Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 24-03-2025 Ejecutado por abyss (administrador) sobre PEPELENOVO (LENOVO 82H8) (29-03-2025 13:14:19) Ejecutado desde C:\Users\abyss\OneDrive\Escritorio\FRST64.exe Perfiles cargados: abyss Plataforma: Microsoft Windows 11 Home Insider Preview Versión Dev 27823.1000 (X64) Idioma: Español (España, internacional) Navegador predeterminado no detectado! Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) () [Archivo no firmado] C:\Program Files (x86)\Antirun\antirun.exe (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe (Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (C:\Program Files (x86)\DFX\DFX.exe ->) (Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe (C:\Program Files (x86)\DFX\DFX.exe ->) (Power Technology -> ) C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(GenericMessagingAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(IdeaNotebookAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(MultimediaAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(SettingsWidgetAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(SmartDisplayAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.11\DiscoverySrv.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.AlwaysOnTop.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.Awake.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.CropAndLock.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\WinUI3Apps\PowerToys.AdvancedPaste.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe (C:\Users\abyss\AppData\Local\0install.net\implementations\sha256new_QC342GHMEDDSRZYCOM5EA22LPQRU2O3OIA2K7ZISCDZIXVCVUA4Q\DeepL.exe ->) (DeepL SE -> The CefSharp Authors) C:\Users\abyss\AppData\Local\0install.net\implementations\sha256new_NX54BP3MSRHNDMB5N5YOFJZWO5QE5I5W7JTPGB4XC7MEJNSXCC3A\CefSharp.BrowserSubprocess.exe <5> (C:\Users\abyss\OneDrive\Escritorio\FRST64.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2501.31.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <3> (DeepL SE -> DeepL SE) C:\Users\abyss\AppData\Local\0install.net\implementations\sha256new_QC342GHMEDDSRZYCOM5EA22LPQRU2O3OIA2K7ZISCDZIXVCVUA4Q\DeepL.exe (drivers\Lenovo\udc\Service\UDClientService.exe ->) (Lenovo -> ) C:\ProgramData\Lenovo\Udc\Hosts\24.10.0.10\x64\AppProvisioningPlugin.exe (DriverStore\FileRepository\cui_dch.inf_amd64_1d30d78f99b3e31b\igfxCUIServiceN.exe ->) (Intel Graphics Internal 2023 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_1d30d78f99b3e31b\igfxEMN.exe (DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_e9709186d216ac57\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe (DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\FnHotkeyCapsLKNumLK.exe (DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\FnHotkeyUtility.exe (explorer.exe ->) () [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\NoteGemFavorites2016\NoteNavigate.exe (explorer.exe ->) () [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\NoteReminder\NoteReminder.exe (explorer.exe ->) () [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\NoteReminder\StickyNote.exe (explorer.exe ->) (Amazon.com Services LLC -> Amazon.com Inc.) C:\Users\abyss\AppData\Local\Amazon Drive\AmazonPhotos.exe (explorer.exe ->) (Amazon.com Services LLC -> Amazon.com Services LLC) C:\Users\abyss\AppData\Local\Amazon Music\Amazon Music Helper.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (explorer.exe ->) (Microsoft Corporation -> MSPCManager) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManager.exe (explorer.exe ->) (OneNoteGem) [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\AutoOneNote\AutoOneNote.exe (explorer.exe ->) (OneNoteGem) [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\CiteBoard\CiteBoard.exe (explorer.exe ->) (OneNoteGem) [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\OneAppGemMenu\OneAppGemMenu.exe (explorer.exe ->) (OneNoteGem) [Archivo no firmado] C:\Program Files (x86)\OneNoteGem\OneNoteSearchBar\NoteSearchBar.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe (Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\Addins\BatteryWidgetAddin\2.1.0.256\BatteryWidgetHost\BatteryWidgetHost.exe (LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <19> (Microsoft Corporation -> MSPCManagerCore) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerCore.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21> (Power Technology -> ) [Archivo no firmado] C:\Program Files (x86)\DFX\DFX.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_e9709186d216ac57\DAX3API.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_d9aa4f0713cc07ec\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_dd6a7ef14d856351\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel Graphics Internal 2023 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\54_lenovo_prc_tgl_iigd_dch.inf_amd64_7f857758fff6432a\IntelCpHDCPSvc.exe (services.exe ->) (Intel Graphics Internal 2023 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_1d30d78f99b3e31b\igfxCUIServiceN.exe (services.exe ->) (Intel Graphics Internal 2023 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_89c75544451b5039\OneApp.IGCC.WinService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe (services.exe ->) (Lenovo -> Lenovo Limited Company) C:\Program Files\Lenovo\LVA Pro Service\VoiceAssistantService.exe (services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation -> MSPCManagerService) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MidiSrv.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.) C:\Windows\System32\ElevocInstallDriver\ElevocControlService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01de91f5c3258938\RtkAudUService64.exe <2> (services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2> (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25031.39.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2509.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.27823.1000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.6901.0.0_x64__cw5n1h2txyewy\WidgetBoard.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (VS REVO GROUP OOD -> VS Revo Group Ltd.) C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUninHelper.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [LVAW] => C:\Program Files\Lenovo\LVA Pro Service\StartupHelper.exe [699680 2023-02-10] (Lenovo -> Lenovo Limited Company) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01de91f5c3258938\RtkAudUService64.exe [1910160 2023-08-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [Antirun] => C:\Program Files (x86)\Antirun\antirun.exe [2521600 2014-02-06] () [Archivo no firmado] HKLM-x32\...\Run: [AnchorToNote] => C:\Program Files (x86)\OneNoteGem\Anchor to OneNote 2021\AnchorToNote.exe [2273280 2021-09-20] (OneNoteGem.com) [Archivo no firmado] HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Archivo no firmado] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Archivo no firmado] HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1595384 2016-06-23] (Power Technology -> ) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [Amazon Music Helper] => C:\Users\abyss\AppData\Local\Amazon Music\Amazon Music Helper.exe [2355800 2021-06-09] (Amazon.com Services LLC -> Amazon.com Services LLC) HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [Microsoft Edge Update] => C:\Users\abyss\AppData\Local\Microsoft\EdgeUpdate\1.3.195.45\MicrosoftEdgeUpdateCore.exe [268384 2025-03-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [OneNoteNavigator] => C:\Program Files (x86)\OneNoteGem\NoteGemFavorites2016\NoteNavigate.exe [2428416 2020-08-16] () [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [OneNote Search Bar] => C:\Program Files (x86)\OneNoteGem\OneNoteSearchBar\NoteSearchBar.exe [3833856 2022-11-03] (OneNoteGem) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [OneNote Reminder] => C:\Program Files (x86)\OneNoteGem\NoteReminder\NoteReminder.exe [3493888 2022-10-24] () [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [GemStickyNote] => C:\Program Files (x86)\OneNoteGem\NoteReminder\StickyNote.exe [2004480 2022-10-24] () [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [Auto OneNote] => C:\Program Files (x86)\OneNoteGem\AutoOneNote\AutoOneNote.exe [3981312 2022-01-16] (OneNoteGem) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [Amazon Photos] => C:\Users\abyss\AppData\Local\Amazon Drive\AmazonPhotos.exe [12439152 2025-02-28] (Amazon.com Services LLC -> Amazon.com Inc.) HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [OneAppGemMenu] => C:\Program Files (x86)\OneNoteGem\OneAppGemMenu\OneAppGemMenu.exe [7094272 2024-12-31] (OneNoteGem) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [CiteBoard] => C:\Program Files (x86)\OneNoteGem\CiteBoard\CiteBoard.exe [3260416 2022-10-28] (OneNoteGem) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [87960 2025-01-22] (Lenovo -> Lenovo) HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [MicrosoftEdgeAutoLaunch_69C33F69D66876B0E2D53A8827F91E52] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-03-28] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [xwidget] => C:\Program Files (x86)\XWidget\XWidget.exe [6256128 2022-10-10] (xwidget.com) [Archivo no firmado] HKU\S-1-5-21-3632066542-2142008216-383740264-1001\...\Run: [XMagicScreen] => C:\Users\abyss\OneDrive\Escritorio\Software\xmagic\XMagicScreen.exe [67527535 2024-11-30] (XMagicSoft) [Archivo no firmado] HKLM\...\Print\Monitors\Nitro PDF Port 14 Monitor: C:\WINDOWS\system32\NxPrinterMonitor14.dll [341448 2023-11-03] (Nitro Software, Inc. -> Nitro Software, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{88AB88AB-CDFB-4C68-9C3A-F10B75A5BC61}] -> msiexec.exe /fu {CD3B809E-E5F7-403F-B469-95CABD522ABC} /qn HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{296985B0-9E7B-49B0-9C65-7847A6489C4D}] -> C:\Program Files (x86)\ASAP Utilities\Add_ASAP_Utilities_to_the_Excel_menu.exe [2022-03-24] (A Must in Every Office B.V. -> A Must in Every Office BV) IFEO\LogonUI.exe: [VerifierDlls] SecureUxTheme.dll IFEO\winlogon.exe: [VerifierDlls] SecureUxTheme.dll Startup: C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2023-02-20] ShortcutTarget: DeepL auto-start.lnk -> C:\Users\abyss\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Archivo no firmado] Startup: C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2025-03-28] ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) Startup: C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\QTTabBar Desktop Extension StartUp.QTTabGroup [2023-03-25] () [Archivo no firmado] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {5F3D4A0F-1508-427D-877F-600D3EDB6981} - \Lenovo\ImController\TimeBasedEvents\9d90a721-04cd-46c5-86b9-5c8d2397a72d -> Ningún archivo <==== ATENCIÓN Task: {672188D4-E44D-4983-B63D-6B5DC729293A} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Ningún archivo <==== ATENCIÓN Task: {86DB165D-A4B6-41D5-A8A8-AD7124DEABDC} - \Lenovo\ImController\TimeBasedEvents\768c7458-eec0-4a7e-881a-ba7d7ccf3e29 -> Ningún archivo <==== ATENCIÓN Task: {8C3DC65B-E77A-46AB-AFFF-236053F1C800} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Ningún archivo <==== ATENCIÓN Task: {BD958F92-A0FC-40F4-B638-4D17FC73E820} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Ningún archivo <==== ATENCIÓN Task: {D75A35F1-B033-455F-B7DD-5926AF6C6A09} - \Lenovo\ImController\TimeBasedEvents\ef49085a-7db5-45a7-b366-cacd484d878e -> Ningún archivo <==== ATENCIÓN Task: {4FF95270-6E70-4D65-BE1F-735B1074C896} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.11\WatchDog.exe [1156400 2025-02-04] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.11\repair Task: {1A6311C1-ECAF-42DE-B252-58075DED94FA} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [2909216 2025-03-22] (Microsoft Windows -> Microsoft Corporation) Task: {BF6CFD6A-A1AF-4022-BEB3-0ACA3101AB39} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\02c2cd6f-36b9-4de9-bf81-19d5568cbf86 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {90B7EF10-3946-4C3D-8B28-D3AC4CC95EF3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c177d686-7b66-407d-85dc-67f6f6c703d7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) Task: {C285D1E2-5CCE-4DCD-9650-85046133390F} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch Task: {30D04A0A-8D4A-4430-901F-6E50AC26123D} - System32\Tasks\Lenovo\LenovoWelcomeLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [3560352 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task Task: {8E3A339C-16AB-4161-80E3-07C1A6EB7EE8} - System32\Tasks\Lenovo\LenovoWelcomeQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch Task: {AE3657DB-08CA-42B4-A89B-4BB5A0697A49} - System32\Tasks\Lenovo\LenovoWelcomeTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData) Task: {CC0752E1-F9CD-41CC-834A-887A2899CC08} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\WINDOWS\system32\sc.exe [102400 2025-03-22] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210 Task: {D6D5B273-88F9-4247-9288-C9CAAF230402} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90952 2024-10-24] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle Task: {6F3EB813-28DC-46DF-974F-054260892021} - System32\Tasks\Lenovo\UDC\Lenovo UDC Maintainance Task => C:\WINDOWS\system32\sc.exe [102400 2025-03-22] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 220 Task: {4C2512FB-11C1-464D-8C77-C186B09B77AE} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [196960 2024-10-24] (Lenovo -> Lenovo Group Ltd.) Task: {C09810E7-88AB-40FF-8420-AC4465B72CBE} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [102400 2025-03-22] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {944EDB08-7AD3-4D3F-A687-60526120F1B6} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {E3201109-FE73-496B-A407-8B570E059A49} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {E057F9A7-D9DA-4966-9CCD-DFDC6F5E0F5E} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {0C876DA9-FE20-4C76-9868-FEE5F36AA7C3} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {9D99C212-6232-4A63-ACA4-77EE3345E23F} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {C5C79293-71FC-4E33-8473-EC952B5CE31F} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {9278DFF5-3193-4E67-B760-D345205F8410} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {B5FA930E-EAD7-408D-BC60-3F0CCA146609} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {AC2267CF-C125-47EB-B864-CC30BC649ADE} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {66093F06-3E41-4174-BB88-1E4FBD09715D} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (Ningún archivo) Task: {A504D98C-E8E4-4DD1-B463-B4E052C25ACC} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {79416537-AD53-4AEA-82D9-3E24D1567746} - System32\Tasks\Lenovo\Vantage\Schedule\SmartLock.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {0DB2669A-7393-4495-937C-E23013A0B96F} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {95C2095B-FE3F-4478-86B0-38CAF6F89EA2} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask => C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe [143768 2025-01-19] (Lenovo -> ) Task: {EBDAC7A0-C439-410B-A5A2-305ACDB3FFED} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo) Task: {74591589-3B1A-4055-8B0F-6B3F0BF38E99} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe /repair (Ningún archivo) Task: {26666717-A879-4686-B34F-1932CD5DCA95} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe /Run (Ningún archivo) Task: {C20BA09D-7729-4248-B69F-7EF76AB2AAFC} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-3632066542-2142008216-383740264-1001 => C:\Users\abyss\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (Ningún archivo) Task: {96E925EF-ACAC-4252-ABBE-721A7994BA6D} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3632066542-2142008216-383740264-1001 => MessengerHelper.exe --lassie (Ningún archivo) Task: {6B9375D2-490E-485F-BFE3-8E507CD8482B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21920008 2025-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {B49466DD-24FF-4702-8E45-3DF4F938DBA6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21920008 2025-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {B28382B9-287C-4161-8EF9-1DDFD039B1D9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141488 2025-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {C2140AA2-70A1-4E39-9FF7-97A43D0494E4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141488 2025-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {AB8A8877-FC44-46F5-B583-D62E4AC6D8A6} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [1602784 2025-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {799A2E0D-5C2E-4249-ADDF-C6B320FDEBE8} - System32\Tasks\Microsoft\Windows\AccountHealth\RecoverabilityToastTask => {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492} C:\WINDOWS\system32\AccountHealth.dll [258048 2025-03-22] (Microsoft Windows -> Microsoft Corporation) Task: {C885B7DB-DB6B-45F6-8EA1-F8B919E23D1C} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Ningún archivo) Task: {FCFAAB2C-3DD8-4A4B-8239-D32ED710FA95} - System32\Tasks\Microsoft\Windows\Management\Connectivity\ESIMPM => C:\WINDOWS\system32\esimpm.exe [512000 2025-03-22] (Microsoft Windows -> ) Task: {6D32CD91-5A6C-4971-8D48-A308FD3A1B28} - System32\Tasks\Microsoft\Windows\NetworkExperimentation => {584CA087-4DF3-4121-AB78-995558E3F28D} C:\Windows\System32\NetworkExperimentation.dll [495616 2025-03-22] (Microsoft Windows -> ) Task: {5BA690B4-AD1E-483F-9860-C29DAA61C7A5} - System32\Tasks\Microsoft\Windows\PCRPF\PCR Prediction Framework Firmware Update Task => C:\WINDOWS\system32\rundll32.exe [90112 2025-03-22] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\pcrpf.dll,NotifyFirmwareUpdateStaged Task: {65F0C96D-C275-4CE0-9266-A6C0524218A7} - System32\Tasks\Microsoft\Windows\PDE\Conversion Maintenance Task => C:\WINDOWS\system32\efsui.exe [40960 2025-03-22] (Microsoft Windows -> Microsoft Corporation) Task: {418D67F6-E042-4926-B76C-6DEE23A9DEE0} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => %WINDIR%\system32\SecureBootEncodeUEFI.exe (Ningún archivo) Task: {26905A42-740F-4943-8E66-EB206517D3EA} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200} Task: {B1DC4487-6426-481C-86D7-1FB1775F9B5C} - System32\Tasks\Microsoft\Windows\Servicing\OOBEFodSetup => %windir%\system32\OOBEFodSetup.exe (Ningún archivo) Task: {B1FA364F-CCE3-40F0-A50B-610BEEC9DD9E} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => %windir%\System32\UNP\UpdateNotificationMgr.exe (Ningún archivo) Task: {9C414A3A-8612-4B3A-BEF7-46BB8DE22056} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Ningún archivo) Task: {4FD0135E-5ED2-47FB-B328-1ECA3E0C3D03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AC3FFE62-47AD-4984-9699-20775100FEA7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {49858396-BB12-4ADD-9FDD-6FDC5E6981C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FE4A005A-20C1-4248-9ED9-CD1E70145B4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F886766B-E327-41EF-8545-91B15EF4B312} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\InitialConfiguration => {709FD5EF-7296-4154-BD3A-E9830FCFA60A} C:\WINDOWS\system32\ShellConfigTask.dll [225280 2025-03-22] (Microsoft Windows -> Microsoft Corporation) Task: {C44FFC71-6C61-44CF-8AFF-11FD21E34519} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration => {0BE6820D-B667-4CB6-931B-C153A77DA895} C:\WINDOWS\system32\ShellConfigTask.dll [225280 2025-03-22] (Microsoft Windows -> Microsoft Corporation) Task: {62CB0265-3ACB-4E29-9CEA-0F3E149F4177} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3632066542-2142008216-383740264-1001Core{24923AE6-FF96-4D29-9F5A-45E61731F015} => C:\Users\abyss\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-20] (Microsoft Corporation -> Microsoft Corporation) Task: {E653FF18-14FC-4B36-A648-737B7C482E63} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3632066542-2142008216-383740264-1001UA{827E8B94-EAA8-49E8-8A34-8FF15FAB96D8} => C:\Users\abyss\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-20] (Microsoft Corporation -> Microsoft Corporation) Task: {884C81FB-CC33-4B11-991F-AF70DF30097E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [682560 2025-03-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {CFF8E413-95C5-4C7B-8329-DEAD2597B6A0} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3632066542-2142008216-383740264-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [682560 2025-03-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {8515A8E4-D056-4FCD-AEF0-0950528D690F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-28] (Mozilla Corporation -> Mozilla Foundation) Task: {21368E3D-561C-4A14-BF4E-4BD68629A459} - System32\Tasks\PowerToys\Autorun for abyss => C:\Program Files\PowerToys\PowerToys.exe [1246232 2025-02-27] (Microsoft Corporation -> Microsoft Corporation) Task: {ADDC6D7A-59B8-49A4-8391-EEBA80ED89EE} - System32\Tasks\update-S-1-5-21-3632066542-2142008216-383740264-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {41B91241-5F9E-41CC-A917-AC3BD05E90A4} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {81CDF89A-ACF3-4369-A3B9-349373A19F64} - System32\Tasks\VS Revo Group\RevoHelperFreeStartup => C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUninHelper.exe [4053672 2024-12-10] (VS REVO GROUP OOD -> VS Revo Group Ltd.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-3632066542-2142008216-383740264-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{76f82bf2-16db-4b8e-838b-5a4598e227f8}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{76f82bf2-16db-4b8e-838b-5a4598e227f8}: [DhcpDomain] home Tcpip\..\Interfaces\{e42e0f9a-d5c3-492f-ac12-fa1be95f9f8e}: [DhcpNameServer] 152.201.1.4 Edge: ======= Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2025-03-29] Edge StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?ctid=CT2851619&SearchSource=48&UP=SP3437B326-950C-4FC1-A88A-E3B0103CC98D&SSPV=","hxxp://www%2Cgoogle.es/","hxxp://www.google.e/","hxxp://istart.webssearches.com/?type=hppp&ts=1399996947&from=amt&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://istart.webssearches.com/?type=hppp&ts=1400089024&from=amt&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://istart.webssearches.com/?type=hppp&ts=1400492047&from=amt&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://istart.webssearches.com/?type=hppp&ts=1400776189&from=amt&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://istart.webssearches.com/?type=hppp&ts=1401704631&from=amt&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://www.delta-homes.com/?type=hp&ts=1402677584&from=wpm0612&uid=WDCXWD5000AAKX-22ERMA0_WD-WCC2EF09252092520","hxxp://search.conduit.com/?ctid=CT2851619&SearchSource=48&UP=SP761A2FED-6B3D-4D77-A53C-CD7455791F65&SSPV=","hxxps://www.google.com/" Edge NewTab: Profile 1 -> Active:"chrome-extension://cfmnkhhioonhiehehedmnjibmampjiab/new_tab.html", Active:"chrome-extension://claajnkakebjjpbiaaigjmedkakccamc/index.html" Edge DefaultSearchURL: Profile 1 -> hxxps://apps.jeurissen.co/ Edge DefaultSearchKeyword: Profile 1 -> ecosia.org Edge DefaultSuggestURL: Profile 1 -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=es Edge Extension: (Traductor de Google) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Magic Actions for YouTube™) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Category Tabs for Google Keep™) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\alkcmckcjiagmcbpboidodcnenabnlfe [2024-12-13]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Microsoft Defender Browser Protection) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bkbeeeffjjeopflfhgeknacdieedcoml [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Black Menu for Wikipedia) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bkljgdecbhkgkhobgdljbpikoiadfpbn [2024-12-17]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Dark Mode for Edge) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bmgcjfdflkgdpedganhmcfkjkpimighl [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Outlook Launcher) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bmnbanmipcgjapnhlonekkghdffbilcj [2025-03-29]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Nueva pestaña de página por start.me) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cfmnkhhioonhiehehedmnjibmampjiab [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Plan - Calendar & Tasks) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\claajnkakebjjpbiaaigjmedkakccamc [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2025-03-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Talk & Comment - Notas de voz en cualquier lugar) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2025-03-18]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Ecosia) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2025-03-17]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Solarized (Dark) Theme for Facebook) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\efcmongnickjmdjpfnbdgmjinjglobci [2025-03-29]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Black Menu for Google™) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\eignhdfgaldabilaaegmdfbajngjmoke [2025-03-26]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Dark Reader) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-03-06]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Wikiwand - Wikipedia, and beyond) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2024-12-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (McAfee® WebAdvisor) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-03-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Dark Theme for Google™) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\flinoafkglcecbpipdiokmpfjkkhhchi [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Turn Off the Lights) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fmamkbgpnienhphflfdamlhnljffjdgm [2025-02-10]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Ecosia Dark-Mode) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gebncindnlemmhnigjhkgdfcmaakjcio [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Microsoft 365) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2025-03-29]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Documentos de Google sin conexión) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-06]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Click&Clean) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (YiNote) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gieehphfgjfjmeejdohpdiajmicjnfbh [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Modo oscuro - Ojo nocturno) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gijhmcgnnbcpigflkfoimbnfjnbcphah [2025-03-25]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (OneNote Web Clipper) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2025-03-28]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Sin Nombre) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (SearchPreview) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\icnchjepcflcdmnnhbfgmekkcobkdpak [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Text Blaze: Templates and Snippets) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\idgadaccgipmpannjkmfddolnnhmeklj [2025-03-06]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Dark Reader) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ifoakfbpdcdoeenechcleahebpibofpc [2025-02-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (YouTube Dark Theme) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ihgmjddljpjooagcfkjjgojbfofknpmm [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (GIPHY for Chrome) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jlleokkdhkflpmghiioglgmnminbekdi [2024-11-23]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Edge relevant text changes) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Microsoft Power Automate) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kagpabjoboikccfdghpdlaaopmgpgfdc [2025-03-20]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Grammarly Dark) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kljjdbdffnbengiilkaiblpinbhfcfnc [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Stands AdBlocker) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2025-03-17]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Evernote Web Clipper) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\llhcnbijpnechllogkacbcjmkcgjbjfi [2025-01-14]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Microsoft Power Automate (heredado)) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\njjljiblognghfjfpcdpdbpbfcmhgafg [2024-11-23]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (vsHotel) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\njnakjakcnkmnogiopbiomdleekeogkp [2025-03-28]hxxps://clients2.google.com/service/update2/crx Edge Extension: (G App Launcher (Shortcuts for Google™)) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\odhlcadbopildpgohnmnknegjdnnpehl [2025-03-21]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (OneNote Web Clipper) - C:\Users\abyss\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2025-03-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge HKU\S-1-5-21-3632066542-2142008216-383740264-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [kagpabjoboikccfdghpdlaaopmgpgfdc] Edge HKU\S-1-5-21-3632066542-2142008216-383740264-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [njjljiblognghfjfpcdpdbpbfcmhgafg] FireFox: ======== FF DefaultProfile: v2nmyptd.default FF ProfilePath: C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\v2nmyptd.default [2023-01-23] FF ProfilePath: C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396 [2025-03-29] FF Notifications: Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396 -> hxxps://calendar.google.com; hxxps://www.casadellibro.com; hxxps://nh-webportal.stay-app.com; hxxps://new.express.adobe.com; hxxps://www.youtube.com; hxxps://mail.google.com FF Extension: (Wikiwand - knowledge, with context) - C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396\Extensions\jid1-D7momAzRw417Ag@jetpack.xpi [2024-08-28] FF Extension: (purple) - C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396\Extensions\{11485a90-b9d1-49e1-82ad-5c240b7a77fb}.xpi [2023-12-01] FF Extension: (Purple) - C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396\Extensions\{49fb2b2c-82a4-494d-a04b-a323ede03af1}.xpi [2023-12-01] FF Extension: (Purple) - C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396\Extensions\{b18a3918-4f73-4b68-b4b9-bd28ce2a8e9a}.xpi [2023-12-01] FF Extension: (Fix add-ons signed before 2018 (Bug 1954818)) - C:\Users\abyss\AppData\Roaming\Mozilla\Firefox\Profiles\4nx2tsg3.default-release-1701457247396\features\{4dc50ce1-5e41-4ab0-a93e-4100768e3f48}\hotfix-intermediate-2018@mozilla.com.xpi [2025-03-28] FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdwteff.xpi => no encontrado FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdwteff.xpi => no encontrado FF HKLM-x32\...\Firefox\Extensions: [{FF201206-31F0-43FD-98C7-0E142411C415}] - C:\Program Files (x86)\OneNoteGem\Favorite to OneNote 2021\FF FF Extension: (Favorite to OneNote) - C:\Program Files (x86)\OneNoteGem\Favorite to OneNote 2021\FF [2023-01-24] [Heredado] [no firmado] FF HKLM-x32\...\Firefox\Extensions: [{FF201111-31F0-43FD-98C7-0E142411C415}] - C:\Program Files (x86)\OneNoteGem\Bring to OneNote 2021\FF FF Extension: (Bring to OneNote) - C:\Program Files (x86)\OneNoteGem\Bring to OneNote 2021\FF [2023-01-24] [Heredado] [no firmado] FF HKLM-x32\...\Thunderbird\Extensions: [{FF201111-31F0-43FD-98C7-0E142411C415}] - C:\Program Files (x86)\OneNoteGem\Bring to OneNote 2021\FF FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-01-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-01-22] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKU\S-1-5-21-3632066542-2142008216-383740264-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gjgfobnenmnljakmhboildkafdkicala] CHR HKU\S-1-5-21-3632066542-2142008216-383740264-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljglajjnnkapghbckkcmodicjhacbfhk] CHR HKLM-x32\...\Chrome\Extension: [pbabbjgajakpjgdoikinggpngaiioeda] - C:\Program Files (x86)\OneNoteGem\Favorite to OneNote 2021\favtoonenote.crx [2023-01-24] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [Archivo no firmado] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9203384 2024-09-20] (Microsoft Corporation -> Microsoft Corporation) R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_e9709186d216ac57\DAX3API.exe [2363392 2023-03-27] (Dolby Laboratories, Inc. -> Dolby Laboratories) R2 ElevocService; C:\WINDOWS\system32\ElevocInstallDriver\ElevocControlService.exe [416536 2023-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.) R2 Everything; C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_dd6a7ef14d856351\AS\IAS\IntelAudioService.exe [539816 2021-08-31] (Intel Corporation -> Intel) R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_fa50a878363b0cec\LenovoUtilityService.exe [182272 2025-02-20] (Lenovo -> Lenovo) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe [34816 2025-02-20] (Lenovo -> Lenovo) R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited) R2 LVAWService; C:\Program Files\Lenovo\LVA Pro Service\VoiceAssistantService.exe [693536 2023-02-10] (Lenovo -> Lenovo Limited Company) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9484384 2025-03-22] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-17] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) R3 midisrv; C:\WINDOWS\system32\midisrv.exe [380928 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R2 PCManager Service Store; C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.16.2.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe [87584 2025-03-21] (Microsoft Corporation -> MSPCManagerService) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [750872 2025-02-04] (Bitdefender SRL -> Bitdefender) R2 UDCService; C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe [72520 2024-10-24] (Lenovo -> Lenovo Group Ltd.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-03-18] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AcpiAudioCompositor; C:\WINDOWS\System32\DriverStore\FileRepository\acpiaudiocompositor.inf_amd64_5487a6b658d70575\AcpiAudioCompositor.sys [98304 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 AmdPPM; C:\WINDOWS\System32\DriverStore\FileRepository\cpu.inf_amd64_e500da6d0654e8af\amdppm.sys [270560 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R3 CAD; C:\WINDOWS\System32\DriverStore\FileRepository\chargearbitration.inf_amd64_cc13203d31f3aecc\CAD.sys [98528 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R3 CmBatt; C:\WINDOWS\System32\DriverStore\FileRepository\cmbatt.inf_amd64_7b5edde88abc31f3\CmBatt.sys [94208 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S0 cxltype3; C:\WINDOWS\System32\DriverStore\FileRepository\cxltype3.inf_amd64_5616e007a7164044\cxltype3.sys [98528 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-14] (Power Technology -> Windows (R) Win 7 DDK provider) S3 GSCx64; C:\WINDOWS\System32\DriverStore\FileRepository\gscheci.inf_amd64_4003eeabcde167d1\TeeDriverGSCW8x64.sys [249008 2024-06-20] (Intel Graphics Internal 2023 -> Intel Corporation) S3 HidBatt; C:\WINDOWS\System32\DriverStore\FileRepository\hidbatt.inf_amd64_5931178ae06d837f\HidBatt.sys [65760 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-08-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-08-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_tgl.inf_amd64_fc1ed3a5a1d514f2\iaLPSS2_SPI_TGL.sys [158352 2021-08-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_tgl.inf_amd64_cd8c3a141c1b1284\iaLPSS2_UART2_TGL.sys [313504 2021-08-27] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1546432 2022-01-20] (Intel Corporation -> Intel Corporation) R0 intelpep; C:\WINDOWS\System32\DriverStore\FileRepository\intelpep.inf_amd64_6b0325b4cb0badf6\intelpep.sys [639240 2025-03-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 intelpmax; C:\WINDOWS\System32\DriverStore\FileRepository\intelpmax.inf_amd64_58d8f22ea78eeef2\intelpmax.sys [65536 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R0 IntelPMT; C:\WINDOWS\System32\DriverStore\FileRepository\intelpmt.inf_amd64_6239d71e7e1d544f\IntelPMT.sys [82184 2025-03-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) R3 intelppm; C:\WINDOWS\System32\DriverStore\FileRepository\cpu.inf_amd64_e500da6d0654e8af\intelppm.sys [299232 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 KernelFSFormatter; C:\Windows\System32\Drivers\KernelFSFormatter.sys [1249504 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [331168 2025-03-18] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2025-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 PlutonHeci; C:\WINDOWS\System32\DriverStore\FileRepository\pluton-heci.inf_amd64_717d3aa5b14d5470\pluton-heci.sys [65760 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 PlutonHsp2; C:\WINDOWS\System32\DriverStore\FileRepository\plutonhsp2.inf_amd64_bc7e1704231f9ad4\PlutonHsp2.sys [57568 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 Processor; C:\WINDOWS\System32\DriverStore\FileRepository\cpu.inf_amd64_e500da6d0654e8af\processr.sys [274656 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R3 RevoProcessDetector; C:\WINDOWS\System32\DRIVERS\RevoProcessDetector.sys [19504 2024-03-28] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 SdcaHid; C:\WINDOWS\System32\DriverStore\FileRepository\sdcahid.inf_amd64_6f0f59dd588574f8\SdcaHid.sys [159744 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 SdcaMfd; C:\WINDOWS\System32\DriverStore\FileRepository\sdcamfd.inf_amd64_2ea1f9a6fc6df8d2\SdcaMfd.sys [167936 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_7c34e5c3a8eee121\ThermalFilter.sys [65800 2025-03-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 usb-platformdetection; C:\WINDOWS\System32\DriverStore\FileRepository\usb-platformdetection.inf_amd64_2f0a763a5638376c\usb-platformdetection.sys [49152 2025-03-22] (Microsoft Windows -> ) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [605576 2025-03-18] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-03-18] (Microsoft Windows -> Microsoft Corporation) S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_86b29f721b5a12cb\wini3ctarget.sys [69856 2025-03-22] (Microsoft Windows -> Microsoft Corporation) R0 WinSetupMon; C:\WINDOWS\System32\DRIVERS\WinSetupMon.sys [164080 2025-03-21] (Microsoft Windows -> Microsoft Corporation) S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_90c319025d4c5ace\WSDPrint.sys [57344 2025-03-22] (Microsoft Windows -> Microsoft Corporation) S3 WSDScan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_08cb5a69fc1c8952\WSDScan.sys [61440 2025-03-22] (Microsoft Windows -> Microsoft Corporation) U3 aswBcc; no ImagePath U3 Avast Business Console Client Antivirus Service; no ImagePath ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2025-03-29 13:08 - 2025-03-29 13:10 - 000088105 _____ C:\Users\abyss\OneDrive\Escritorio\Addition.txt 2025-03-29 13:04 - 2025-03-29 13:15 - 000062118 _____ C:\Users\abyss\OneDrive\Escritorio\FRST.txt 2025-03-29 13:04 - 2025-03-29 13:14 - 000000000 ____D C:\FRST 2025-03-29 13:03 - 2025-03-29 13:03 - 000492404 _____ C:\WINDOWS\system32\perfh00A.dat 2025-03-29 13:03 - 2025-03-29 13:03 - 000087646 _____ C:\WINDOWS\system32\perfc00A.dat 2025-03-29 12:58 - 2025-03-29 12:58 - 000425747 _____ C:\Users\abyss\Downloads\DTKill.zip 2025-03-29 12:53 - 2025-03-29 12:55 - 000000000 ____D C:\AdwCleaner 2025-03-29 12:53 - 2025-03-29 12:53 - 009566696 _____ (Malwarebytes) C:\Users\abyss\Downloads\adwcleaner.exe 2025-03-29 12:47 - 2025-03-29 12:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\VS Revo Group 2025-03-29 12:47 - 2025-03-29 12:47 - 000000000 ____D C:\Users\abyss\AppData\Local\VS Revo Group 2025-03-29 12:47 - 2025-03-29 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2025-03-29 12:47 - 2025-03-29 12:47 - 000000000 ____D C:\Program Files\VS Revo Group 2025-03-29 12:46 - 2025-03-29 12:46 - 011350824 _____ (VS Revo Group ) C:\Users\abyss\Downloads\revosetup.exe 2025-03-29 12:33 - 2025-03-29 12:33 - 002404352 _____ (Farbar) C:\Users\abyss\OneDrive\Escritorio\FRST64.exe 2025-03-28 12:56 - 2025-03-29 12:42 - 000000000 ____D C:\Users\abyss\AppData\Local\Deployment 2025-03-28 12:53 - 2025-03-29 13:03 - 001050076 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2025-03-28 12:53 - 2025-03-28 12:53 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2025-03-28 12:50 - 2025-03-29 12:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2025-03-28 12:50 - 2025-03-29 12:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys 2025-03-28 12:50 - 2025-03-29 12:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2025-03-28 12:50 - 2025-03-28 12:53 - 000003842 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2025-03-28 12:50 - 2025-03-28 12:50 - 000003886 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3632066542-2142008216-383740264-1001UA{827E8B94-EAA8-49E8-8A34-8FF15FAB96D8} 2025-03-28 12:50 - 2025-03-28 12:50 - 000003782 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3632066542-2142008216-383740264-1001Core{24923AE6-FF96-4D29-9F5A-45E61731F015} 2025-03-28 12:50 - 2025-03-28 12:50 - 000003636 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2025-03-28 12:50 - 2025-03-28 12:50 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2025-03-28 12:50 - 2025-03-28 12:50 - 000003042 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-3632066542-2142008216-383740264-1001 2025-03-28 12:50 - 2025-03-28 12:50 - 000002790 _____ C:\WINDOWS\system32\Tasks\update-sys 2025-03-28 12:50 - 2025-03-28 12:50 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2025-03-28 12:50 - 2025-03-28 12:50 - 000000020 ___SH C:\Users\abyss\ntuser.ini 2025-03-28 12:50 - 2025-03-28 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2025-03-28 12:50 - 2025-03-28 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Meta 2025-03-28 12:50 - 2025-03-28 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfeeTsk 2025-03-28 12:50 - 2025-03-28 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2025-03-28 12:50 - 2025-03-28 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2025-03-28 12:49 - 2025-03-28 12:49 - 000000000 ____D C:\Users\WsiAccount\AppData\Roaming\Microsoft\SystemCertificates 2025-03-28 12:49 - 2025-03-28 12:49 - 000000000 ____D C:\Users\WsiAccount\AppData\Roaming\Microsoft\Network 2025-03-28 12:49 - 2025-03-28 12:49 - 000000000 ____D C:\Users\WsiAccount\AppData\Roaming\Microsoft\Crypto 2025-03-28 12:49 - 2025-03-28 12:49 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Network 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\SystemCertificates 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Network 2025-03-28 12:48 - 2025-03-28 12:48 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Crypto 2025-03-28 12:46 - 2025-03-28 12:51 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows 2025-03-28 12:46 - 2025-03-28 12:50 - 000000000 ____D C:\Users\abyss 2025-03-28 12:46 - 2025-03-28 12:49 - 000000000 ____D C:\Users\WsiAccount\AppData\Roaming\Microsoft\Windows 2025-03-28 12:46 - 2025-03-28 12:49 - 000000000 ____D C:\Users\WsiAccount 2025-03-28 12:46 - 2025-03-28 12:48 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows 2025-03-28 12:46 - 2025-03-28 12:48 - 000000000 ____D C:\Users\defaultuser100000 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Reciente 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Plantillas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Mis documentos 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Menú Inicio 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Impresoras 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Entorno de red 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\Configuración local 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\AppData\Local\Historial 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\AppData\Local\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\WsiAccount\AppData\Local\Archivos temporales de Internet 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Reciente 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Plantillas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Mis documentos 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Menú Inicio 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Impresoras 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Entorno de red 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\Configuración local 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Historial 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Archivos temporales de Internet 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Reciente 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Plantillas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Mis documentos 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Menú Inicio 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Impresoras 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Entorno de red 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\Configuración local 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\AppData\Local\Historial 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\AppData\Local\Datos de programa 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 _SHDL C:\Users\abyss\AppData\Local\Archivos temporales de Internet 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 ____D C:\Users\WsiAccount\AppData\Roaming\Microsoft\Spelling 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling 2025-03-28 12:46 - 2025-03-28 12:46 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Spelling 2025-03-28 12:45 - 2025-03-29 12:55 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2025-03-28 12:45 - 2025-03-28 12:45 - 000573168 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2025-03-28 12:45 - 2025-03-28 12:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2025-03-28 12:44 - 2025-03-28 12:50 - 000000000 ____D C:\Windows.old 2025-03-28 12:43 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2025-03-28 12:42 - 2025-03-28 12:42 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2025-03-28 12:42 - 2025-03-28 12:42 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2025-03-28 12:34 - 2025-03-28 12:34 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2025-03-28 12:34 - 2025-03-28 12:34 - 000000000 ____D C:\Program Files\Reference Assemblies 2025-03-28 12:34 - 2025-03-28 12:34 - 000000000 ____D C:\Program Files\MSBuild 2025-03-28 12:34 - 2025-03-28 12:34 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2025-03-28 12:34 - 2025-03-28 12:34 - 000000000 ____D C:\Program Files (x86)\MSBuild 2025-03-28 12:33 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2025-03-28 12:33 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2025-03-28 12:33 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\addins 2025-03-28 12:29 - 2025-03-28 12:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo 2025-03-28 12:29 - 2025-03-28 12:29 - 000000000 ____D C:\WINDOWS\Lenovo 2025-03-28 10:02 - 2025-03-28 12:50 - 000000000 ___DC C:\WINDOWS\Panther 2025-03-26 17:53 - 2025-03-28 12:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2025-03-26 17:53 - 2025-03-26 17:53 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2025-03-26 17:53 - 2025-03-26 17:53 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2025-03-26 12:21 - 2025-03-28 11:26 - 000000000 ____D C:\Program Files\Mozilla Firefox 2025-03-26 11:29 - 2025-03-29 13:01 - 000000000 ____D C:\Users\abyss\AppData\Local\AVAST Software 2025-03-26 11:25 - 2025-03-29 13:01 - 000000000 ____D C:\ProgramData\Avast Software 2025-03-26 11:25 - 2025-03-26 11:25 - 000249072 _____ (Gen Digital Inc.) C:\Users\abyss\Downloads\avast_free_antivirus_setup_online.exe 2025-03-23 18:28 - 2025-03-29 12:39 - 000000000 ____D C:\Program Files\Windhawk 2025-03-23 18:28 - 2025-03-27 12:50 - 000000000 ____D C:\ProgramData\Windhawk 2025-03-22 22:00 - 2025-03-22 22:22 - 000000000 ____D C:\Users\abyss\.rainlendar2 2025-03-22 21:59 - 2025-03-22 22:22 - 000000000 ____D C:\Program Files\Rainlendar2 2025-03-22 21:54 - 2025-03-22 21:55 - 045691305 _____ C:\Users\abyss\Downloads\Rainlendar Pro 2.21.3 Build 180 Multilingual x64 [PeskTop.com].rar 2025-03-22 12:01 - 2025-03-28 12:33 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2025-03-22 12:01 - 2025-03-28 12:33 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2025-03-22 12:00 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2025-03-22 12:00 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2025-03-22 12:00 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2025-03-22 12:00 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2025-03-22 12:00 - 2025-03-22 12:00 - 000000000 ____D C:\ProgramData\ssh 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\winrm 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\WCN 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\slmgr 2025-03-22 11:58 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\es 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\0409 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\system32\es 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\system32\0409 2025-03-22 11:58 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\DigitalLocker 2025-03-22 08:29 - 2025-03-22 08:29 - 000000000 _SHDL C:\Users\Default User 2025-03-22 08:29 - 2025-03-22 08:29 - 000000000 _SHDL C:\Users\All Users 2025-03-22 08:26 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\Setup 2025-03-22 08:25 - 2025-03-28 12:45 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2025-03-22 08:25 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\system32\Pbr 2025-03-22 08:25 - 2025-03-22 08:23 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config 2025-03-22 08:25 - 2025-03-22 08:23 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config 2025-03-22 08:25 - 2025-03-22 08:23 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json 2025-03-22 08:24 - 2025-03-29 13:06 - 000000000 ____D C:\WINDOWS\SystemTemp 2025-03-22 08:24 - 2025-03-29 13:01 - 000000000 ___RD C:\Program Files (x86) 2025-03-22 08:24 - 2025-03-29 12:57 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-03-22 08:24 - 2025-03-29 12:55 - 000000000 ____D C:\WINDOWS\ServiceState 2025-03-22 08:24 - 2025-03-29 12:27 - 000000000 ___HD C:\Program Files\WindowsApps 2025-03-22 08:24 - 2025-03-29 12:27 - 000000000 ____D C:\WINDOWS\AppReadiness 2025-03-22 08:24 - 2025-03-28 13:42 - 000000000 ____D C:\WINDOWS\appcompat 2025-03-22 08:24 - 2025-03-28 13:06 - 000000000 ____D C:\ProgramData\USOPrivate 2025-03-22 08:24 - 2025-03-28 12:50 - 000000000 ___RD C:\Program Files\Windows Defender 2025-03-22 08:24 - 2025-03-28 12:50 - 000000000 ____D C:\Program Files\Windows NT 2025-03-22 08:24 - 2025-03-28 12:48 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2025-03-22 08:24 - 2025-03-28 12:46 - 000000000 ____D C:\WINDOWS\system32\config\TxR 2025-03-22 08:24 - 2025-03-28 12:46 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2025-03-22 08:24 - 2025-03-28 12:45 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2025-03-22 08:24 - 2025-03-28 12:44 - 000000000 __RHD C:\Users\Public\Libraries 2025-03-22 08:24 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\spool 2025-03-22 08:24 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\NDF 2025-03-22 08:24 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2025-03-22 08:24 - 2025-03-28 12:44 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2025-03-22 08:24 - 2025-03-28 12:43 - 000000000 ____D C:\WINDOWS\system32\oobe 2025-03-22 08:24 - 2025-03-28 12:43 - 000000000 ____D C:\WINDOWS\schemas 2025-03-22 08:24 - 2025-03-28 12:41 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2025-03-22 08:24 - 2025-03-28 12:40 - 000000000 ____D C:\WINDOWS\OCR 2025-03-22 08:24 - 2025-03-28 12:36 - 000000000 ____D C:\WINDOWS\SystemApps 2025-03-22 08:24 - 2025-03-28 12:34 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2025-03-22 08:24 - 2025-03-28 12:34 - 000000000 ____D C:\WINDOWS\system32\MUI 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ___SD C:\WINDOWS\system32\F12 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ___SD C:\WINDOWS\system32\dsc 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ___RD C:\Program Files (x86)\Windows Defender 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\Setup 2025-03-22 08:24 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\system32\migwiz 2025-03-22 08:24 - 2025-03-22 12:01 - 000000000 ____D C:\WINDOWS\SystemResources 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ur-PK 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ug-CN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\tt-RU 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\te-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ta-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\sq-AL 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\quz-PE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\qps-plocm 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\qps-ploc 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\pa-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\or-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\nn-NO 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ne-NP 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\mt-MT 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\mr-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ml-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\mk-MK 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\mi-NZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\lo-LA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\lb-LU 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\kok-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\kn-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\km-KH 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\kk-KZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ka-GE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\is-IS 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\id-ID 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\hy-AM 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\hi-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\gu-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\gd-GB 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ga-IE 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\fil-PH 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\fa-IR 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\cy-GB 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\bn-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\be-BY 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\as-IN 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\am-ET 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\system32\af-ZA 2025-03-22 08:24 - 2025-03-22 12:00 - 000000000 ____D C:\WINDOWS\Globalization 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\system32\Dism 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\system32\Com 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\IME 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\Help 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\WINDOWS\BrowserCore 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\Program Files\Common Files\System 2025-03-22 08:24 - 2025-03-22 11:58 - 000000000 ____D C:\Program Files (x86)\Windows NT 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 __SHD C:\Program Files\Windows Sidebar 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 __RSD C:\WINDOWS\Media 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ___SD C:\WINDOWS\system32\Configuration 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\Web 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\system32\winevt 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\system32\ras 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\system32\PointOfService 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\SKB 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\security 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\Resources 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\Registration 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\Provisioning 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\PLA 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\InputMethod 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\IdentityCRL 2025-03-22 08:24 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\DiagTrack 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___SD C:\WINDOWS\system32\Nui 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___SD C:\WINDOWS\system32\lxss 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ___RD C:\WINDOWS\Offline Web Pages 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\WUModels 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\UUS 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\Keywords 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\icsxml 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\ias 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\downlevel 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\DDFs 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\Bthprops 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\appraiser 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\ShellExperiences 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\ShellComponents 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\L2Schemas 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\InboxApps 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\Cursors 2025-03-22 08:24 - 2025-03-22 08:25 - 000000000 ____D C:\WINDOWS\bcastdvr 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\WaaS 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\Vss 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\tracing 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\TAPI 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ShellExperiences 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ras 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\ProximityToast 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\Ipmi 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\IME 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\DriverState 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\config\RegBack 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\config\Journal 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\System 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\SchCache 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\rescache 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\Performance 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\ModemLogs 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\WINDOWS\Branding 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Spelling 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\ProgramData\USOShared 2025-03-22 08:24 - 2025-03-22 08:24 - 000000000 ____D C:\Program Files\ModifiableWindowsApps 2025-03-22 08:23 - 2025-03-29 13:04 - 000000000 ____D C:\WINDOWS\INF 2025-03-22 08:22 - 2025-03-29 12:55 - 116391936 _____ C:\WINDOWS\system32\config\SOFTWARE 2025-03-22 08:22 - 2025-03-29 12:55 - 027000832 _____ C:\WINDOWS\system32\config\SYSTEM 2025-03-22 08:22 - 2025-03-29 12:55 - 003932160 _____ C:\WINDOWS\system32\config\BBI 2025-03-22 08:22 - 2025-03-29 12:55 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT 2025-03-22 08:22 - 2025-03-29 12:55 - 000131072 _____ C:\WINDOWS\system32\config\SAM 2025-03-22 08:22 - 2025-03-29 12:55 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY 2025-03-22 08:22 - 2025-03-29 12:20 - 000000000 ____D C:\WINDOWS\CbsTemp 2025-03-22 08:22 - 2025-03-28 12:44 - 000524288 _____ C:\WINDOWS\system32\config\ELAM 2025-03-22 08:22 - 2025-03-28 12:33 - 000000000 ____D C:\WINDOWS\servicing 2025-03-22 08:22 - 2025-03-22 08:30 - 000000000 ____D C:\WINDOWS\system32\SMI 2025-03-22 08:22 - 2025-03-22 08:22 - 000089761 _____ C:\WINDOWS\system32\DiskSnapshot.conf 2025-03-22 08:22 - 2025-03-22 08:22 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000070484 _____ C:\WINDOWS\system32\ctac.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\oflc-nz.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\csrr.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000045056 _____ (Microsoft) C:\WINDOWS\system32\fpb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\esrb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\cero.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000040448 _____ (Microsoft) C:\WINDOWS\SysWOW64\csrr.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000038400 _____ (Microsoft) C:\WINDOWS\SysWOW64\oflc-nz.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000038128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys 2025-03-22 08:22 - 2025-03-22 08:22 - 000037888 _____ (Microsoft) C:\WINDOWS\SysWOW64\fpb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\usk.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\cob-au.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000036256 _____ C:\WINDOWS\system32\Microsoft.Management.Deployment.winmd 2025-03-22 08:22 - 2025-03-22 08:22 - 000033280 _____ (Microsoft) C:\WINDOWS\SysWOW64\cero.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000030208 _____ (Microsoft) C:\WINDOWS\SysWOW64\esrb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000029042 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000029042 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi-pt.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\grb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\usk.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\cob-au.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\pcbp.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\djctq.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi-pt.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000017920 _____ (Microsoft) C:\WINDOWS\SysWOW64\grb.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000014336 _____ (Microsoft) C:\WINDOWS\SysWOW64\djctq.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000013824 _____ (Microsoft) C:\WINDOWS\SysWOW64\pcbp.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000012288 _____ (Microsoft) C:\WINDOWS\system32\WEB.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000010576 _____ C:\WINDOWS\system32\TransformPPSToWlan.xslt 2025-03-22 08:22 - 2025-03-22 08:22 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000004608 _____ (Microsoft) C:\WINDOWS\SysWOW64\WEB.rs 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriUHMImageList 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriLMImageList 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriImageListLowCost 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriImageList 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost 2025-03-22 08:22 - 2025-03-22 08:22 - 000004566 _____ C:\WINDOWS\system32\ResPriHMImageList 2025-03-22 08:22 - 2025-03-22 08:22 - 000001820 _____ C:\WINDOWS\SysWOW64\rasctrnm.h 2025-03-22 08:22 - 2025-03-22 08:22 - 000001820 _____ C:\WINDOWS\system32\rasctrnm.h 2025-03-22 08:22 - 2025-03-22 08:22 - 000001688 _____ C:\WINDOWS\system32\TransformPPSToWlanCredentials.xslt 2025-03-22 08:22 - 2025-03-22 08:22 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json 2025-03-22 08:22 - 2025-03-22 08:22 - 000000670 ___RH C:\WINDOWS\WindowsShell.Manifest 2025-03-21 10:27 - 2025-03-27 13:05 - 000000000 ____D C:\Users\abyss\AppData\Local\Power-user 2025-03-15 09:02 - 2025-03-28 12:45 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2025-03-15 08:43 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\Firmware 2025-03-15 08:42 - 2025-03-28 12:45 - 000000000 ____D C:\WINDOWS\system32\ElevocConfig 2025-03-14 23:23 - 2025-03-14 23:23 - 441842746 _____ C:\Users\abyss\Downloads\0-01702-19091 - JG-MUMMY.zip 2025-03-11 21:29 - 2025-03-11 21:29 - 000000000 ____D C:\Users\abyss\AppData\Local\Amazon Drive 2025-03-08 00:08 - 2025-03-08 00:15 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Code 2025-03-08 00:08 - 2025-03-08 00:08 - 000000000 ____D C:\Users\abyss\.vscode 2025-03-07 23:21 - 2025-03-07 23:21 - 000590667 _____ C:\Users\abyss\Downloads\Jack_el_Destripador_(falkenstein).zip 2025-03-06 17:27 - 2025-03-06 17:27 - 000000000 ____D C:\Users\abyss\AppData\Roaming\RainbowTaskbar 2025-03-06 17:19 - 2025-03-28 12:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview) 2025-03-06 17:19 - 2025-03-06 17:20 - 000000000 ____D C:\Program Files\PowerToys 2025-03-04 11:00 - 2025-03-28 12:44 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2025-03-04 11:00 - 2025-03-04 11:00 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2025-03-02 12:20 - 2025-03-02 12:21 - 000000000 ____D C:\Users\abyss\AppData\Local\PDFgear 2025-02-27 17:55 - 2025-02-27 17:55 - 022085767 _____ C:\Users\abyss\Downloads\wip10year-dark.zip ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2025-03-29 13:13 - 2024-03-09 14:31 - 000000130 _____ C:\Users\abyss\AppData\LocalLow\d184b3a61bf4be513cbb771b07df842ddf56f91b67d9cbe187f53880ca9b5c5d 2025-03-29 13:11 - 2023-12-01 19:57 - 000000000 ____D C:\Users\abyss\AppData\Local\Malwarebytes 2025-03-29 13:03 - 2024-09-01 12:40 - 000000634 _____ C:\Users\abyss\AppData\LocalLow\a3a6c18d987c7026cb89a58f4d73379ce458cdf838ed4dfaa757a98133f4ec8d 2025-03-29 12:57 - 2023-01-24 10:21 - 000000000 ____D C:\ProgramData\TEMP 2025-03-29 12:57 - 2023-01-20 15:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2025-03-29 12:56 - 2023-01-20 13:10 - 000000000 __SHD C:\Users\abyss\IntelGraphicsProfiles 2025-03-29 12:56 - 2022-06-12 09:59 - 000000000 ____D C:\ProgramData\Lenovo 2025-03-29 12:55 - 2023-07-13 10:53 - 000040734 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 2025-03-29 12:55 - 2023-01-20 13:10 - 000000000 ____D C:\Users\abyss\AppData\Local\Lenovo 2025-03-29 12:55 - 2022-06-12 09:55 - 000000000 ___HD C:\Intel 2025-03-29 12:55 - 2021-09-29 22:08 - 000012288 ___SH C:\DumpStack.log.tmp 2025-03-29 12:21 - 2023-12-01 20:01 - 000000000 ____D C:\Users\abyss\AppData\Local\CrashDumps 2025-03-29 12:18 - 2024-07-21 13:00 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-03-29 00:55 - 2023-01-23 21:30 - 000000000 ____D C:\Users\abyss\AppData\Local\Everything 2025-03-29 00:55 - 2023-01-23 21:27 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Everything 2025-03-29 00:52 - 2024-02-22 12:18 - 001164559 _____ C:\Users\abyss\AppData\LocalLow\6c74a54a0d0bdd1b2c969a6b63986c9e3a5326a039980433366da8dcd178ef03 2025-03-29 00:52 - 2023-01-23 21:36 - 000000000 ____D C:\Users\abyss\AppData\Roaming\OneMore 2025-03-29 00:47 - 2023-01-20 15:14 - 000002579 _____ C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Edge Canary.lnk 2025-03-28 16:35 - 2024-09-01 12:40 - 001461947 _____ C:\Users\abyss\AppData\LocalLow\71526115fc7e468c232d42ae5088250ec4121a38b5a1f96fec9ed5b3ee8a45d1 2025-03-28 13:12 - 2023-01-26 21:52 - 000015804 _____ C:\WINDOWS\BRRBCOM.INI 2025-03-28 13:04 - 2023-01-22 14:01 - 000000000 ___RD C:\Users\abyss\OneDrive\Escritorio\Software 2025-03-28 12:58 - 2024-02-22 12:18 - 000000634 _____ C:\Users\abyss\AppData\LocalLow\e7982957ebbd5c2201036e164cca986460ce2fbb59aa4658d7c67adbf1838282 2025-03-28 12:56 - 2023-01-20 13:10 - 000000000 ____D C:\Users\abyss\AppData\Local\D3DSCache 2025-03-28 12:51 - 2021-09-29 22:11 - 000000000 __RHD C:\Users\Public\AccountPictures 2025-03-28 12:49 - 2023-01-20 13:11 - 000000000 ___RD C:\Users\abyss\OneDrive 2025-03-28 12:47 - 2024-12-08 20:14 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hofmann ES 2025-03-28 12:47 - 2024-06-28 09:44 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hofmann 2025-03-28 12:47 - 2023-12-09 19:44 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PNG-to-ICO 2025-03-28 12:47 - 2023-01-24 14:11 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2025-03-28 12:47 - 2023-01-22 19:23 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2025-03-28 12:47 - 2023-01-20 14:43 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music 2025-03-28 12:46 - 2023-10-15 15:24 - 000000000 ____D C:\Users\WsiAccount\AppData\Local\Packages 2025-03-28 12:46 - 2023-09-28 19:48 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages 2025-03-28 12:46 - 2023-07-30 13:16 - 000000000 ____D C:\WINDOWS\system32\ElevocInstallDriver 2025-03-28 12:46 - 2023-01-20 13:10 - 000000000 ____D C:\Users\abyss\AppData\Local\Packages 2025-03-28 12:44 - 2025-02-18 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer 2025-03-28 12:44 - 2024-11-30 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock 2025-03-28 12:44 - 2024-11-03 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotomundo Pixum 2025-03-28 12:44 - 2023-10-21 06:32 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2025-03-28 12:44 - 2023-09-13 09:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother 2025-03-28 12:44 - 2023-03-30 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoulseekQt 2025-03-28 12:44 - 2023-02-05 20:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2025-03-28 12:44 - 2023-02-03 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Sword 2025-03-28 12:44 - 2023-01-29 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkiniTunes 2025-03-28 12:44 - 2023-01-26 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSpring Free 9 2025-03-28 12:44 - 2023-01-25 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Text Lightning 2025-03-28 12:44 - 2023-01-24 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASAP Utilities 2025-03-28 12:44 - 2023-01-24 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kutools for Word 2025-03-28 12:44 - 2023-01-24 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kutools for Outlook 2025-03-28 12:44 - 2023-01-24 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kutools for Excel 2025-03-28 12:44 - 2023-01-23 22:08 - 000000000 ____D C:\WINDOWS\system32\elambkup 2025-03-28 12:44 - 2023-01-23 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Office Tab 2025-03-28 12:44 - 2023-01-22 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antirun 2025-03-28 12:44 - 2023-01-22 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scrivener 3 2025-03-28 12:44 - 2023-01-22 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2025-03-28 12:44 - 2023-01-22 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2025-03-28 12:44 - 2023-01-22 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2025-03-28 12:44 - 2023-01-20 13:15 - 000000000 ____D C:\WINDOWS\system32\MRT 2025-03-28 12:44 - 2022-06-12 10:03 - 000000000 ____D C:\Program Files\Intel 2025-03-28 12:44 - 2021-06-05 14:17 - 000000000 ____D C:\WINDOWS\system32\Hydrogen 2025-03-28 12:44 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2025-03-28 12:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2025-03-28 12:43 - 2024-03-30 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2025-03-28 12:43 - 2023-10-21 06:32 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2025-03-28 12:43 - 2023-01-25 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAPILab 2025-03-28 12:43 - 2023-01-24 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNoteGem 2025-03-28 12:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2025-03-28 11:26 - 2023-01-20 15:13 - 000001080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2025-03-28 11:26 - 2023-01-20 15:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2025-03-28 09:54 - 2023-01-23 13:38 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Excel 2025-03-27 12:31 - 2024-02-22 12:18 - 000000130 _____ C:\Users\abyss\AppData\LocalLow\a8b141efd5a28a0535a4b1cef38c232052f69977de70ef5ac15dddb5a77f531f 2025-03-27 12:26 - 2023-01-20 15:37 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Microsoft\Word 2025-03-26 22:07 - 2024-04-23 21:50 - 000000130 _____ C:\Users\abyss\AppData\LocalLow\4fca0a34b497acffbb870a4cea576f3ac71f00928c3146fe3d0d2dac45c9d5fb 2025-03-26 18:10 - 2025-02-10 18:42 - 000000130 _____ C:\Users\abyss\AppData\LocalLow\bef33e67af07b07688c0a6330e732d016df14dc5824def44f89868a00efa36c8 2025-03-21 21:58 - 2023-01-20 13:10 - 000000000 ____D C:\ProgramData\Packages 2025-03-21 18:16 - 2024-02-22 12:18 - 006222956 _____ C:\Users\abyss\AppData\LocalLow\f68745aa7a9338028522371f61f4006042b0b517326f372ba707e936d2a1fab0 2025-03-21 18:16 - 2022-06-12 10:00 - 000000000 ____D C:\Program Files\Microsoft Office 2025-03-20 17:24 - 2024-02-22 12:18 - 000000802 _____ C:\Users\abyss\AppData\LocalLow\542c1e7e7a3f794d97a241f547580e15b32e73702c3ce8d5d387f920a571694b 2025-03-18 10:05 - 2021-09-29 22:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2025-03-16 15:45 - 2024-02-22 12:18 - 000247046 _____ C:\Users\abyss\AppData\LocalLow\b6f4b85779ab477df2ad80f8c96aa6c6bb8e0e80917194fb28985c5a92e096e7 2025-03-12 21:07 - 2024-09-19 15:45 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Now.lnk 2025-03-12 21:07 - 2022-06-12 09:59 - 000000000 ____D C:\WINDOWS\TempInst 2025-03-11 21:29 - 2024-12-10 11:02 - 000001230 _____ C:\Users\abyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Photos.lnk 2025-03-11 21:29 - 2023-07-17 12:06 - 000000000 ____D C:\Users\abyss\AppData\Roaming\Amazon Cloud Drive 2025-03-10 17:49 - 2024-03-28 16:53 - 000000000 ____D C:\Users\abyss\OneDrive\Escritorio\bobwilson27 2025-03-08 00:32 - 2024-12-11 23:22 - 000589055 _____ C:\Users\abyss\AppData\LocalLow\37f22b22f7257f250884789ed6922f2c0f52d958a7a44f0a052c7a8a4540db4f 2025-03-07 10:09 - 2024-06-08 19:24 - 000022120 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2025-03-06 17:20 - 2022-06-12 10:03 - 000000000 ____D C:\ProgramData\Package Cache 2025-03-06 17:17 - 2023-03-03 23:15 - 000000000 ____D C:\Users\abyss\AppData\Roaming\DeepL_SE 2025-02-27 18:01 - 2024-12-11 23:22 - 000000466 _____ C:\Users\abyss\AppData\LocalLow\6c24cb48ad07e609b202da5bed0daad6e1f9cb902cb99c540bf998f0f78f497e ==================== Archivos en la raíz de algunos directorios ======== 2023-01-26 16:33 - 2023-01-26 16:33 - 000000128 ____H () C:\Users\abyss\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6 2023-01-23 21:43 - 2023-01-23 21:43 - 000000582 _____ () C:\Users\abyss\AppData\Roaming\onecal.xml 2023-01-22 19:02 - 2023-01-22 19:02 - 000000003 _____ () C:\Users\abyss\AppData\Local\updater.log 2023-01-22 19:02 - 2023-01-22 19:02 - 000000424 _____ () C:\Users\abyss\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================