - System32\Tasks\ROG Gaming Center => F:\Program Files (x86)\ASUSTeK COMPUTER INC\ROG Gaming Center\ROGGamingKey.exe [4702168 2017-08-17] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {79CBFB15-7DCE-4CFB-934F-71DE5F17A68F} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2019-07-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {FB6A3400-22F2-4A7D-AE3F-F7D1B6CA3C3D} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277528 2019-07-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {3B1F3E1E-E9E9-427B-A5B4-C7744AE56270} - System32\Tasks\WinZip - Deduplicador - Descargas - alba1 => C:\Program Files\WinZip\WzBGTToolsManager64.exe [335456 2023-10-06] (Corel Corporation -> WinZip Computing) Task: {0F256EC2-85D4-4C35-A37D-C156E5D99535} - System32\Tasks\WinZip - Deduplicador - Documentos - alba1 => C:\Program Files\WinZip\WzBGTToolsManager64.exe [335456 2023-10-06] (Corel Corporation -> WinZip Computing) Task: {004BCD9A-F960-46B8-8F93-5893EBD531B9} - System32\Tasks\WinZip - Deduplicador - Imágenes - alba1 => C:\Program Files\WinZip\WzBGTToolsManager64.exe [335456 2023-10-06] (Corel Corporation -> WinZip Computing) Task: {41849DDE-759F-42B8-B941-8FDAEE25E309} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177544 2023-10-06] (Corel Corporation -> Corel Corporation) Task: {92B90CC3-78EB-4E67-A4D0-24D2112F8388} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177544 2023-10-06] (Corel Corporation -> Corel Corporation) Task: {BF918F2B-D03D-40F6-AF27-BD1A2FC8273E} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177544 2023-10-06] (Corel Corporation -> Corel Corporation) Task: {5A9509DB-C444-47EF-A77A-63F8894279C1} - System32\Tasks\WinZip Updater - alba1 => C:\Program Files\WinZip\WzUpdater.exe [446560 2023-10-06] (Corel Corporation -> ) Task: {941A19BD-89EF-4ED2-83A5-C87413F6A73C} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-1371744870-1600840755-4013086918-1001 => C:\Users\alba1\AppData\Roaming\Zoom\bin\Zoom.exe [432456 2024-09-10] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}\4556C65636162747167656E616835464336483: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}\4556C65636162747167656E616835464336483: [DhcpDomain] Home Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}\B46313F533133373: [DhcpNameServer] 192.168.9.99 Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}\D4F4659435451425F5343434: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{3b67e9f1-3050-44ac-92e8-5c38cf9c3502}\D4F4659435451425F5343434: [DhcpDomain] Home Tcpip\..\Interfaces\{dcb3dd85-e047-411e-b4a2-49449aa8e8cc}: [DhcpNameServer] 212.166.211.21 212.166.132.96 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\alba1\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-12] Edge DownloadDir: Default -> F:\DESCARGAS Edge HomePage: Default -> hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=ES&userid=3682cd8f-dabb-4628-baa8-8f680a7dd1ca&searchtype=hp&installDate=26/03/2013 Edge Extension: (Documentos de Google sin conexión) - C:\Users\alba1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-12] Edge Extension: (Edge relevant text changes) - C:\Users\alba1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: vjzc4nfa.default FF ProfilePath: C:\Users\alba1\AppData\Roaming\Mozilla\Firefox\Profiles\vjzc4nfa.default [2024-07-31] FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default [2024-09-15] CHR DownloadDir: F:\DESCARGAS CHR HomePage: Default -> hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=ES&userid=3682cd8f-dabb-4628-baa8-8f680a7dd1ca&searchtype=hp&installDate=26/03/2013 CHR StartupUrls: Default -> "hxxp://www.google.es/","hxxp://www.youtube.com/?gl=ES&hl=es","hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=ES&userid=3682cd8f-dabb-4628-baa8-8f680a7dd1ca&searchtype=hp&installDate=26/03/2013","hxxp://www.google.com/","hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=2629001E8C26D0E3&affID=119357&tt=040713_ctrl&tsp=4933","hxxp://www.default-search.net?sid=476&aid=124&itype=n&ver=12302&tm=325&src=hmp","hxxp://www.default-search.net?sid=476&aid=124&itype=a&ver=12521&tm=325&src=hmp","hxxp://www.default-search.net?sid=476&aid=124&itype=a&ver=12692&tm=325&src=hmp","hxxp://www.default-search.net?sid=476&aid=124&itype=a&ver=13277&tm=325&src=hmp","hxxps://www.google.com/" CHR Extension: (uBlock Origin) - C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-08-26] CHR Extension: (Player para ver Movistar+) - C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2024-08-26] CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-07-31] CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2024-08-27] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\alba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-31] CHR Profile: C:\Users\alba1\AppData\Local\Google\Chrome\User Data\System Profile [2024-08-26] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKU\S-1-5-21-1371744870-1600840755-4013086918-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16979232 2023-10-05] (Autodesk, Inc. -> Autodesk) R2 AdskNLM; C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe [1368872 2023-09-12] (Flexera Software LLC -> Flexera) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.13\atkexComSvc.exe [415680 2018-09-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [157016 2018-12-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [157016 2018-12-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [11630368 2024-02-07] (Autodesk, Inc. -> Autodesk, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-08] (Microsoft Corporation -> Microsoft Corporation) S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2184192 2017-05-29] (DIAL GmbH) [Archivo no firmado] R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1775264 2021-12-16] (voidtools -> voidtools) R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [138640 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncHelper.exe [3523112 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8895072 2024-06-30] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_ed81ad204162c085\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.166.0818.0003\OneDriveUpdaterService.exe [3863984 2024-09-07] (Microsoft Corporation -> Microsoft Corporation) R2 RustDesk; C:\Program Files\RustDesk\RustDesk.exe [256912 2024-06-29] (PURSLANE -> Purslane Ltd) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530448 2024-08-28] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SoundBoosterService; F:\Letasoft Sound Booster\SoundBoosterService.exe [153272 2019-02-21] (Letasoft LLC -> Letasoft) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2018-10-03] (ASUSTeK Computer Inc. -> ) S3 AsusNumpadKbd; C:\WINDOWS\System32\drivers\AsusDigiFilter.sys [117480 2022-03-14] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Archivo no firmado] S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [27472 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [46928 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [158032 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [83280 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [121168 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [71320 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70368 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation) S1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> ) R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-09-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsl5575f676; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FF69CA8E-CEE7-4C40-B4F9-134E950721BE}\MpKslDrv.sys [271640 2024-09-14] (Microsoft Windows -> Microsoft Corporation) S3 MSIO; C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\msio64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> ) R1 NEOFLTR_819_48255; C:\Windows\system32\Drivers\NEOFLTR_819_48255.SYS [106864 2016-07-21] (Pulse Secure, LLC -> Pulse Secure, LLC) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2020-09-03] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-09-15 11:46 - 2024-09-15 11:46 - 000000000 ____D C:\Users\alba1\Desktop\virus 2024-09-14 11:23 - 2024-09-14 11:23 - 000808892 _____ C:\WINDOWS\system32\perfh00A.dat 2024-09-14 11:23 - 2024-09-14 11:23 - 000163532 _____ C:\WINDOWS\system32\perfc00A.dat 2024-09-12 23:50 - 2024-09-12 23:50 - 000090760 _____ C:\Users\alba1\Desktop\3.pdf 2024-09-12 23:50 - 2024-09-12 23:50 - 000090477 _____ C:\Users\alba1\Desktop\2.pdf 2024-09-12 00:34 - 2024-09-12 23:50 - 001449962 _____ C:\Users\alba1\Desktop\243481344 ALFONSO GUTIERREZ.3dm 2024-09-12 00:34 - 2024-09-12 00:34 - 001264438 _____ C:\Users\alba1\Desktop\243481344 ALFONSO GUTIERREZ.3dmbak 2024-09-12 00:31 - 2024-09-12 00:32 - 000088133 _____ C:\Users\alba1\Desktop\1.pdf 2024-09-11 23:13 - 2024-09-11 23:13 - 000001134 _____ C:\Users\Public\Desktop\Rhino 8.lnk 2024-09-11 23:13 - 2024-09-11 23:13 - 000000000 ____D C:\Program Files\McNeel 2024-09-11 23:12 - 2024-09-11 23:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rhino 8 2024-09-11 23:12 - 2024-09-11 23:12 - 000000000 ____D C:\Program Files\Rhino 8 2024-09-10 14:26 - 2024-09-10 14:26 - 000004268 _____ C:\WINDOWS\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-1371744870-1600840755-4013086918-1001 2024-09-10 14:26 - 2024-09-10 14:26 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2024-09-05 23:36 - 2024-09-06 15:18 - 000742516 _____ C:\Users\alba1\Desktop\PRESUPUESTO.pdf 2024-08-26 11:50 - 2024-08-26 11:50 - 000012774 _____ C:\Users\alba1\Desktop\OPO.xlsx ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-09-15 11:48 - 2024-07-01 21:00 - 000038603 _____ C:\Users\alba1\Desktop\FRST.txt 2024-09-15 11:47 - 2024-07-01 21:00 - 000000000 ____D C:\FRST 2024-09-15 11:45 - 2024-07-01 20:52 - 002397696 _____ (Farbar) C:\Users\alba1\Desktop\FRST64.exe 2024-09-15 11:40 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-09-15 11:40 - 2018-11-26 22:55 - 000000000 ____D C:\ProgramData\NVIDIA 2024-09-15 11:40 - 2018-11-26 22:34 - 000000000 ___SD C:\Users\alba1\AppData\Roaming\Microsoft\Credentials 2024-09-14 19:18 - 2022-12-04 14:21 - 000000000 ____D C:\Users\alba1 2024-09-14 19:18 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-09-14 19:18 - 2022-03-27 01:14 - 000000000 ____D C:\Users\alba1\AppData\Local\Everything 2024-09-14 19:18 - 2022-03-26 18:47 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Everything 2024-09-14 17:48 - 2018-12-17 22:36 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-09-14 15:52 - 2022-12-04 14:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-09-14 15:17 - 2018-12-07 00:28 - 000000000 ____D C:\Users\alba1\AppData\Local\D3DSCache 2024-09-14 13:09 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-09-14 13:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-09-14 11:23 - 2022-12-04 14:39 - 001807552 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-09-14 11:23 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-09-14 11:19 - 2020-08-16 14:27 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-09-14 11:15 - 2022-12-06 12:50 - 000000000 ____D C:\Program Files\TeamViewer 2024-09-14 11:15 - 2022-12-04 14:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-09-14 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-09-14 11:15 - 2021-03-21 02:21 - 000012288 ___SH C:\DumpStack.log.tmp 2024-09-13 14:34 - 2018-11-26 22:53 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-09-13 14:34 - 2018-11-26 22:53 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-09-12 14:28 - 2018-11-27 02:27 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-09-12 14:25 - 2018-11-26 22:39 - 000000000 ____D C:\Users\alba1\AppData\Local\Packages 2024-09-12 14:23 - 2018-11-27 02:27 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-09-11 23:33 - 2022-12-04 14:36 - 000593208 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-09-11 23:33 - 2022-05-07 07:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2024-09-11 23:13 - 2018-11-26 23:30 - 000000000 ____D C:\ProgramData\Package Cache 2024-09-11 23:07 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-09-11 22:50 - 2023-10-13 22:07 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-09-11 22:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-09-11 22:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-09-11 22:50 - 2021-11-02 14:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-09-11 22:38 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-09-11 15:15 - 2018-12-18 21:32 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Microsoft\Word 2024-09-10 21:04 - 2022-08-11 10:56 - 000000000 ____D C:\Users\alba1\Desktop\OTROS 2024-09-10 21:00 - 2018-12-17 22:58 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Microsoft\Excel 2024-09-10 14:26 - 2020-03-17 18:44 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Zoom 2024-09-09 14:14 - 2022-12-04 14:41 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-09-09 14:14 - 2022-12-04 14:41 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-09-07 15:35 - 2022-12-04 14:41 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1371744870-1600840755-4013086918-1001 2024-09-07 15:35 - 2022-12-04 14:41 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-09-07 15:35 - 2021-11-02 14:59 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-09-06 15:31 - 2018-11-26 22:56 - 000000000 ____D C:\ProgramData\Packages 2024-09-06 15:31 - 2018-11-26 22:41 - 000000000 ____D C:\Users\alba1\AppData\Local\PlaceholderTileLogoFolder 2024-09-05 23:36 - 2021-11-10 19:41 - 000000000 ____D C:\Users\alba1\AppData\LocalLow\Temp 2024-09-05 23:11 - 2018-11-26 23:47 - 000000000 ____D C:\Users\alba1\AppData\Local\CrashDumps 2024-09-03 21:15 - 2024-01-21 22:04 - 000000000 ____D C:\Users\alba1\AppData\Roaming\Notion 2024-09-03 18:54 - 2024-01-21 22:04 - 000000000 ____D C:\Users\alba1\AppData\Local\notion-updater 2024-08-29 15:25 - 2023-02-16 20:43 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-08-29 15:25 - 2022-12-04 14:41 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-08-29 15:25 - 2022-10-12 18:53 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-08-28 16:14 - 2022-05-07 12:28 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents 2024-08-28 16:14 - 2022-05-07 12:28 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-08-28 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-08-28 15:05 - 2022-12-04 14:39 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-08-26 19:38 - 2021-09-22 10:18 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2024-08-26 19:38 - 2021-09-22 10:18 - 000002008 _____ C:\Users\Default\Desktop\Google Slides.lnk 2024-08-26 19:38 - 2021-09-22 10:18 - 000002008 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2024-08-26 19:38 - 2021-09-22 10:18 - 000001996 _____ C:\Users\Default\Desktop\Google Docs.lnk 2024-08-17 19:24 - 2022-05-07 12:28 - 000000000 ___SD C:\WINDOWS\system32\AppV 2024-08-17 19:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-08-17 19:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-08-17 19:11 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-08-17 19:11 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll ==================== Archivos en la raíz de algunos directorios ======== 2019-03-01 21:51 - 2019-03-01 21:51 - 000000028 _____ () C:\Users\alba1\AppData\Roaming\kulerdata.json 2019-01-31 01:45 - 2019-01-31 01:45 - 000000132 _____ () C:\Users\alba1\AppData\Roaming\Prefs. de formato PNG de Adobe CS6 2020-09-22 17:58 - 2020-09-22 17:58 - 000000045 _____ () C:\Users\alba1\AppData\Roaming\~SiMPLEX.ini ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================